Permalink
Branch: master
Find file Copy path
453 lines (415 sloc) 57.2 KB

List of Helpful Information Security Multimedia

The channels listed here will eventually be monitored by @HackerTalkyTalk, so that whenever new videos get uploaded, there's only one Twitter account you need to watch to keep track of new material as it gets released. :D

Feel free to add more to the list; this is pretty incomplete, but better than nothing for folks who are new. Pull requests or Twitter DMs are both fine :)

PLEASE NOTE: Each list is randomly ordered. @hexwaxwing will reorder them more appropriately once more fully-enumerated lists are assembled.

UPDATE (2-20-2018): Added a History & Culture section, since I'm finding a lot of younger newcomers need help understanding the historical context of the hacker subculture in infosec. Also, added a TOC with links to the different sections. And a bunch of new entries.

UPDATE (2-19-2018): Added a few other sections that aren't really relevant to @HackerTalkyTalk, but are useful for learners: Complete & Utter Newbie Starting Resources, Practice Materials && Labs, and Workstation VMs.

Table of Contents


Infosec&&Hacker Conference Talk Recordings

Infosec&&Hacker Cons

  1. 3C/CCC
  2. DEFCON
  3. Infocon.org [talk+podcast aggregator; torrents available]
  4. Irongeek's channel [Collection of ~2000+ con videos from smaller American cons]
    • DerbyCon: [III: 2011 • IV: 2012 • V: 2013 • IV: 2014 • V: 2015 • VI: 2016 • VII: 2017]
    • Converge [2016 • 2017]
    • GrrCon [2015 • 2016 • 2017]
    • ANYCon [2017]
    • CircleCityCon [2014 • 2015 • 2016 • 2017]
    • ShowMeCon [2015 • 2016 • 2017]
    • NolaCon [2016 • 2017]
    • AIDE [2015 • 2017]
    • CypherCon [1.0: 2016 • 2.0: 2017]
    • BloomCon [2017]
    • PhreakNIC [XII: 2008]
    • HouSecCon [#6: 2015]
    • ShmooCon [Firetalks: 2015]
    • DEFCON [Wireless Village: 2014]
    • OISF [2015]
    • SecureWV/Hack3rcon: [VI: 2015 • VII: 2016 • VIII: 2017]
    • Louisville Infosec [2013 • 2015 • 2016 • 2017]
    • BSides Tampa: [2015 • 2017]
    • BSides NoVa (Northern Virginia) [2017]
    • BSides Cleveland [2014 • 2015 • 2017]
    • BSides Detroit [2015 • 2016 • 2017]
    • BSides Charm (Baltimore) [2017]
    • BSides Nashville [2014 • 2015 • 2017]
    • BSides Indy [2017]
    • BSides Philly (Philadelphia): [2016 • 2017]
    • BSides Augusta [2015 • 2016]
    • BSides San Francisco [2015 • 2016]
    • BSidesLV (Las Vegas) [2012 • 2013 • 2015]
    • BSidesCincy (Cincinnati) [2015]
    • BSides Boston [2015]
    • BSides Columbus [2015]
    • BSidesRI (Rhode Island): [2013]
    • BSides Chicago [2014]
    • BSidesDE (Delaware) [2013]
  5. Cooper (@Ministraitor): [YouTubearchive.org] [Kinda like a European version of Irongeek]
  6. PhreakNIC: VII: 2003VIII: 2004IX: 2005X: 2006XI: 2007XVI: 2012XVII: 2013XVIII: 2014IXX: 2015XX: 2016XXI: 2017 (cf. Irongeek's channel for PhreakNIC XII [2008])
  7. Hacktivity
  8. S4 [ICS]
  9. ZeroNights
  10. REcon (@reconmtl @reconbrx): 2013 [YouTube|REcon (in schedule talk descriptions)] • 2014 [YouTube|REcon+slides] • 2015 [YouTube|REcon+slides] • 2016 [YouTube|REcon] • 2017 [YouTube|REcon) [reverse engineering]
  11. BruCON
  12. Hack in the Box (HITB)
  13. SANS DFIR [DFIR + threat hunting + threat intel]
  14. SANS Pentesting [penetration testing]
  15. SANS ISC [netsec + nsm]
  16. GHP1989HEU1993HIP1997HAL2001WTH2005HAR2009OHM2013: [...do recordings exist...?]
  17. SHA2017: [YouTube channelmedia.ccc.de]
  18. SAINTcon [playlists & videos]
  19. Toorcon
  20. ekoparty
  21. Real World Crypto [cryptography]
  22. CarolinaCon [offsec]
  23. Wild West Hackin' Fest
  24. Rooted Con
  25. BalCCon
  26. SEC-T
  27. FSec
  28. LayerOne: 201520162017
  29. TROOPERScon: [defense + management + SAP + IPv6 + NGI + embedded + offsec]
  30. BlackAlps CyberSecurityConference
  31. x33fcon [purple team]
  32. SkyDogCon
  33. SecurityOnion Con [NSM+IDS+IPS]
  34. Nullcon Goa: 2013 • 2014 • 2015 • 2016 • 2017 • 2018
  35. KansasFest [retro gaming, some reverse engineering]
  36. Botconf.eu [malware analysis]
  37. ShmooCon: [2017 & 2018]
  38. SyScan360 Singapore: [201420152016]
  39. BlueHat IL (Israel): [20172018] (no official playlist, but all on this YouTube acct)
  40. Infiltrate: [2011 inc • 2012 • 2013 inc2014201520162017]
  41. Hackers On Planet Earth (HOPE): [1994199720002002V: 2004IX: 2012X: 2013]
  42. Code Blue (@codeblue_jp): [20132014201520162017]
  43. HackerHotel: [201520162018 (livestream)] (needs to be separated into playlists)
  44. NLUUG: [2015 • 2017] (needs to be separated into playlists)
  45. eth0:winter [2014 (wiki) • 2015 (wiki) • 2016 (wiki) • 2017 (wiki)]
  46. Electromagnetic Field (@emfcamp): [20142016]
  47. Black Hat (Europe): [2014201520162017]
  48. Black Hat (USA): [20132014201520162017]
  49. Black Hat (Asia): [2014201520162017]
  50. r2con: [2017]
  51. LevelUp: [2017]
  52. SteelCon: [2014201520162017]
  53. CanSecWest: [slides for 2000–2017] [...do recordings exist...?]
  54. PacSec: [slides for 2003–2017] [...do recordings exist...?]
  55. FOSDEM: [200320042005200620072008200920102011201220132014201520162017]
  56. AppSecEU: [2014201520162017]
  57. AppSecUSA: [20132014201520162017]
  58. OWASP AppSec California: [2014201520162017]
  59. Hack in Paris: [2011201220132014201520162017]
  60. H.A.C.K Camp:::CampZer0 (@campzer0): [2013 (slides)]
  61. H.A.C.K Camp:::Camp++: [2014 (slides) • 2015:0x7df2016:0x7e02017:0x7e1]
  62. NorthSec: [201520162017]
  63. TRISS: 2017

BSides

  1. BSidesLV (Las Vegas): [irongeek: 2012 • 2013 • 2015]
  2. BSidesLisbon
  3. BSidesRaleigh
  4. BSidesCapeTown
  5. BSidesStJohns
  6. BSidesLondon
  7. BSidesVancouver
  8. BSidesIOWA
  9. BSidesDE (Delaware): [irongeek: 2013]
  10. BSidesOrlando
  11. BSidesWarsaw
  12. BSidesSLC
  13. BSidesSF: [irongeek: 2015 • 2016]
  14. BSidesPhilly (Philadelphia): [irongeek: 2016 • 2017]
  15. BSides Tel Aviv: BSidesTLV2017 & BSidesTLV2016
  16. BSidesLA/ShellCon: ShellCon 2017.
  17. BSidesCharm: [2016] [irongeek: 2017]
  18. BSides Asheville: 2014 • 2015 (Sat, Sun) • 20162017
  19. BSidesCalgary (@bsides_calgary): [2016 • 2017] (FIXME: years need to be separated into playlists)
  20. BSidesNYC: [2018]
  21. BSides Ljubljana (@BSidesLjubljana): [20162017]
  22. BSides Hamburg (@HamburgSides): [20152016]
  23. BSides Hannover (@BSidesHN): [20162017]
  24. BSides Belfast (@bsidesbelfast): [20162017]
  25. BSides Munich (@BSidesMunich): [2017 (YouTube | archive.org)]
  26. BSides Bordeaux (@BSidesBDX): [2017]
  27. BSides Luxembourg (@BSidesLux): [2017]
  28. BSides Amsterdam (@BSidesAMS): [2017]
  29. BSides Manchester (@BSidesMCR): [2014 inc.201520162017]
  30. BSides Edinburgh Scotland (@BSidesScot): 2017
  31. BSides Tampa: [irongeek: 2015 • 2017]
  32. BSides NoVa (Northern Virginia): [irongeek: 2017]
  33. BSides Cleveland: [irongeek: 2014 • 2015 • 2017]
  34. BSides Detroit: [irongeek: 2015 • 2016 • 2017]
  35. BSides Nashville: [irongeek: 2014 • 2015 • 2017]
  36. BSides Indy (Indianapolis): [irongeek: 2017]
  37. BSides Augusta: [irongeek: 2015 • 2016]
  38. BSidesCincy (Cincinnati): [irongeek: 2015]
  39. BSides Boston: [irongeek: 2015]
  40. BSides Columbus: [irongeek: 2015]
  41. BSidesRI (Rhode Island): [2013]
  42. BSides Chicago: [irongeek: 2014]
  43. [BSides Leeds] (@BSidesLeeds): [2018]
  44. BSides Pittsburgh: [201520162017]

Meetups That Record Their Talks

  1. SecKC
  2. SecDSM
  3. Louisville ISSA Web Pentesting workshop [2013] [pentesting + appsec + bug bounty]
  4. Louisville Nmap workshop [2014] [pentesting]
  5. Steel City InfoSec
  6. To explore infosec/hacker events near you (& see talks in person &/or meet local infosec folk [we don't bite! usually!]), check out @nyxgeek's world map of security meetups&conferences at hackermaps.org, & check out @evilsocket's ConfWatch.Ninja (@confwatchninja) for a schedule of upcoming cons. <3



Other Audiovisual Multimedia

Shows &/or Livestreams

  1. @LiveOverflow's livestream [CTF + reverse engineering + exploit dev]
  2. @TheColonial's OJ Reeves/th3colon1al livestream [Metasploit, Meterpreter dev + exploit dev]
  3. @gynvael Coldwind's livestream [CTF + reverse engineering]
  4. @hedgeberg's livestream [reverse engineering + hardware hacking + console hacking]
  5. @ktemkin's livestream [reverse engineering + hardware hacking]
  6. @_r00k_'s livestreams + walkthroughs [CTF walkthroughs]
  7. @MurmusCTF's walkthroughs [CTF walkthroughs]
  8. @IppSec's walkthroughs [CTF walkthroughs]
  9. MeshX93 [walkthroughs]
  10. webpwnized [appsec, websec, netsec]
  11. Micah Elizabeth Scott's @scanlime show: YouTubePatreon [reverse engineering + sundry]
  12. John Hammond's YouTube channel [CTF walkthroughs + programming tutorials]
  13. Cybersecurity Camp
  14. @Hak5's tutorials (with @Snubs, @mubix, @hak5darren) [basic skills + pentesting] 0. Hak5: Seasons 1-5Seasons 6-10Seasons 11-15 0. Open Source Recommendations 0. Hack Across the Planet 0. 3D Printing 0. HakTip with @Snubs 0. Metasploit Minute with @mubix
  15. SecurityTube
  16. @DAkacki @da_667 @oscaron @benheise @Ajediday & @mzbat's Rally Security [weekly news breakdown]
  17. @HECFBlog's Forensic Lunch [DFIR]
  18. Sam Bowne's livestreamed infosec classes [Careers in Computer Networking • Ethical Hacking & Network Defense • CISSP prep • Securing Web Applications • Exploit Development]
  19. vTriple livestream [DFIR & dev]
  20. @struppigel's Malware Analysis for Hedgehogs [DFIR + malware analysis]
  21. @hasherezade's walkthroughs [malware analysis + reverse engineering]
  22. Colin Hardy [malware analysis + reverse engineering]
  23. @herrcore + @seanmw's Open Analysis Labs #OpenAnalysisLive [malware analysis + reverse engineering]
  24. Computerphile
  25. SDR intro with Michael Ossmann
  26. @SecureTheHuman's SANS Security Awareness: SecureTheHuman webcasts [soft skills + security awareness]
  27. Big Brain Security
  28. @duosec's DuoSec Talks
  29. @BHinfoSecurity's webinars [pentesting]
  30. @brompwnie's livestreams [android hacking]
  31. ChiefRiver videos [pentesting + windows]
  32. #nullconchat [live infosec-themed discussion on Twitter]
  33. @thatsjet's @DevSecOpsLIFE [DevSecOps]
  34. @424f424f, @dafthack, @ustayready, + @ralphte1's @CoinSecPodcast: YouTubeSpotify [cryptocurrency]
  35. @dildog's Noctem livestream
  36. @FuzzySec's Patreon livestream [red team, pentesting, exploit dev, general amazingness]
  37. @TrustedSec TV
  38. @samykamkar's tutorials
  39. @gattaca's Liquid Matrix Security Digest TV: [full episodesmini episodes]
  40. The Internet Society's various livestreamed events: [ III ]

Podcasts

  1. Paul Asadoorian's Security Weekly (@securityweekly @swfeeds) podcasts: [official websiteYouTube • infocon.org: PaulDotCom Weekly && Security Weekly]
    1. Paul's Security Weekly: with @haxorthematrix @securityweekly @Carlos_Perez @jack_daniel @MrJeffMan @joff_thyer
    2. Hack Naked News: with @securityweekly @Jason_Wood
    3. Enterprise Security Weekly: with @securityweekly @strandjs
    4. Business|Startup Security Weekly: with @securityweekly @catalyst
    5. Secure Digital Life: with @dougwhitephd @rbeauchemin [newbie friendly • security ambassadoring]
    6. Tradecraft Security Weekly:
    7. Application Security Weekly: with @securityweekly @andMYhacks
    8. Interviews
  2. @chrissanders88's Source Code [interviews with infosec folks re: path into infosec]
  3. @maliciouslink & @lerg's Defensive Security (@Defensivesec) podcast: [general]
  4. @bryanbrake & @InfoSystir's @BrakeSec podcast: podcastYouTube [general]
  5. Patrick Gray (@riskybusiness)'s Risky Business security podcast: [official siteinfocon][general]
  6. @steved3's #SaltedHash podcast: [videopodcast] {from @csoonline}
  7. @DanielMiessler's Unsupervised Learning podcast [weekly news]
  8. @CyberSecStu's @TheManyHatsClub's weekly interviews with infosec folk (livestream on Discordpodcast) [general]
  9. The Southern Fried Security Podcast (@SFSPodcast): [official siteinfoconiTunes]
  10. @phillmoore's This Week in 4n6: [roundup of interesting DFIR items + podcast]
  11. @humanhackers's The Social-Engineer Podcast #SEPodcast: [official siteinfocon] [social engineering]
  12. @wadebaker & @jayjacobs' @cyentiainst Podcast
  13. @gcluley & @caroletheriault's @SmashinSecurity [weekly news breakdown]
  14. @XenoPhage & AgentSixty6's Iron Sysadmin Podcast (@ironsysadmin) [adjacent: sysad]
  15. @kyleshevlin's @2ndCareerDevs [adjacent: devops + lateral]
  16. @7MinSec's 7 Minute Security podcast
  17. @PurpleSquadSec's Purple Squad Security podcast
  18. The Cyberwire (@thecyberwire) podcasts
  19. Darknet Diaries [cybercrime]
  20. Stewart A. Baker's Cyberlaw Podcast [cyberlaw stuff from former NSA general counsel]
  21. @LawyerLiz's #BuzzOffwithLawyerLiz [law + policy + tech]
  22. @Jenny_Radcliffe's #HumanFactor podcast [social engineering]
  23. @embeddedfm's Embedded [hardware hacking-ish]
  24. Steve Gibson (@SGgrc) & Leo Laporte's Security Now! podcast: [infoconiTunesRSStwit.tv]
  25. @textfiles' Jason Scott Talks His Way Out of It podcast: [YouTubePatreon]
  26. Michael Bazzell (@IntelTechniques)'s Complete Privacy & Security Podcast [privacy + OSINT]
  27. @edgeroute & @RobertHurlbut's @AppSecPodcast [appsec]
  28. @CSI_Podcast's Cyber Security Interviews podcast
  29. The Security Ledger (@securityledger) podcast
  30. The Ask Mr. DNS Podcast [netsec]
  31. SANS Internet Storm Center (@sans_isc)'s daily ISC StormCast podcast: [threat hunting • malware analysis • blue team • DFIR]
  32. 2600's Off The Wall Radio Show: [archives: 2003–2018infocon.org: 2006–2014]
  33. 2600's Off The Hook Radio Show (@HackerRadioShow): [iTunesinfocon.org: 2006–2016]
  34. Phone Losers of America's The Snow Plow Show: phone comedy podcast: [official siteinfoconPatreon]
  35. @securitycurrent's Security Current podcast
  36. @gattaca's Liquid Matrix Security Digest podcast: [iTunesinfoconYouTube]
  37. @OWASP's OWASP 24/7 Podcast: [official site • infocon: I, II] (FIXME: neither infocon directory is well-organized)
  38. Bob Rudis & Jay Jacob's Data Driven Security podcast [security + data analytics • data visualization]
  39. The SteptoeCyberLaw Podcast: [official siteinfocon] [law]
  40. [Down The Security Rabbithole] (@DtSR_Podcast, wh1t3rabbit) podcast: [official siteinfocon]
  41. The Social Media Security Podcast: [official siteinfocon]
  42. Defrag This (@defrag_this) podcast
  43. Bruce Shneier (@schneierblog)'s Crypto-Gram podcast: [official siteinfocon.org (pre-2010) • newsletter]
  44. CERT's Security for Business Leaders podcast: [iTunes] [management]
  45. RunAs Radio podcast: [iTunesRSS]
  46. The Standard Deviant Security Podcast (@standeviant): [Stitcher]
  47. The In-Security Podcast: [iTunesRSS]
  48. ISMG Network Podcasts:
    1. The Healthcare Information Security Podcast
    2. The Careers Information Security Podcast
    3. The Data Breach Today Podcast
    4. The Banking Information Security Podcast
  49. infocon.org has archives of several older podcasts:
    1. CERT.org podcast: 2006–2014
    2. CyberSpeak podcast: 2006–2013
    3. Eurotrash Security podcast: pre-2014
    4. Exotic Liability podcast: pre-2010
    5. Hacker Podcast Radio: pre-2014
    6. Security Management Podcast: pre-2014
    7. Network Security Podcast podcast: 2014
    8. Finux Tech Whatever: (FIXME: files seem to be missing; anybody have an archive?)
    9. hacktv.org podcast: (FIXME: files seem to be missing; anybody have an archive?)
    10. Hacker News Network (HNN):
      1. HHNCast:: 2009–2011?
      2. ToolTime: 2010-2011
      3. Stack of Shame: 2010-2011
      4. ConFu: 2010-2011
      5. Behind The Firewall: (FIXME: only one clip; anybody have a complete archive?)
    11. Hak5 (@Hak5): 0. NOTE: For more up-to-date links, cf. @Hak5 entries in Shows &/or Livestreams above.
      1. ThreatWire: 2015-2016
      2. HakTip + Metasploit Minute
      3. Hak5: (seems to be episodes from their YouTube show?)

Podcasts from Companies

  1. @TalosSecurity's Beers with Talos podcast (from @TalosSecurity) [news, netsec]
  2. @Sophos's Naked Security Podcast {from @Sophos}
  3. @IBM's Security Intelligence Podcast {from @IBM}
  4. @BrianRexroad & @jclausing's #ThreatTraq {from @ATT}
  5. Shaun Walsh (@cingulus)'s InSecurity Podcast {from @cylance}
  6. @cybereason's malicious.life (@MaliciousLife) Podcast {from @cybereason}
  7. TrustedSec Security Podcast {from @TrustedSec}
  8. Gary McGraw's Silver Bullet Security podcast: [iTunesYouTube • infocon: [I, II]] {from IEEE Security & Privacy}
  9. @mike_mimoso & Chris Brook's The Threatpost Podcast: [iTunesRSS {from @ThreatPost}
  10. Jessica Ortega, Ram Gall, Topher Tebow's Decoding Security podcast: [official siteYouTubeiTunes] {from @SiteLock}
  11. @nuix's Unscripted podcast: {from @nuix}
  12. @tripwire's Security Slice podcast: {from @tripwire}



Playgrounds!: Practice Materials && Labs (FOSS)

  1. @blackroomsec's List of Hacking & CTF Challenge Sites - Updated February 2, 2018
  2. @FSecure's Cyber Security MOOC
  3. @0xmchow's COMP 116: Introduction to Computer Security
  4. Rensselaer Polytechnic Institute's @RPISEC CSCI 4968: Modern Binary ExploitationCSCI 4976: Malware Analysis [exploit dev • malware analysis]
  5. @XenoKovah & co's introductory infosec classes [29 classes with videos; 63 days of open source class materials—many domains]
  6. Get some "help desk"-esque experience online & learn beginning malware triage/analysis for free: @BleepinComputer's Malware Removal Training Program[malware analysis]
  7. @chrissanders88's The Cuckoo's Egg Decompiled [intro to SOC • NSM • DFIR]
  8. @bartblaze's Introduction to Malware Analysis, Threat Intelligence, & Reverse Engineering [malware analysis!!! • threat intelligence • reverse engineering]
  9. JPCERT/CC's catalogue of DFIR artifacts left by common attack tools [threat hunting • DFIR]
  10. HackTheBox.eu [mostly pentesting • red team, but a few DFIR challenges too]
  11. @daeken's Hacker101.com [bug bounty • websec • appsec • pentesting • netsec] {from @Hacker0x01}
  12. @OWASP's collection of vulnerable web apps [bug bounty • pentesting • websec • appsec • netsec]
  13. Damn Vulnerable Web App (DVWA) VM [bug bounty • appsec]
  14. @b1ack0wl's Damn Vulnerable Router [embedded • exploit dev • pentesting]
  15. @ProjectHoneynet challenge archive [DFIR]
  16. @Fox0x01's ARM reverse engineering tutorials & ARM assembly introduction [reverse engineering (ARM)]
  17. @malwareunicorn's RE101 & RE102 [reverse engineering (x86) + malware analysis intro]
  18. @malware_traffic's malware traffic analysis exercises [network forensics]
  19. @FuzzySec's exploit dev tutorials [exploit dev • pentesting • red team]
  20. @abatchy17's Windows Kernel Exploitation tutorial series + Vulnhub walkthroughs [exploit dev • red team]
  21. @sambowne's samsclass.info
  22. @bellis1000's Exploit Challenges [exploit dev]
  23. ROP Emporium [exploit dev]
  24. @g0tmi1k's @VulnHub, a vulnerable VM repository + walkthroughs [pentesting • red team • exploit dev • bug bounty]
  25. exploit-exercises.com [exploit dev]
  26. root-me.org [exploit dev • etc]
  27. GNS3 [neteng + netsec — you'll need to track down firmware images, though]
  28. #DailyScriptlets [practice malware analysis • DFIR]
  29. @CTFtime's CTFtime.org [find currently scheduled CTFs]
  30. @Magoo's Incident Response tabletop scenarios (@badthingsdaily) [DFIR • incident response • blue team]
  31. Hacking Printers wiki [pentesting]
  32. Want to build your own virtual homelab to practice in? GOOD. Go buy @da_667's Big Black Tome, Building Virtual Machine Labs: A Hands-On Guide.
  33. Issues of PoC||GTFO are usually hackable. >:D



Workstation VMs (Virtual Machines)

  1. @SANS' SIFT Workstation VM [DFIR Linux (Ubuntu) distro]
  2. @SANS' Remnux Workstation VM [malware analysis • reverse engineering Linux (Ubuntu) distro]
  3. @IntelTechniques' Buscador VM [OSINT+RECON Linux (Ubuntu) distro]
  4. @securityonion's SecurityOnion VM [NSM+IDS+IPS • netsec Linux (Ubuntu) distro]
  5. @offsectraining's Kali VM (@kalilinux) [offensive security • pentesting Linux distro]
  6. @Zero_ChaosX's Pentoo VM (@pentoo_linux) [wireless+SDR+RF Linux (Gentoo) distro]
  7. @ParrotSec's Parrot Security OS VM [pentesting • DFIR Linux (Debian) distro]
  8. @rootkovska's @QubesOS
  9. @ShadowDXS's guide to installing Arch Linux



Introductory Resources for the Complete Newbie

  1. A Non-Nerd's Guide to the Command Line
  2. @mpratland's Terminus [super gentle introduction to using a CLI]
  3. explainshell.com [help break down common commands you don't understand]
  4. OverTheWire's Wargames [beginning exercises for bash scripting, exploit dev, bug bounty-ish stuff...go through Bandit to get used to CLIs]
  5. "The Art of the Command Line"
  6. What happens when...: uses the example of searching Google to traverse different domains; common interview question]`
  7. Stack Overflow: Helping One Million Developers Exit Vim [so you will understand the Exiting Vim memes]



Hacker History & Culture

  1. @nyxgeek's reading list: read up on your #HackerHistory, fam. <3
  2. The Hacker's Manifesto
  3. @jack_daniel's Shoulders of Infosec project
  4. SecLists.Org Security Mailing List Archive
  5. 2600: The Hacker Quarterly
  6. Phrack Magazine
  7. Uninformed Magazine: Informative Information for the Uninformed
  8. POC||GTFO: Proof of Concept or Get The Fuck Out!: [download mirrors: alchemistowl.orggreatscottgadgetsludost.netgithub.com/filcab] {Please note this blogpost|contalk from @ESultanik that explains how you can play with several issues' polyglots. ;)}
  9. Jason Scott (@textfiles)'s textfiles.com
  10. OpenRCE.org articles
  11. archive.org's HyperCard Stacks archive
  12. Bastard Operator from Hell (BOFH)
  13. DEFCON's Hacker Movie List