personal labs / training / must haves
- https://www.kali.org/downloads/
- https://www.powershellempire.com/
- https://portswigger.net/burp/communitydownload
- https://www.zaproxy.org/download/
Safe / legal ways to learn offensive security
- https://www.hackthebox.eu/
- https://dvwa.co.uk/
- https://github.com/OWASP/DVSA
- https://cloudsecwiki.com/vulnerable_apps.html
useful tool lists – Use at Your own risk
- https://www.sans.org/blog/the-ultimate-list-of-sans-cheat-sheets/
- https://github.com/toniblyx/my-arsenal-of-aws-security-tools
- https://github.com/coffeewithayman/awesome-aws-security
- https://github.com/ksoclabs/awesome-kubernetes-security
- https://github.com/collabnix/kubetools
- https://github.com/swisskyrepo/PayloadsAllTheThings
- https://github.com/security-cheatsheet
- https://github.com/toniblyx/prowler
- https://github.com/awslabs/aws-security-benchmark
- https://github.com/GoogleCloudPlatform/inspec-gcp-cis-benchmark/blob/master/walkthrough.md
- https://github.com/NationalSecurityAgency/ghidra
metasploit


empire


nmap

