New to Information Security

on August 9, 2019 under Penetration Testing Resources Information Security

2 minute read

Application Security Wiki

Application Security Wiki is an initiative to provide all Application security related resources to Security Researchers and developers at one place.

Penetration Testing Framework

Penetration Test Framework (PTF) - A good starting resource for those getting into this field.

Penetration Testing Tools Cheat Sheet

Penetration testing tools cheat sheet, a quick reference high level overview for typical penetration testing engagements.

Penetration Testing Methodology Guide

Penetration Testing methodology guide with great resources.

The Illustrated TLS Connection

Every byte of a TLS connection explained and reproduced.

LiveOverflow (YouTube)

Varying range of technical talks, from beginner to advanced. He often walks through CTF writeups, latest vulnerabilities, and labels himself as a “No BS Tutorial” channel.

Information Security / PENTEST

Cool source ranging from concept basics to exploitation guides for specific vulnerabilities to tool listings.

NMAP Tips: RTFM?

It’s a tool used for port scanning and this post will explore some of the common and useful flags that can be used while scanning to pick up useful information about targets.

Programming languages infosec professionals should learn

The tl;dr is JavaScript. Whatever other language you learn, you’ll also need to learn JavaScript. It’s the language of browsers, Word macros, JSON, NodeJS server side, scripting on the command-line, and Electron apps. You’ll also need to a bit of bash and/or PowerShell scripting skills, SQL for database queries, and regex for extracting data from text files. Other languages are important as well, Python is very popular for example. Actively avoid C++ and PHP as they are obsolete.

Python for Pentesters

This course will teach you Python scripting and its application to problems in computer and network security. This course is ideal for penetration testers, security enthusiasts and network administrators who want to learn to automate tasks or go beyond just using ready-made tools. We will be covering topics in system security, network security, attacking web applications and services, exploitation techniques, malware and binary analysis and task automation.

JavaScript for Pentesters

In this course, we will be learning how to use JavaScript for Pentesting.

I feedback.
Let me know what you think of this article on twitter @_TheGetch_!