Resources

• https://book.hacktricks.xyz/
  • Massive collection of hacking techniques
• https://blog.adithyanak.com/oscp-preparation-guide
  • Many tips and trick how to get onto a box and what's next

• https://github.com/NagliNagli/BountyTricks

  • Portal to many different bug bounty resources

• https://ippsec.rocks/

  • search for keywords and get an attack vector
• https://github.com/swisskyrepo/PayloadsAllTheThings
  • Payload definitions for quite every possible attack vector
• https://gtfobins.github.io/ (linux)
  • how to exploit linux binaries and functionalities

• https://lolbas-project.github.io/ (windows)

  • how to exploit windows binaries and functionalities

• Where to find CVE/Exploit examples

  • https://cvetrends.com/
  • https://www.cvedetails.com/
  • https://nvd.nist.gov/vuln/search
  • https://cve.mitre.org/
  • https://www.exploit-db.com/
  • Nuclei CVE Templates (from 2001 till today!)
  • Apache httpd server vulnerabilities per version
  • https://attackerkb.com/
  • https://cxsecurity.com/wlb/
• Calculate the CVE Score (CVSS3)
  • https://chandanbn.github.io/cvss/