Page:
Tools and Resources
Pages
API Rate Limiter
API Security Scanner
Base64 Tool
Bug Bounty Platform
Caesar Cipher
Certification Roadmaps
Contributing
DNS Lookup
Docker Security Audit
Encrypted P2P Chat
Getting Started
Home
Keylogger
Metadata Scrubber Tool
Network Traffic Analyzer
Project Roadmap
SIEM Dashboard
Simple Port Scanner
Simple Vulnerability Scanner
Tools and Resources
2
Tools and Resources
CarterPerez-dev edited this page 2026-02-11 04:56:38 -05:00
Table of Contents
Tools and Resources
Curated collection of cybersecurity tools, learning platforms, and resources.
The repository now has a dedicated RESOURCES/ folder with expanded, regularly updated content split across multiple files: TOOLS.md, COURSES.md, CERTIFICATIONS.md, COMMUNITIES.md, and FRAMEWORKS.md. This wiki page provides a summary.
Tools by Category
Reconnaissance & Scanning
| Tool | Description | Link |
|---|---|---|
| Nmap | Network mapper and port scanner | nmap.org |
| Nessus | Vulnerability scanner | tenable.com |
| Amass | Subdomain enumeration | GitHub |
| theHarvester | Information gathering | GitHub |
| Shodan | Internet search engine | shodan.io |
| Recon-ng | Web reconnaissance framework | GitHub |
Web Application Testing
| Tool | Description | Link |
|---|---|---|
| Burp Suite | Web vulnerability scanner | portswigger.net |
| OWASP ZAP | Web app security scanner | zaproxy.org |
| SQLmap | SQL injection testing | sqlmap.org |
| Gobuster | Directory/DNS brute forcing | GitHub |
| Nuclei | Template-based scanning | GitHub |
| Nikto | Web server scanner | GitHub |
Network & Wireless
| Tool | Description | Link |
|---|---|---|
| Wireshark | Network protocol analyzer | wireshark.org |
| Bettercap | Network attack framework | GitHub |
| Aircrack-ng | Wireless network auditing | aircrack-ng.org |
| Responder | LLMNR/NBT-NS poisoner | GitHub |
| mitmproxy | HTTP/HTTPS proxy | GitHub |
Exploitation & Post-Exploitation
| Tool | Description | Link |
|---|---|---|
| Metasploit | Penetration testing framework | metasploit.com |
| Hydra | Password cracking | GitHub |
| CrackMapExec | Post-exploitation framework | GitHub |
| Mimikatz | Credential extraction | GitHub |
| Empire | PowerShell post-exploitation | GitHub |
| BloodHound | Active Directory analysis | GitHub |
Cryptography & Analysis
| Tool | Description | Link |
|---|---|---|
| John the Ripper | Password cracker | openwall.com |
| Hashcat | GPU-accelerated hash cracking | hashcat.net |
| Ghidra | Reverse engineering | ghidra-sre.org |
| Radare2 | Binary analysis framework | GitHub |
Forensics & Malware
| Tool | Description | Link |
|---|---|---|
| Volatility | Memory forensics | volatilityfoundation.org |
| Cuckoo Sandbox | Malware analysis sandbox | cuckoosandbox.org |
| YARA | Pattern matching for malware | GitHub |
Defense & Monitoring
| Tool | Description | Link |
|---|---|---|
| Suricata | Network IDS/IPS | suricata.io |
| OSSEC | Host-based IDS | ossec.net |
| Snyk | Dependency vulnerability scanner | snyk.io |
| Semgrep | Static analysis | semgrep.dev |
Learning Platforms
Hands-On Labs
| Platform | Focus | Cost |
|---|---|---|
| TryHackMe | Beginner-friendly challenges | Free + Premium |
| Hack The Box | Penetration testing labs | Free + Premium |
| HackTheBox Academy | Structured learning paths | Paid |
| PentesterLab | Web security | Paid |
| VulnHub | Vulnerable VMs | Free |
Video Courses
| Platform | Focus | Cost |
|---|---|---|
| Cybrary | General cybersecurity | Free + Premium |
| INE | Security specialization | Paid |
| Pluralsight | Tech skill development | Paid |
| CBT Nuggets | Certification prep | Paid |
| Udemy | Various instructors | Paid (sales) |
Free Resources
| Resource | Description |
|---|---|
| Professor Messer | CompTIA video courses |
| SANS Cyber Aces | Free tutorials |
| freeCodeCamp | Comprehensive courses |
| Coursera | University courses (audit free) |
YouTube Channels
Top Recommendations
| Channel | Focus |
|---|---|
| Professor Messer | CompTIA certification prep |
| NetworkChuck | Networking & security |
| John Hammond | Hacking & CTFs |
| The Cyber Mentor | Ethical hacking |
| LiveOverflow | CTF & binary exploitation |
| David Bombal | Cisco & networking |
| HackerSploit | Ethical hacking tutorials |
| IppSec | HTB walkthroughs |
Conferences
| Channel | Content |
|---|---|
| DEFCONConference | DEFCON talks |
| BlackHat | BlackHat presentations |
| SecurityWeekly | Security news & updates |
Security Frameworks
NIST
| Framework | Purpose |
|---|---|
| Cybersecurity Framework | Risk management |
| 800-53 | Security controls |
| 800-61 | Incident handling |
| 800-207 | Zero Trust |
Industry Standards
| Framework | Focus |
|---|---|
| MITRE ATT&CK | Adversary tactics & techniques |
| OWASP Top 10 | Web application risks |
| CIS Controls | Critical security controls |
| ISO 27001 | Information security management |
Compliance
| Standard | Industry |
|---|---|
| PCI-DSS | Payment cards |
| HIPAA | Healthcare |
| GDPR | EU data protection |
| SOC 2 | Service organizations |
Community
| Subreddit | Focus |
|---|---|
| r/cybersecurity | General discussion |
| r/netsec | Network security news |
| r/AskNetsec | Q&A |
| r/CompTIA | Certification discussion |
| r/oscp | OSCP preparation |
| r/BlueTeamSec | Defensive security |
| r/RedTeam | Offensive security |
| r/malware | Malware analysis |
News & Blogs
| Source | Type |
|---|---|
| Krebs on Security | Investigative journalism |
| Dark Reading | Industry news |
| The Hacker News | Breaking news |
| Bleeping Computer | News & tutorials |
| Schneier on Security | Expert analysis |
| SANS ISC | Threat intelligence |
Databases & References
| Resource | Content |
|---|---|
| Exploit-DB | Exploits & vulnerabilities |
| CVE | Vulnerability identifiers |
| NVD | Vulnerability database |
| VirusTotal | File/URL analysis |
| AbuseIPDB | IP reputation |
| AlienVault OTX | Threat intelligence |
For the most comprehensive and up-to-date version, see the RESOURCES/ folder in the repository.
Navigation
Beginner Projects
- Simple Port Scanner
- Keylogger
- Caesar Cipher
- DNS Lookup Tool
- Vulnerability Scanner
- Metadata Scrubber
- Network Traffic Analyzer
- Base64 Encoder/Decoder
Intermediate Projects
Advanced Projects
Guides
Resources
Progress: 14/60
©AngelaMos | CertGames.com | CarterPerez-dev | 2026