Awesome Penetration Testing

Uma coleção de recursos para testes de penetração impressionante, ferramentas e outras coisas brilhantes.

Índice

• Recursos Online
  • Teste de Penetração
  • Desenvolvimento de Shellcode
  • Engenharia Social
  • Lock Picking (Arte das Fechaduras)
• Ferramentas
  • Distribuiçoes para Teste de Penetração
  • Ferramentas Básicas para Teste de Penetração
  • Scanners de Vulnerabilidade
  • Ferramentas para Rede
  • Ferramentas para Rede Wireless
  • Ferramentas para Análise de SSL
  • Editores Hexadecimal
  • Crackers
  • Windows Utils
  • Ferramentas para DDoS
  • Ferramentas para Engenharia Social
  • Ferramentas para OSInt (Levantar de Informações)
  • Ferramentas para Anonimato
  • Ferramentas para Engenharia Reversa
• Livros
  • Livros sobre Teste de Penetração
  • Manuais Hackers
  • Livros sobre Análise de Redes
  • Livros sobre Engenharia Reversa
  • Livros sobre Análise de Malware
  • Livros sobre Windows
  • Livros sobre Engenharia Social
  • Livros sobre Lock Picking
• Banco de Dados de Vulnerabilidades
• Cursos de Segurança da Informação
• Conferências sobre Segurança da Informação
• Revistas sobre Segurança da Informação
• Listas Impressionantes
• Contribuição
• Licença

Recursos online

Teste de Penetração

• Metasploit Unleashed - Curso grátis de segurança ofenssiva com metasploit
• PTES - Execução de teste de penetração padrão
• OWASP - Projeto aberto de segurança em Aplicações web

Desenvolvimento de Shellcode

• Shellcode Examples - Database de shellcodes

Engenharia Social

• Framework para engenharia social - Uma fonte de informação para os engenheiros sociais

Lock Picking

• Schuyler Towne channel - Videos e palestras sobre Lockpicking
• Lockpicking - Recursos para apredizagem de lockpicking, equipamentos e recomendações.

Ferramentas

Distribuições para Teste de Penetração

• Kali - Uma distribuição linux projeta para testes de penetração e forense.
• BlackArch - Distribuição baseada em Arch Linux para testes de penetração e pesquisadores de segurança.
• NST - Distribuição Toolkit para segurança em redes.
• Pentoo - Focado em segurança, baseado em Gentoo.
• BackBox - Distribuição baseada em Ubuntu para testes de penetração e avaliações de segurança.

Ferramentas Básicas para Teste de Penetração

• Metasploit Framework - Framework mais usado do mundo para teste de penetração.
• Burp Suite -Uma plataforma integrada para a realização de testes de segurança de aplicações web.
• ExploitPack - Ferramenta gráfica para testes de penetração com um monte de exploits.

Scanners de Vulnerabilidades

• Netsparker - Scanner de segurança para aplicações web.
• Nexpose - Vulnerabilidade management e software de gestão de risco.
• Nessus - Vulnerabilidade, configuração e avaliação de conformidade.
• Nikto - Scanner de vulnerabilidade para aplicações web.
• OpenVAS - Scanner de vulnerabilidade Open Source.
• OWASP Zed Attack Proxy - Ferramenta para testes de penetração em aplicações web.
• Secapps - Ambiente integrado de testes de segurança em aplicações web.
• w3af - Ataques a aplicações web e quadro de auditoria.
• Wapiti - Scanner de vulnerabilidades de aplicações web.
• WebReaver - Scanner de vulnerabilidades de aplicações web para Mac OS X.

Ferramentas para Rede

• nmap - Free Security Scanner For Network Exploration & Security Audits
• tcpdump/libpcap - A common packet analyzer that runs under the command line
• Wireshark - A network protocol analyzer for Unix and Windows
• Network Tools - Different network tools: ping, lookup, whois, etc
• netsniff-ng - A Swiss army knife for for network sniffing
• Intercepter-NG - a multifunctional network toolkit
• SPARTA - Network Infrastructure Penetration Testing Tool

Ferramentas para Rede Wireless

• Aircrack-ng - a set of tools for auditing wireless network
• Kismet - Wireless network detector, sniffer, and IDS
• Reaver - Brute force attack against Wifi Protected Setup

Ferramentas para Análise de SSL

• SSLyze - SSL configuration scanner
• sslstrip - a demonstration of the HTTPS stripping attacks

Editores Hexadecimal

• HexEdit.js - Browser-based hex editing

Crackers

• John the Ripper - Fast password cracker
• Online MD5 cracker - Online MD5 hash Cracker

Windows Utils

• Sysinternals Suite - The Sysinternals Troubleshooting Utilities
• Windows Credentials Editor - security tool to list logon sessions and add, change, list and delete associated credentials
• mimikatz - Credentials extraction tool for Windows OS

Ferramentas para DDoS

• LOIC - An open source network stress tool for Windows
• JS LOIC - JavaScript in-browser version of LOIC

Ferramentas para Engenharia Social

• SET - The Social-Engineer Toolkit from TrustedSec

Ferramentas para OSInt

• Maltego - Proprietary software for open source intelligence and forensics, from Paterva.

Ferramentas para Anonimato

• Tor - The free software for enabling onion routing online anonymity
• I2P - The Invisible Internet Project

Ferramentas para Engenharia Reversa

• IDA Pro - A Windows, Linux or Mac OS X hosted multi-processor disassembler and debugger
• IDA Free - The freeware version of IDA v5.0
• WDK/WinDbg - Windows Driver Kit and WinDbg
• OllyDbg - An x86 debugger that emphasizes binary code analysis
• Radare2 - Opensource, crossplatform reverse engineering framework.
• x64_dbg - An open-source x64/x32 debugger for windows.
• Pyew - A Python tool for static malware analysis.
• Bokken - GUI for Pyew Radare2.
• Immunity Debugger - A powerful new way to write exploits and analyze malware
• Evan's Debugger - OllyDbg-like debugger for Linux

Livros

Livros sobre Teste de Penetração

• The Art of Exploitation by Jon Erickson, 2008
• Metasploit: The Penetration Tester's Guide by David Kennedy and others, 2011
• Penetration Testing: A Hands-On Introduction to Hacking by Georgia Weidman, 2014
• Rtfm: Red Team Field Manual by Ben Clark, 2014
• The Hacker Playbook by Peter Kim, 2014
• The Basics of Hacking and Penetration Testing by Patrick Engebretson, 2013
• Professional Penetration Testing by Thomas Wilhelm, 2013
• Advanced Penetration Testing for Highly-Secured Environments by Lee Allen,2012
• Violent Python by TJ O'Connor, 2012
• Fuzzing: Brute Force Vulnerability Discovery by Michael Sutton, Adam Greene, Pedram Amini, 2007
• Black Hat Python: Python Programming for Hackers and Pentesters, 2014
• Penetration Testing: Procedures & Methodologies (EC-Council Press),2010

Manuais Hackers

• The Shellcoders Handbook by Chris Anley and others, 2007
• The Web Application Hackers Handbook by D. Stuttard, M. Pinto, 2011
• iOS Hackers Handbook by Charlie Miller and others, 2012
• Android Hackers Handbook by Joshua J. Drake and others, 2014
• The Browser Hackers Handbook by Wade Alcorn and others, 2014
• The Mobile Application Hackers Handbook by Dominic Chell and others, 2015

Livros sobre Análise de Redes

• Nmap Network Scanning by Gordon Fyodor Lyon, 2009
• Practical Packet Analysis by Chris Sanders, 2011
• Wireshark Network Analysis by by Laura Chappell, Gerald Combs, 2012

Livros sobre Engenharia Reversa

• Reverse Engineering for Beginners by Dennis Yurichev (free!)
• The IDA Pro Book by Chris Eagle, 2011
• Practical Reverse Engineering by Bruce Dang and others, 2014
• Reverse Engineering for Beginners

Livros sobre Análise de Malware

• Practical Malware Analysis by Michael Sikorski, Andrew Honig, 2012
• The Art of Memory Forensics by Michael Hale Ligh and others, 2014
• Malware Analyst's Cookbook and DVD by Michael Hale Ligh and others, 2010

Livros sobre Windows

• Windows Internals by Mark Russinovich, David Solomon, Alex Ionescu

Livros sobre Engenharia Social

• The Art of Deception by Kevin D. Mitnick, William L. Simon, 2002
• The Art of Intrusion by Kevin D. Mitnick, William L. Simon, 2005
• Ghost in the Wires by Kevin D. Mitnick, William L. Simon, 2011
• No Tech Hacking by Johnny Long, Jack Wiles, 2008
• Social Engineering: The Art of Human Hacking by Christopher Hadnagy, 2010
• Unmasking the Social Engineer: The Human Element of Security by Christopher Hadnagy, 2014
• Social Engineering in IT Security: Tools, Tactics, and Techniques by Sharon Conheady, 2014

Livros sobre Lock Picking

• Practical Lock Picking by Deviant Ollam, 2012
• Keys to the Kingdom by Deviant Ollam, 2012
• CIA Lock Picking Field Operative Training Manual
• Lock Picking: Detail Overkill by Solomon
• Eddie the Wire books

Banco de Dados de Vulnerabilidades

• NVD - US National Vulnerability Database
• CERT - US Computer Emergency Readiness Team
• OSVDB - Open Sourced Vulnerability Database
• Bugtraq - Symantec SecurityFocus
• Exploit-DB - Offensive Security Exploit Database
• Fulldisclosure - Full Disclosure Mailing List
• MS Bulletin - Microsoft Security Bulletin
• MS Advisory - Microsoft Security Advisories
• Inj3ct0r - Inj3ct0r Exploit Database
• Packet Storm - Packet Storm Global Security Resource
• SecuriTeam - Securiteam Vulnerability Information
• CXSecurity - CSSecurity Bugtraq List
• Vulnerability Laboratory - Vulnerability Research Laboratory
• ZDI - Zero Day Initiative

Cursos de Segurança da Informação

• Offensive Security Training - Training from BackTrack/Kali developers
• SANS Security Training - Computer Security Training & Certification
• Open Security Training - Training material for computer security classes
• CTF Field Guide - everything you need to win your next CTF competition
• Cybrary - online IT and Cyber Security training platform

Conferências sobre Segurança da Informação

• DEF CON - An annual hacker convention in Las Vegas
• Black Hat - An annual security conference in Las Vegas
• BSides - A framework for organising and holding security conferences
• CCC - An annual meeting of the international hacker scene in Germany
• DerbyCon - An annual hacker conference based in Louisville
• PhreakNIC - A technology conference held annually in middle Tennessee
• ShmooCon - An annual US east coast hacker convention
• CarolinaCon - An infosec conference, held annually in North Carolina
• HOPE - A conference series sponsored by the hacker magazine 2600
• SummerCon - One of the oldest hacker conventions, held during Summer
• Hack.lu - An annual conference held in Luxembourg
• HITB - Deep-knowledge security conference held in Malaysia and The Netherlands
• Troopers - Annual international IT Security event with workshops held in Heidelberg, Germany
• Hack3rCon - An annual US hacker conference
• ThotCon - An annual US hacker conference held in Chicago
• LayerOne - An annual US security conerence held every spring in Los Angeles
• DeepSec - Security Conference in Vienna, Austria
• SkyDogCon - A technology conference in Nashville
• SECUINSIDE - Security Conference in Seoul
• DefCamp - Largest Security Conference in Eastern Europe, held anually in Bucharest, Romania

Revistas sobre Segurança da Informação

• 2600: The Hacker Quarterly - An American publication about technology and computer "underground"
• Phrack Magazine - By far the longest running hacker zine

Listas Impressionantes

• SecTools - Top 125 Network Security Tools
• C/C++ Programming - One of the main language for open source security tools
• .NET Programming - A software framework for Microsoft Windows platform development
• Shell Scripting - Command-line frameworks, toolkits, guides and gizmos
• Ruby Programming by @dreikanter - The de-facto language for writing exploits
• Ruby Programming by @markets - The de-facto language for writing exploits
• Ruby Programming by @Sdogruyol - The de-facto language for writing exploits
• JavaScript Programming - In-browser development and scripting
• Node.js Programming by @sindresorhus - JavaScript in command-line
• Node.js Programming by @vndmtrx - JavaScript in command-line
• Python tools for penetration testers - Lots of pentesting tools are written in Python
• Python Programming by @svaksha - General Python programming
• Python Programming by @vinta - General Python programming
• Android Security - A collection of android security related resources
• Awesome Awesomness - The List of the Lists

Contribuição

Your contributions and suggestions are heartily♥ welcome. (✿◕‿◕)

Licença

This work is licensed under a Creative Commons Attribution 4.0 International License