appsecben
  • AppSecBen
  • Awesome Links
  • tools
    • grep
    • netstat
    • nmap
    • h8mail
    • sherlock
    • BeEF
    • Wireshark
    • Scapy
    • ffuf
    • wafw00f
    • hCaptcha
    • sn1per
    • WPScan
    • searchsploit
    • Metasploit
    • wget
    • Bash Scripting
    • git
    • Docker
    • VSCode
    • Local web server
    • S3 Bucket
    • JWT
  • Links Úteis
    • Cursos
    • Ferramentas Online
    • Repositórios
    • Articles, Docs, Sites, etc
  • Infra
    • Email
    • DNS
    • Subdomain
    • Ferramentas
    • SSH
  • Tor
    • Links
    • Tor + ProxyChains Config
  • GoLang
    • Cheat Sheet
    • Install
    • Useful Links
    • Packages
    • VSCode
  • Vulns
    • Log4j
Powered by GitBook
On this page
  • Tools
  • Learning
  • Repositories
  • Sites and Blogs
  • Articles
  • Cheat Sheets
  • Docs and Books
  • Videos

Was this helpful?

Awesome Links

Useful links for tools, blogs, posts, etc...

PreviousAppSecBenNextgrep

Last updated 3 years ago

Was this helpful?

Tools

  • : WEB APPLICATION FIREWALLS BYPASSES COLLECTION AND TESTING TOOLS

  • : write down a command-line to see the help text that matches each argument.

  • : search engine for Internet-connected devices.

  • : search engine for Internet-connected devices.

  • : Search across a half million git repos.

  • : search engine for OSINT.

  • : mentalmap for OSINT.

  • : Find out what websites are built with.

  • : Analyze suspicious files and URLs to detect types of malware, automatically share them with the security community.

  • : Type URL of your website to get complete detailed information about quality and quantity of backlinks pointing to your website.

  • : Internet Archive is a non-profit library of millions of free books, movies, software, music, websites, and more.

  • : Your pentesting arsenal, ready to go.

  • : The Mozilla Observatory has helped over 240,000 websites by teaching developers, system administrators, and security professionals how to configure their sites safely and securely.

  • : Hex Packet Decoder.

  • : Online ASCII tools is a collection of useful browser-based utilities for working with ASCII character set.

  • : The Cyber Swiss Army Knife.

  • : Vulnerability Database.

  • : Rest API mocking and intercepting in seconds.

  • : Minimalistic, powerful and extremely customizable Zsh prompt.

  • : A whiteboard that lets you focus on ideas.

  • : Database for open source vulnerabilities.

Learning

  • Udemy:

Repositories

Sites and Blogs

Articles

  • JWT

  • OAuth

Cheat Sheets

Docs and Books

Videos

: Application Security Training

: Free, online web security training from the creators of Burp Suite

: Security Labs Community Edition from Veracode.

: Como aprender a realizar um Teste de Invasão (PenTest) completo através de diversos exemplos práticos.

: Design secure and robust microservices systems using the most up-to-date security best practices.

: Treinamentos em segurança.

: Collection of multiple types of lists used during security assessments, collected in one place.

: A list of useful payloads and bypasses for Web Application Security.

: KeyHacks shows ways in which particular API keys found on a Bug Bounty Program can be used, to check if they are valid.

: About Our main goal is to share tips from some well-known bughunters.

: Rockyou for web fuzzing

: Get direct access to the world’s top ethical hackers. Stress test systems, hunt bugs, and fix vulnerabilities before anyone else even knows they exist.

: Discover and remediate more key vulnerabilities sooner, so bad actors never have a chance.

: Welcome to the page where you will find each hacking trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

: Penetration Testing && Security Research Blog

: Raj Chandel's Blog

: A security research blog

: All developers news in one place

waf-bypass.com
explainshell.com
censys.io
shodan.io
grep.app
intelx.io
osintframework.com
builtwith.com
virustotal.com
backlinkwatch.com
archive.org
pentest-tools.com
observatory.mozilla.org
hpd.gasmi.net
onlineasciitools.com
CyberChef
patchstack.com
beeceptor.com
spaceship-prompt.sh
tryeraser.com
osv.dev
Kontra
PortSwigger Academy
Veracode Security Labs
Fundamentos de Ethical Hacking: curso prático
Microservices Security - The Complete Guide
DESEC
Cyber Security Full Course In 8 Hours | Cyber Security Tutorial | Cyber Security Training | Edureka
Ethical Hacking Full Course - Learn Ethical Hacking in 10 Hours | Ethical Hacking Tutorial | Edureka
danielmiessler/SecLists
swisskyrepo/PayloadsAllTheThings
streaak/keyhacks
KingOfBugbounty/KingOfBugBountyTips
six2dez/OneListForAll
hackerone.com
bugcrowd.com
book.hacktricks.xyz
highon.coffee
hackingarticles.in
labs.detectify.com
daily.dev
(In)segurança em tokens JWT
Stop using JWT for sessions
OAuth 2.0 Threat Model and Security Considerations
Hakluke's huge list of resources for beginner hackers
OWASP Cheat Sheet Series
OverApi
Application Security by 0xn3va
NGINX - EBOOK Web Application Security
OWASP ASVS
AppSecBen Playlist