References

Unordered collection of links and resources for various topics

Binary Exploitation
Link
Description
​http://www.auxy.xyz/​
Blog on some exploitation techniques
​http://www.phrack.org/issues/49/1.html​
Almost all Phracks from 49 contain juicy info exploitation info 
​https://exploit.education/​
​vms to learn exploitations
​http://codearcana.com/posts/2013/05/28/introduction-to-return-oriented-programming-rop.html​
Good Rop intro
​https://de.slideshare.net/saumilshah/dive-into-rop-a-quick-introduction-to-return-oriented-programming​
Also good Rop intro
​https://github.com/yeyintminthuhtut/Awesome-Advanced-Windows-Exploitation-References​
Advanced Win Exploitation stuff
​https://www.fuzzysecurity.com/tutorials.html​
Exploit Tuts
​https://www.corelan.be/index.php/2009/07/19/exploit-writing-tutorial-part-1-stack-based-overflows/​
One of the best exploitation tutorials (check all parts)
​https://blog.ret2.io/2018/06/05/pwn2own-2018-exploit-development/​
pwn2own writeup
​https://geosn0w.github.io/Jailbreaks-Demystified/​
Jailbreaking
​https://www.exploit-db.com/docs/english/43945-jailbreaking-ios-11.1.2-an-adventure-into-the-xnu-kernel.pdf​
More Jailbreaking
​https://github.com/secfigo/Awesome-Fuzzing​
Fuzzing Collection
​https://github.com/RPISEC/MBE​
Academic Modern Binary Exploitation Course
​https://googleprojectzero.blogspot.com/2015/06/what-is-good-memory-corruption.html​
Memory Corruptions, how do they differ
​http://csec.it/events/phd-course-binaries/​
Another Binary Exploitation Course
​https://github.com/wapiflapi/villoc​
malloc visualizer
​https://googleprojectzero.blogspot.com/2019/08/jsc-exploits.html​
Bleeding Edge Exploit research
​https://www.n0tr00t.com/2016/12/26/115Browser-725-rce-vuln.html​
Some browser rce
​https://medium.com/@bpmxmqd/v8-engine-jsobject-structure-analysis-and-memory-optimization-ideas-be30cfcdcd16​
Javascript Engine Backrounds
​https://v8.dev/blog/fast-properties​
More JS Engine Backgrounds
​https://liveoverflow.com/​
YT Channel for all things security, also BinExpl, BrowserExploitation
​https://github.com/jaybosamiya/security-notes​
some notes on bin expl
​
​
Web Exploitation
Link
Description
​https://github.com/cure53/XSSChallengeWiki/wiki/Older-Challenges-and-Write-Ups​
Collection of XSS Challenges
​https://blog.zsec.uk/tag/ltr101/​
Blog
​https://github.com/EdOverflow/bugbounty-cheatsheet​
EdOverflows Bugbounty Cheatsheet
​https://whitton.io/​
Blog
​http://brutelogic.com.br/blog/​
Blog on XSS
Other
Link
Description
​https://sockpuppet.org/blog/archives/​
Blog / Crypto
​https://balsn.tw/ctf_writeup/​
Lots of ctf writeups by this team
​https://securit.ie/blog/​
Blog
​https://mobile-security.gitbook.io/mobile-security-testing-guide/​
Mobile Security Guide
​https://www.exploit-db.com/papers/44145​
Mobile Hacking writeup

Welcome

Next - Disclosure

Untitled

Last updated 5 months ago

Link	Description
http://www.auxy.xyz/	Blog on some exploitation techniques
http://www.phrack.org/issues/49/1.html	Almost all Phracks from 49 contain juicy info exploitation info
https://exploit.education/	vms to learn exploitations
http://codearcana.com/posts/2013/05/28/introduction-to-return-oriented-programming-rop.html	Good Rop intro
https://de.slideshare.net/saumilshah/dive-into-rop-a-quick-introduction-to-return-oriented-programming	Also good Rop intro
https://github.com/yeyintminthuhtut/Awesome-Advanced-Windows-Exploitation-References	Advanced Win Exploitation stuff
https://www.fuzzysecurity.com/tutorials.html	Exploit Tuts
https://www.corelan.be/index.php/2009/07/19/exploit-writing-tutorial-part-1-stack-based-overflows/	One of the best exploitation tutorials (check all parts)
https://blog.ret2.io/2018/06/05/pwn2own-2018-exploit-development/	pwn2own writeup
https://geosn0w.github.io/Jailbreaks-Demystified/	Jailbreaking
https://www.exploit-db.com/docs/english/43945-jailbreaking-ios-11.1.2-an-adventure-into-the-xnu-kernel.pdf	More Jailbreaking
https://github.com/secfigo/Awesome-Fuzzing	Fuzzing Collection
https://github.com/RPISEC/MBE	Academic Modern Binary Exploitation Course
https://googleprojectzero.blogspot.com/2015/06/what-is-good-memory-corruption.html	Memory Corruptions, how do they differ
http://csec.it/events/phd-course-binaries/	Another Binary Exploitation Course
https://github.com/wapiflapi/villoc	malloc visualizer
https://googleprojectzero.blogspot.com/2019/08/jsc-exploits.html	Bleeding Edge Exploit research
https://www.n0tr00t.com/2016/12/26/115Browser-725-rce-vuln.html	Some browser rce
https://medium.com/@bpmxmqd/v8-engine-jsobject-structure-analysis-and-memory-optimization-ideas-be30cfcdcd16	Javascript Engine Backrounds
https://v8.dev/blog/fast-properties	More JS Engine Backgrounds
https://liveoverflow.com/	YT Channel for all things security, also BinExpl, BrowserExploitation
https://github.com/jaybosamiya/security-notes	some notes on bin expl

Link	Description
https://github.com/cure53/XSSChallengeWiki/wiki/Older-Challenges-and-Write-Ups	Collection of XSS Challenges
https://blog.zsec.uk/tag/ltr101/	Blog
https://github.com/EdOverflow/bugbounty-cheatsheet	EdOverflows Bugbounty Cheatsheet
https://whitton.io/	Blog
http://brutelogic.com.br/blog/	Blog on XSS

Link	Description
https://sockpuppet.org/blog/archives/	Blog / Crypto
https://balsn.tw/ctf_writeup/	Lots of ctf writeups by this team
https://securit.ie/blog/	Blog
https://mobile-security.gitbook.io/mobile-security-testing-guide/	Mobile Security Guide
https://www.exploit-db.com/papers/44145	Mobile Hacking writeup