Application-Security-Engineer-Interview-Questions. Some of the questions which i was asked when i was giving interviews for Application/Product Security roles. I am sure this is not an exhaustive list but i felt these questions were important to be asked and some were challenging to answer
688PWK-OSCP-Preparation-Roadmap. Roadmap for preparing for OSCP, anyone is free to use this, and also feedback and contributions are welcome
392Resources-for-Application-Security. Some good resources for getting started with application security
149Browser-Security-Research. Resources for Browser Security Research
60MavenDependencyCheck. An automation script to run OWASP Dependency-Check on multiple Maven Based projects.
6security_whitepapers. Collection of misc IT Security related whitepapers, presentations, slides - hacking, bug bounty, web application security, XSS, CSRF, SQLi
3companies-hiring-security-remote. This repo is meant to be a list of companies that hire security people full remote.
2awesome-infosec. A curated list of awesome infosec courses and training resources.
2computer-science. :mortar_board: Path to a free self-taught education in Computer Science!
2security-1. A collection of software, libraries, documents, books, resources and cools stuffs about security.
2awesome-internet-scanning. A curated list of awesome Internet port and host scanners, plus related components and much more, with a focus on free and open source projects.
2A-Good-Cyber-Security-List. HTML
2awesome-threat-modelling. A curated list of threat modeling resources (Books, courses - free and paid, videos, tools, tutorials and workshops to practice on ) for learning Threat modeling and initial phases of security review.
1InfoSec-Learning-Materials. Resource for developing infosec skills for OSCP
1awesome-browser-exploit. awesome list of browser exploitation tutorials
1OSCP-1. OSCP cheet sheet
1Web-CTF-Cheatsheet. Web CTF CheatSheet 🐈
1Red-Teaming-Toolkit. A collection of open source and commercial tools that aid in red team operations.
1DevopsWiki. A wiki of Devops Tools, Tutorials and Scripts
1quick-SQL-cheatsheet. A quick reminder of all SQL queries and examples on how to use them.
1awesome-code-review. An "Awesome" list of code review resources - articles, papers, tools, etc
1awesome-distributed-systems-1. Awesome list of distributed systems resources
1OSCP-Archives. An archive of everything related to OSCP
1exploit-database-bin-sploits. Exploit Database binary exploits located in the /sploits directory
1Free-Security-eBooks. Free Security and Hacking eBooks
1google-ctf. Google CTF challenges
1Cheatsheet. Python
1Library-Management-System. Library Management System
1phpstan. PHP Static Analysis Tool - discover bugs in your code without running it!
1developer-roadmap. Roadmap to becoming a web developer in 2018
1Awesome-Red-Teaming. List of Awesome Red Teaming Resources
1Mirai-Source-Code. Leaked Mirai Source Code for Research/IoC Development Purposes
1H5SC. HTML5 Security Cheatsheet - A collection of HTML5 related XSS attack vectors
1OWASP-Web-Checklist. OWASP Web Application Security Testing Checklist
1kurukshetra. Kurukshetra - A framework for teaching secure coding by means of interactive problem solving.
1every-programmer-should-know. A collection of (mostly) technical things every software developer should know
1PracticalMalwareLabs. Keep track of the labs from the book "Practical Malware Analysis"
1Reconnoitre. A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results along with writing out recommendations for further testing.
1IoTSecurity101. From IoT Pentesting to IoT Security
1dirtycow.github.io. Dirty COW
1pocs. Proof of Concepts (PE, PDF...)
1ctf. Python
1nullmumbai08-10-16. SQL injection, CSRF, brute force and image upload vulnerability hack scripts and safeguarding scripts
1how2heap. A repository for learning various heap exploitation techniques.
1MavenDependencyCheck-Golang. Go
1