Welcome to the Black Fedora's Cyber Cache​

The Cache is a one stop for links to resources. Whether you're a student, instructor, passer-by, practitioner, or what-have-you, the Cyber Cache is back for all you security-focused CIN'ers out there!

Now, this list is hardly complete or comprehensive - and this is where you come in. Do you have a recommendation for the Cache? Send it to @Rick Butler for inclusion and your name will be included in the contributors block down below. Until then, enjoy this labor of love. /R

Learning Sites​

hackthebox - https://www.hackthebox.com/
tryhackme - https://tryhackme.com/
National Cyber League - https://nationalcyberleague.org/
FORTRA Online Cyber Games - https://www.fortra.com/blog/8-online-cybersecurity-games-that-test-your-cyber-skills
CyberSkyline - https://cyberskyline.com/
HackMyVM - https://hackmyvm.eu/
Lee McWhorter's PenTest+ Range Materials - http://mctechs.com/CompTIA/PenTest+TTT/
CTFTime - https://ctftime.org/
Malware Traffic Analysis - https://www.malware-traffic-analysis.net
Offensive Security - https://www.offsec.com/courses/
OverTheWire: Bandit - https://overthewire.org/wargames/bandit/

Social Engineering​

Maltego - https://www.maltego.com/
WiGLE.net - https://wigle.net/
Shodan - https://www.shodan.io/
Exploit Database - Google Dorking - https://www.exploit-db.com/google-hacking-database
ViewDNS Info - https://viewdns.info/
MXToolbox - https://mxtoolbox.com/
CIRT Default Password DB - https://cirt.net/passwords

Platforms​

Carrot - https://github.com/carrot2/carrot2
CSI Linux - https://csilinux.com/
Kali Purple - https://gitlab.com/kalilinux/kali-purple/documentation/-/wikis/home
Network Security Toolkit - https://www.networksecuritytoolkit.org/nst/index.html
Security Onion - https://securityonionsolutions.com/software
Censys - https://censys.com/
Criminal IP - https://www.criminalip.io/
Atomic Red Team - https://www.atomicredteam.io/

Wireless​

Oscium (fmr Metageek) Inssider - https://www.oscium.com/

Hardware​

Flipper Zero - https://flipperzero.one/
- Flipper Zero Resources - https://github.com/djsime1/awesome-flipperzero
Hak5 - https://shop.hak5.org/
Hackaday - https://hackaday.com/

Communities​

Incident Response Consortium - https://www.incidentresponse.com/
National Council of ISACs - https://www.nationalisacs.org/
ShadowServer -https://www.shadowserver.org/

Documentation Sites​

CVE Details - https://www.cvedetails.com/
NIST Vulnerability Database - https://nvd.nist.gov/
IntelTechniques - https://inteltechniques.com/
OSINT Framework - https://osintframework.com/
Ultimate List of SANS Cheat Sheets - https://www.sans.org/blog/the-ultimate-list-of-sans-cheat-sheets/
Intel471 - https://intel471.com/solutions/attack-surface-exposure
MITRE CVE Search - https://cve.mitre.org/cve/search_cve_list.html
Huntsman Cyber Security Maturity Model - https://huntsmansecurity.com/blog/understanding-cyber-security-maturity-models/
KNOB Attack - https://knobattack.com/
Tizag Tutorials - http://www.tizag.com/
StationX Nmap Cheat Sheet - https://www.stationx.net/nmap-cheat-sheet/

Cybersecurity Standards​

PCI-DSS - https://www.pcisecuritystandards.org/document_library.
NIST CSF - https://www.nist.gov/itl/smallbusinesscyber/nist-cybersecurity-framework
DoD SCAP STIG - https://public.cyber.mil/stigs/scap/
CIS Benchmarks - https://www.cisecurity.org/cis-benchmarks/ (CIS members only)
Cloud Security Alliance - https://cloudsecurityalliance.org/star
AICPA SOC - https://www.aicpa-cima.com/topic/audit-assurance/audit-and-assurance-greater-than-soc-2

Cyber Live Threat Maps​

Bitdefender - https://threatmap.bitdefender.com/
Checkpoint - https://threatmap.checkpoint.com/
FortiGuard - https://fortiguard.fortinet.com/threat-map
Kaspersky - https://cybermap.kaspersky.com/
NetScout - https://www.netscout.com/ddos-attack-map
Radware - https://livethreatmap.radware.com/net
Talos - https://talosintelligence.com/ebc_spam

Jitsi Video Conferencing - https://jitsi.org/

Classic Cyber Software​

Metasploit - https://www.metasploit.com/
Greenbone - https://www.greenbone.net/en/greenbone-free/
Glasswire - https://www.glasswire.com/
Resplendence - https://www.resplendence.com/main
NetworkMiner - https://www.netresec.com/?page=NetworkMiner
Osquery - https://osquery.io/downloads/official/4.4.0
CyberChef - https://gchq.github.io/CyberChef/
Lo Orbit Ion Cannon - https://sourceforge.net/projects/loic/
Windows 7 ESU Patching - https://hackandpwn.com/windows-7-esu-patching/
Certipy - Attack tool for Active Directory Certificate Services - https://github.com/ly4k/Certipy
ExploitPack - https://exploitpack.com/
Wireshark - https://www.wireshark.org/
Angry IP Scanner - https://angryip.org/
LanSweeper - https://www.lansweeper.com/
Sprinto - https://sprinto.com/
SecTools - https://sectools.org/
Snort - https://www.snort.org/
HostedScan Online OpenVAS Scanner - https://hostedscan.com/openvas-vulnerability-scan

Forensics​

Autopsy - https://www.autopsy.com/
FTK - https://www.exterro.com/digital-forensics-software/forensic-toolkit
Hunchly - https://hunch.ly/
OpenText (EnCase) - https://www.opentext.com/products/forensic
stackhawk.com - API Security Testing - https://www.stackhawk.com/
wazuh.com - The Open Source Security Platform - https://wazuh.com/
BlackDuck https://www.blackduck.com - AppSec Testing
StrangeBee - https://strangebee.com/

v2 Contributors​

Greg Porter | LarryA | Stan Pieklo | Nick Pierce | PeterK

(if you contributed to the v1 cache, you get the opportunity to contribute again to get your name here)