Ask HN: What are the best resources for learning security and pen testing?

305 点作者 relaunched将近 7 年前

32 条评论

I create highly technical videos about various topics of IT security. Many of my videos are walk-throughs of CTF challenges explaining my thought process. I think this playlist could be interesting: <a href="https://www.youtube.com/playlist?list=PLhixgUqwRTjywPzsTYz28I-qezFOSaUYz" rel="nofollow">https://www.youtube.com/playlist?list=PLhixgUqwRTjywPzsTYz28...</a>I have also recently started a series on Pwn Adventure 3, where we are hacking a game and I explain my process: <a href="https://www.youtube.com/playlist?list=PLhixgUqwRTjzzBeFSHXrw9DnQtssdAwgG" rel="nofollow">https://www.youtube.com/playlist?list=PLhixgUqwRTjzzBeFSHXrw...</a>Besides that, I can also really recommend livestreams/screenshares from the following creators. To me, seeing how somebody really does it and where they struggle, really really helped me break through a wall I was hitting:+ ippsec: <a href="https://www.youtube.com/channel/UCa6eh7gCkpPo5XXUDfygQQA" rel="nofollow">https://www.youtube.com/channel/UCa6eh7gCkpPo5XXUDfygQQA</a>+ John Hammond: <a href="https://www.youtube.com/user/RootOfTheNull" rel="nofollow">https://www.youtube.com/user/RootOfTheNull</a>+ Gynvael EN: <a href="https://www.youtube.com/user/GynvaelEN" rel="nofollow">https://www.youtube.com/user/GynvaelEN</a>+ Derek Rook: <a href="https://www.youtube.com/channel/UCMACXuWd2w6_IEGog744UaA" rel="nofollow">https://www.youtube.com/channel/UCMACXuWd2w6_IEGog744UaA</a>+ ...

评论 #17571751 未加载

评论 #17571505 未加载

评论 #17565911 未加载

评论 #17566196 未加载

strictnein将近 7 年前

If you like watching videos and following along:Free: <a href="https://www.cybrary.it/" rel="nofollow">https://www.cybrary.it/</a>Cheap: <a href="https://www.pluralsight.com/" rel="nofollow">https://www.pluralsight.com/</a>The entry level cert in this area is the CEH. It's kind of looked down upon, like a lot of entry level certs are, but studying/working towards that isn't a bad thing.Books:- Practical:The Web Application Hacker's Handbook 2nd Edition - Gives a very good overview and is a good place to start.The Hacker Playbook 3: Practical Guide To Penetration Testing - #3 just came out. Haven't gone through my copy yet, but I've heard good things.RTFM - Red Team Field Manual - Nice to have, quick reference guideBTFM - Blue Team Field Manual - Like the above, but for the good guys ;)- Covering the bigger picture, if you're curious (geopolitical):The Hacked World Order: How Nations Fight, Trade, Maneuver, and Manipulate in the Digital AgeThe Red Web: The Struggle Between Russia's Digital Dictators and the New Online RevolutionariesDark Territory: The Secret History of Cyber WarCyberspies: The Secret History of Surveillance, Hacking, and Digital Espionage

评论 #17570619 未加载

评论 #17564731 未加载

评论 #17565774 未加载

arkadiyt将近 7 年前

There's no standard path in information security, most schools don't offer information security degrees and many extremely successful people in security didn't come from a CS background at all.Some general recommendations:- follow smart security people on Twitter, which is the defacto medium for information security discussion- read publicly disclosed bug bounty reports on Hackerone and Bugcrowd- read The Tangled Web by Michal Zalewski- learn to use Burp Suite

评论 #17564090 未加载

indigochill将近 7 年前

Plenty of good suggestions here already. Some I've not seen mentioned yet:Books:Hacking, 2nd edition (some specifics are out of date, but it teaches hacking by teaching how the relevant pieces of a computer work which is still valuable)Anything else from <a href="https://nostarch.com/catalog/security" rel="nofollow">https://nostarch.com/catalog/security</a> that looks relevant to your specific interestsHands-on practice:OverTheWire: <a href="http://overthewire.org/wargames/" rel="nofollow">http://overthewire.org/wargames/</a> (wargames to ease you into things)WeChall: <a href="https://www.wechall.net/" rel="nofollow">https://www.wechall.net/</a> (challenge site directory that'll help you pick challenge sites based on your topic of interest)+Ma's Reversing: <a href="http://3564020356.org/" rel="nofollow">http://3564020356.org/</a> (old reverse engineering site/community - mostly dead as far as I know but the puzzles will still challenge you and the old articles you can unlock make it a bit of a hacking museum)CTF Time: <a href="https://ctftime.org/" rel="nofollow">https://ctftime.org/</a> (A directory/calendar of tons of CTFs you can play in)Pwn Adventure: <a href="http://www.pwnadventure.com/" rel="nofollow">http://www.pwnadventure.com/</a> (A vulnerable MMO server/client designed to demonstrate common game vulnerabilities)VulnHub: <a href="https://www.vulnhub.com/" rel="nofollow">https://www.vulnhub.com/</a> (A repository of deliberately vulnerable VMs you can host and attack in your security lab)

mansilladev将近 7 年前

I find that talking to folks in the trenches is incredibly useful. If you’re already at a company that has a security team, or even a small company that has folks that deal with infra/app security and/or incidents, you can learn a boatload directly the practitioners on the line. Even better if there’s a chat room that you can be a fly on the wall in.When I worked at Mashery (a SaaS API management company) we were the front end for the APIs of hundreds of companies around the world, handling billions of API calls for the likes of Comcast, Best Buy, Starbucks, Macy’s, etc. During my time there, I learned a god awful amount about ops, scaling, amd security, simply by sticking my head in whenever I detected chaos going down.Some comments mentioned tools like Metasploit, or reading up on the OWASP 10. Yup and yup. Plus, there are other tools to add to your belt that I find indispensable: Charles Proxy (install a MITM to watch web traffic), nmap (discover all the services running on a network)

paddlepop将近 7 年前

I highly recommend pentesterlab.com. The Web for Pentester course is a great intro for first timers if you read the PDF and play with the VMWhen training newbies I will start with this and get them to play around with google-gruyere.appspot.com.These are only relevant for web app testing, I haven't been able to find a suitable free resource for network testing but for paid resources OSCP is a great practice course if not pretty challenging for first timers

jdeca568将近 7 年前

As mentionned several times already, OWASP has very interesting stuff, it's more web application oriented though. (<a href="https://www.owasp.org" rel="nofollow">https://www.owasp.org</a>)WebGoat is a good way to put things in practice locally. (<a href="https://github.com/WebGoat/WebGoat" rel="nofollow">https://github.com/WebGoat/WebGoat</a>)The project ZAP is a really great tool to help you in the process. (<a href="https://www.zaproxy.org" rel="nofollow">https://www.zaproxy.org</a>)Outside the web sphere, exploit database is a great site with a bunch of exploit code, explanation and papers. (<a href="https://www.exploit-db.com" rel="nofollow">https://www.exploit-db.com</a>)The tool suite in Kali Linux is also very good if you don't mind read the documentation and try understanding the goal of the tools. (<a href="https://www.kali.org" rel="nofollow">https://www.kali.org</a>)Kali NetHunter lets you practice from Android. (<a href="https://github.com/offensive-security/kali-nethunter" rel="nofollow">https://github.com/offensive-security/kali-nethunter</a>)Security is such a wide domain that you can quickly get flood. I don't think the ultimate step-by-step learning guide exists.Once you've learned and practiced a bit, if you don't give up too soon, you will get the point and understand how deep you need to go into a protocol or a system to actually do something yourself (then this not about security documentation anymore, but about understanding how the target works, and how you can make it work the way you want).I would say that you need to focus on some targets first, and expand the scope over time depending on your needs/interests.

s14ve将近 7 年前

CTFs: <a href="https://github.com/apsdehal/awesome-ctf" rel="nofollow">https://github.com/apsdehal/awesome-ctf</a> especially <a href="https://www.hackthebox.eu/" rel="nofollow">https://www.hackthebox.eu/</a>In case you want cert: skip CEH, get some basic knowledge and go OSCPDaily resources:* <a href="https://www.reddit.com/r/netsec/" rel="nofollow">https://www.reddit.com/r/netsec/</a>* <a href="https://www.hackerone.com/zerodaily" rel="nofollow">https://www.hackerone.com/zerodaily</a>* <a href="https://hackerone.com/hacktivity" rel="nofollow">https://hackerone.com/hacktivity</a>For lightweight learning by watching after work, check out LiveOverflow: <a href="https://www.youtube.com/channel/UClcE-kVhqyiHCcjYwcpfj9w" rel="nofollow">https://www.youtube.com/channel/UClcE-kVhqyiHCcjYwcpfj9w</a>

评论 #17564891 未加载

myself248将近 7 年前

If your goal is to land a job with the skills you acquire, you'll need more than just solid basic skills. It would be helpful to keep abreast of new developments, where there might not necessarily be a lot of training material yet.One way to keep up on what's new, is to watch the talks posted by security conferences. Speakers generally submit their freshest work, and are often playing their own game of resume-enhancement by getting their name associated with hot topics. So pay attention to not just the topics, but also the vocabulary around them...A lot of the newest-fanciest research won't necessarily be within your grasp as a neophyte, but some of it will, and some of it will inform your direction and focus as you work your way up.And some of it will suggest entirely new avenues, disciplines, and modes of thinking.

taurusismysign将近 7 年前

This should help - <a href="https://www.zaproxy.org/" rel="nofollow">https://www.zaproxy.org/</a>

jquast将近 7 年前

<a href="https://www.pearson.com/us/higher-education/program/Dowd-Art-of-Software-Security-Assessment-The-Identifying-and-Preventing-Software-Vulnerabilities/PGM306255.html" rel="nofollow">https://www.pearson.com/us/higher-education/program/Dowd-Art...</a>

runjake将近 7 年前

OffSec's course is both very well-respected and very in-depth.<a href="https://www.offensive-security.com/information-security-training/penetration-testing-training-kali-linux/" rel="nofollow">https://www.offensive-security.com/information-security-trai...</a>The price isn't bad, either.

WhiteSource1将近 7 年前

Resources I like:DDoS BootCamp: <a href="https://www.ddosbootcamp.com/" rel="nofollow">https://www.ddosbootcamp.com/</a>InfoSec Industry: <a href="https://www.infosecinstitute.com/topics/information-security-training/" rel="nofollow">https://www.infosecinstitute.com/topics/information-security...</a>Learning Tree (might have free access through your local library): <a href="https://www.learningtree.com/training-directory/cyber-security-training/" rel="nofollow">https://www.learningtree.com/training-directory/cyber-securi...</a>and several courses available on Coursera: <a href="https://www.coursera.org/learn/it-security" rel="nofollow">https://www.coursera.org/learn/it-security</a>

throwaway000021将近 7 年前

This is a good intro to pen testing: <a href="https://www.sgsgroup.com.hk/en/news/2014/02/general-requirements-and-test-methods-for-pen" rel="nofollow">https://www.sgsgroup.com.hk/en/news/2014/02/general-requirem...</a>

loteck将近 7 年前

This often goes overlooked on a forum full of coders, but not everyone who reads HN or wants into infosec is proficient with a major scripting language.I'd bet being solid in python/bash/powershell would come in handy, and that having no skills in any of them may be a dealbreaker.

评论 #17565316 未加载

lewsire将近 7 年前

<a href="http://www.securitytube.net/" rel="nofollow">http://www.securitytube.net/</a> <a href="https://www.pentesteracademy.com/" rel="nofollow">https://www.pentesteracademy.com/</a> ... both run by same company

Liblor将近 7 年前

Resources I like that haven't been mentioned yet:Offensive Computer Security (used to be a class at FSU): <a href="http://hackallthethings.com/ocs.php" rel="nofollow">http://hackallthethings.com/ocs.php</a><a href="https://www.cs.fsu.edu/~redwood/OffensiveComputerSecurity/lectures.html" rel="nofollow">https://www.cs.fsu.edu/~redwood/OffensiveComputerSecurity/le...</a> (2014 version)Opensecuritytraining (various stuff on different topics): <a href="http://opensecuritytraining.info/Welcome.html" rel="nofollow">http://opensecuritytraining.info/Welcome.html</a>

Mandatum将近 7 年前

No-bullshit, basics of hacking guide often referenced as preparation material for the OSCP exam.<a href="https://nostarch.com/pentesting" rel="nofollow">https://nostarch.com/pentesting</a>/r/netsecnetsecfocus.com - chat community, super active

mattr3将近 7 年前

This Medium article provides a comprehensive overview <a href="https://hackernoon.com/how-to-become-a-hacker-e0530a355cad" rel="nofollow">https://hackernoon.com/how-to-become-a-hacker-e0530a355cad</a>Books

评论 #17565238 未加载

thorin将近 7 年前

How about these courses: <a href="https://www.edx.org/micromasters/ritx-cybersecurity" rel="nofollow">https://www.edx.org/micromasters/ritx-cybersecurity</a> it's free if you don't want the certificate and Johnathan S Weissman is an amusing and informative geek.I've only done the foundation so far, but as a long time developer I've already learnt a few things

dogma1138将近 7 年前

AskNetsec on reddit.OWASP find your local chapter and go to meetings.YouTube, and pentesterlab (even the free ones are better than most (even all) other paid resources).

k4ch0w将近 7 年前

Learn the OWASP top 10Use vulnerable VM's and practice like Metasploitable and <a href="https://github.com/SecGen/SecGen" rel="nofollow">https://github.com/SecGen/SecGen</a>Get the OSCPI also highly recommend being good at some programming. This is for source code review and quick scripts/exploit development.

评论 #17564029 未加载

Athaman将近 7 年前

The university of NSW (respected Australian uni) is putting up a bunch of materials from their Masters in Cyber Security. It's going up slower than expected but the lecturer is engaging and the first subject to roll out covers a lot of good philosophy of security type subjects.Find it at sec.edu.au/moocs

longnow将近 7 年前

This ‘awesome list’ is a great list of curated security resources. <a href="https://github.com/sbilly/awesome-security/blob/master/README.md" rel="nofollow">https://github.com/sbilly/awesome-security/blob/master/READM...</a>

kayge将近 7 年前

For getting started in web security, the Hacker101 series by HackerOne is a great — and free — place to start. And I believe they are currently adding new content every month.<a href="https://www.hacker101.com/" rel="nofollow">https://www.hacker101.com/</a>

sakshyamshah将近 7 年前

recommended way, 1. learn operating system internals, start using Linux 2. learn computer networking. TCP/IP, OSI layer and network protocols like TCP, UDP, HTTP 3. learn about software programs and Web application architecture 4. start following up security related resource like books, videos, courses (OSCP is great).- Pick one programming language along the way and try scripting programs while learning. - you need not master every topic but knowledge of how and why everything works the way it works increases you expertise as security practitioner - since there are many public bug bounty programs these days, legally testing out stuffs to hone your knowledge has never been easy. plus you get paid.

runningmike将近 7 年前

<a href="http://security-and-privacy-reference-architecture.readthedocs.io/en/latest/" rel="nofollow">http://security-and-privacy-reference-architecture.readthedo...</a> with Only open resources

yobananaboy将近 7 年前

I'm going through HackTheBox to prepare for taking the OSCP course. <a href="https://www.hackthebox.eu/" rel="nofollow">https://www.hackthebox.eu/</a>

jonahx将近 7 年前

Surprised I didn't see the Matasano security challenges mentioned yet:<a href="https://cryptopals.com/" rel="nofollow">https://cryptopals.com/</a>

DyslexicAtheist将近 7 年前

for learning security I'd start with this book:Security Engineering — The Book <a href="https://www.cl.cam.ac.uk/~rja14/book.html" rel="nofollow">https://www.cl.cam.ac.uk/~rja14/book.html</a>

xrayzerone将近 7 年前

Follow anyone from SpecterOps and the content they put out.

lainon将近 7 年前

r/netsec