~/resources
$ cat resources.md
Nothing makes this list unless I've used it. Affiliate-free. Honest takes. Status: [ok] = finished, [wip] = working on it, [queued] = on deck.
# courses (3)
- [wip] PEN-200 (PWK) ↗
Still the canonical hands-on intro. The 2024 refresh made it less painful without making it less serious.
- [ok] HTB Academy — Penetration Tester path ↗
Best paid path for getting reps without burning through retired boxes. The AD module alone is worth the subscription.
- [wip] PortSwigger Web Security Academy ↗
Free. Go bug-class by bug-class. Do every lab in a class before moving on; don't skim.
# books (2)
- [ok] The Web Application Hacker's Handbook (2nd ed.) ↗
Older than it should be, still the best web pentest book. Pair it with the PortSwigger labs.
- [ok] Hacking: The Art of Exploitation ↗
Read for foundations, not for current technique. The C and assembly chapters age well.
# tools (3)
- [-] Burp Suite ↗
Community for everyday work, Pro for active scanner. Learn the Repeater + Intruder loops before adding extensions.
- [-] nmap ↗
Worth learning the script categories cold. `-sC -sV --min-rate 1000` is the default I reach for.
- [-] BloodHound CE ↗
If you're doing AD work without it you're doing it wrong. Spend an afternoon learning the custom queries.
# lab platforms (3)
- [wip] HackTheBox ↗
Where the reps happen. Sub for retired access. Don't grind active without a plan.
- [ok] TryHackMe ↗
Better on-ramp than HTB. The structured rooms beat HTB for first 60 days.
- [wip] pwn.college ↗
Free, university-grade binex curriculum. Slow climb but the only thing I've found that actually builds intuition.
# blogs / channels (1)
- [-] IppSec on YouTube ↗
The HTB walkthrough canon. Watch one box every couple of days even when you aren't stuck.
# references (2)
- [-] HackTricks ↗
Living reference. Lean on it during boxes, not as a learning path. The methodology pages are gold.
- [-] PayloadsAllTheThings ↗
Bookmark, mirror locally, never trust copy-paste blindly. Diff payloads against the source on github.