README.md

Lab.Security

References

• https://www.sans.org/
• https://www.owasp.org
• https://en.wikipedia.org/wiki/Payment_Card_Industry_Data_Security_Standard
• https://www.pcisecuritystandards.org/pci_security/
• http://seclists.org/
• xss.cx - Exploit Search, Reverse Engineering Data, Bug Bounty Reports
• NIST Cybersecurity Framework (CSF)
• Build Security In Maturity Model (BSIMM)

Threat Monitoring Tools

• https://www.darktrace.com/
• https://intel.malwaretech.com/
• https://nmap.org/
• http://sectools.org/

Security / Hacking COnferences

• http://www.blackhat.com/
  • https://twitter.com/BlackHatEvents
• https://www.defcon.org/
  • https://twitter.com/defcon
• https://www.rsaconference.com
  • https://twitter.com/RSAConference
• https://www.rmisc.org/
  • https://twitter.com/The_RMISC
• http://www.hackerhalted.com
  • https://twitter.com/HackerHalted
• http://www.thotcon.org
  • https://twitter.com/thotcon
• http://grrcon.com/
  • https://twitter.com/GrrCON
• http://www.summercon.org
  • https://twitter.com/SummerC0n
• https://www.derbycon.com/

Cryptography

• https://en.wikipedia.org/wiki/Public-key_cryptography

Security Tools

• https://nmap.org/
• https://ssd.eff.org/
• https://decentsecurity.com/#/malware-web-and-phishing-investigation/

Certificate Authorities

• https://letsencrypt.org/

RFCs

• RFC-7540 Hypertext Transfer Protocol Version (HTTP/2)
• RFC-7235 Hypertext Transfer Protocol (HTTP/1.1): Authentication
• RFC-5246 The Transport Layer security (TLS) Protocol Veresion 1.2
• [RFC-2818 HTTP Over TLS] (https://tools.ietf.org/html/rfc2818)

Security Threats / Attack Vectors

• https://en.wikipedia.org/wiki/Man-in-the-middle_attack
• https://en.wikipedia.org/wiki/POODLE
• https://en.wikipedia.org/wiki/DROWN_attack

Interesting Securited Related Github Accounts

• https://github.com/bonsaiviking?tab=repositories
• https://github.com/nccgroup
• https://github.com/TheOfficialFloW

Interesting Github Resources

• https://github.com/google/sandbox-attacksurface-analysis-tools
• https://github.com/securityisamyth

Third Party Services & Tools

• https://www.sslshopper.com/
• https://www.eff.org/https-everywhere
• https://panopticlick.eff.org/
• https://www.grc.com/passwords.htm
• https://defuse.ca/passgen.htm
• https://github.com/nccgroup/featherduster
• http://www.kapersky.com
• http://www.symantec.com
• http://www.McAfeecom
• https://www.coresecurity.com/
• http://seclists.org/fulldisclosure/
• http://www.talosintel.com/software/
• https://torguard.net/
• http://www.telerik.com/fiddler
• https://www.trailofbits.com/
• https://lgtm.com/
• https://www.gpg4win.org/
  • https://twitter.com/gpg4win
• https://www.virustotal.com
• http://www.herdprotect.com/

Interesting Academic Papers

• https://ntruprime.cr.yp.to/ntruprime-20160511.pdf

Interesting Security-Related YouTube Channels:

• https://www.youtube.com/c/LoiLiangYang/