Here is an updated list of free cybersecurity certifications you can get to kickstart your career in cybersecurity :

1. Introduction to Cybersecurity[https://lnkd.in/gS4ncPmX]
2. Cybersecurity Essentials[https://lnkd.in/gSQqNY9h]
3. Introduction to Dark Web, Anonymity, and Cryptocurrency[https://lnkd.in/g8FSgRtH]
4. Ethical Hacking Essentials (EHE)[https://lnkd.in/gG4RgHA9]
5. Networking Essentials[https://lnkd.in/g6JMDGGe]
6. Website Hacking Techniques[https://lnkd.in/gUdjnpRW]
7. Digital Forensics Essentials (DFE)[https://lnkd.in/gkMpN--B]
8. Network Defense Essentials (NDE)[https://lnkd.in/gnvw7Fiy]
9. Android Bug Bounty Hunting: Hunt Like a Rat[https://lnkd.in/g76Jnzmi]
10. Certified in Cybersecurity℠ - CC[https://lnkd.in/gB2fGdfC]
11. 20+ Free AWS Certs Related to Cybersecurity[https://lnkd.in/gfsqsQKz]
12. Cyber crime:[https://lnkd.in/gdiS-pqK]
13. Cyber Forensics:[https://lnkd.in/g22nfYaN]
14. Network Security:[https://lnkd.in/gXB4nTx5]





#infosec #cybersecurity #pentesting #ethicalhacking #informationsecurity #learningeveryday #networksecurity

Social engineering is that branch of the Cybersecurity space that has always intrigued my interest and curiousity. I mean manipulating human emotions and luring them into getting hacked - Absolutely intriguing!!

And With the recent growing number of social engineering attacks, phising being one of the major one, Curiousity about social engineering has grown as well.

It really doesn't matters how smart we are, well planned social engineering attacks can trick us all. And yet there is no solution to install on the human brain that could warn and prevent them from those attacks.

so what's there that can be done apart from security awareness trainings? An approach to actively test the readiness of our people, processes and technology and awareness against those social engineering attacks can be helpful. And gain more knowledge on the nature and approach of various social engineering attacks.

Here's some great resources for social engineering I came across which lists various:
- Online Courses
- Capture the Flag
- Psychology Books
- Books
- Documentation
- Tools
- Miscellaneus
- OSINT

Awesome Social Engineering : https://lnkd.in/g485SKzj





#infosec #CyberSecurity #pentesting #ethicalhacking #learningeveryday #cybersec #skillsdevelopment #socialengineering
Activate t

Cybersecurity Resources: Blue Team, Red Team, CTF, and more!

A collection of cybersecurity-related resources to add skills development to our Free Time Activities list!

The resources are well organized in three different categories as follows:

• Cybersecurity & Hacking Documentaries
• Cybersecurity-YouTube Channels
• Cybersecurity-Labs [RED TEAM/BLUE TEAM and CTF Skills]

Kindly note that there are several labs in the list which are completely FREE to use; however, for some services, such as #hackthebox VIP access, we need to pay a fee to enjoy all the best features and benefits!

Cybersecurity-Resources: https://lnkd.in/gESByfuT

Happy learning All!





#infosec #CyberSecurity #pentesting #ethicalhacking #learningeveryday #cybersec #skillsdevelopment
Activate to view la

Here are some of the free websites to learn Linux from for free :
1. OverTheWire[https://lnkd.in/eFKK_85m]
2. Linux Journey[https://linuxjourney.com/]
3. Linux Handbook[https://linuxhandbook.com/]
4. Tecmint[https://www.tecmint.com/]
5. Linux Hint[https://linuxhint.com/]
6. LinuxOPsys[https://linuxopsys.com/]
7. Linuxize[https://linuxize.com/]
8. Eduonix Learn Linux From Scratch[https://lnkd.in/e7cHemyy]
9. Cyberciti Bash Shell Scripting Tutorial[https://lnkd.in/eNn5_9Gv]
10. Learn Enough Command Line To Be Dangerous[https://lnkd.in/eZimTYA4]
11. The Debian Administrator's Handbook[https://lnkd.in/exZzEwFS]
12. LabEx Linux For Noobs[https://lnkd.in/e_FPpdtz]
13. nixCraft[https://www.cyberciti.biz/]
14. Conquering the Command Line[https://lnkd.in/eHSc8Sza]
15. FOSS Linux[https://www.fosslinux.com/]
16. It's FOSS[https://itsfoss.com/]
17. Linux Survival[https://linuxsurvival.com/]
18. Ryan's Tutorials[https://lnkd.in/ePGx5PaC]
19. TLDP Advanced Bash Scripting Guide[https://lnkd.in/e4nzZmvV]
20. Guru99 Linux Tutorial Summary[https://lnkd.in/ebeJuzq8]





#pentesting #ethicalhacking #cybersecurity #learningeveryday #infosec #cybersec

Studying Active Directory?
Here are 5 blogs you should definitely check out.
1. https://lnkd.in/geyHTm_8
2. https://lnkd.in/g87pewRe
3. https://adsecurity.org/
4. https://dirkjanm.io/
5. https://lnkd.in/gcwsw-Nf




#pentesting #ethicalhacking #learningeveryday #infosec #cybersec #activedirectory

The best resource for understanding and verifying the possibility of sub-domain takeovers
Link Here :
https://lnkd.in/dNQV5e8W



#pentesting #informationsecurity #ethicalhacking #cybersecurity #learningeveryday #infosec #cybersecurity

A cheat sheet that contains advanced queries for SQL Injection of all types⬇️
https://t.co/RRgNMFzMrC



#pentesting #informationsecurity #ethicalhacking #cybersecurity #learningeveryday #infosec #cybersec #sqlinjection

𝐑𝐞𝐝 𝐓𝐞𝐚𝐦 𝐓𝐨𝐨𝐥𝐬 🔥

🔴 RECONNAISSANCE:
- RustScan ==> https://lnkd.in/ebvRfBNy
- NmapAutomator ==> https://lnkd.in/gu5wxzf6
- AutoRecon ==> https://lnkd.in/g3DeG6YT
- Amass ==> https://lnkd.in/e7V569N5
- CloudEnum ==> https://lnkd.in/ePHDeGZv
- Recon-NG ==> https://lnkd.in/edwaXFjS
- AttackSurfaceMapper ==> https://lnkd.in/ebbcj6Rm
- DNSDumpster ==> https://dnsdumpster.com/

🔴 INITIAL ACCESS:
- SprayingToolKit ==> https://lnkd.in/eBSAPz5z
- o365Recon ==> https://lnkd.in/eJwCx-Ga
- Psudohash ==> https://lnkd.in/gcaxV6fR
- CredMaster ==> https://lnkd.in/gtMEDVuS
- DomainPasswordSpray ==> https://lnkd.in/guWj4TYv
- TheSprayer ==> https://lnkd.in/gZVuQYiv
- TREVORspray ==> https://lnkd.in/gHgcbjgV

🔴 DELIVERY:
- o365AttackToolKit ==> https://lnkd.in/etCCYi8y
- EvilGinx2 ==> https://lnkd.in/eRDPvwUg
- GoPhish ==> https://lnkd.in/ea26dfNg
- PwnAuth ==> https://lnkd.in/eqecM7de
- Modlishka ==> https://lnkd.in/eds-dR5C

🔴 COMMAND AND CONTROL:
- PoshC2 ==> https://lnkd.in/eqSJUDji
- Sliver ==> https://lnkd.in/ewN9Nday
- SILENTTRINITY ==> https://lnkd.in/eeZGbYMs
- Empire ==> https://lnkd.in/egAPa8gY
- AzureC2Relay ==> https://lnkd.in/efmh2t3g
- Havoc C2 ==> https://lnkd.in/gEFp2iym
- Mythic C2 ==> https://lnkd.in/gnCGwfWk

🔴 CREDENTIAL DUMPING:
- MimiKatz ==> https://lnkd.in/etEGfvJK
- HekaTomb ==> https://lnkd.in/eJx5Ugu5
- SharpLAPS ==> https://lnkd.in/eA28n9FT
- Net-GPPPassword ==> https://lnkd.in/e3CTez5A
- PyPyKatz ==> https://lnkd.in/eeb5b6Tz

🔴 PRIVILEGE ESCALATION:
- SharpUp ==> https://lnkd.in/etR2Pe_n
- MultiPotato ==> https://lnkd.in/eq53PXcJ
- PEASS ==> https://lnkd.in/eWA66akh
- Watson ==> https://lnkd.in/eZfYMSMX
- Bat-Potato ==> https://lnkd.in/gjziyG8q

🔴 DEFENSE EVASION:
- Villain ==> https://lnkd.in/gquyGFm5
- EDRSandBlast ==> https://lnkd.in/e8g8zYFT
- SPAWN - Cobalt Strike BOF ==> https://lnkd.in/e223PbqZ
- NetLoader ==> https://lnkd.in/ef5wCD4y
- KillDefenderBOF ==> https://lnkd.in/eVd54HUp
- ThreatCheck ==> https://lnkd.in/eHvSPakR
- Freeze ==> https://lnkd.in/eNUh3zCi
- GadgetToJScript ==> https://lnkd.in/egPQBBXJ

🔴 PERSISTENCE:
- SharPyShell ==> https://lnkd.in/eXm8h8Bj
- SharpStay ==> https://lnkd.in/erRbeFMj
- SharpEventPersist ==> https://lnkd.in/e_kJFNiB

🔴 LATERAL MOVEMENT:
- SCShell ==> https://lnkd.in/e256fC8B
- MoveKit ==> https://lnkd.in/eR-NUu_U
- ImPacket ==> https://lnkd.in/euG4hTTs

🔴 EXFILTRATION:
- SharpExfiltrate ==> https://lnkd.in/eGC4BKRN
- DNSExfiltrator ==> https://lnkd.in/epJ-s6gp
- Egress-Assess ==> https://lnkd.in/eXGFPQRJ

#redteam #cybersecurity #penetrationtesting #security #ethicalhacking #tools

This channel/community aims to provide free courses related to programming,web development, cyber security, ethical hacking and many more tech related stuff and news #programmming, #coding, #ethicalhacking #cybersecurity

Join our channel channel :- telegram.me/cybertrickzone

@cybertrickzone for more to learn hacking, programming, hacking tools, pdf , courses, tech news, database daily updates. Please join my channel

Share this channel to your friends and family who need that
https://t.me/cybertrickzone

Bug bounty Cheatsheet:

For more like this, join us at:
t.me/cybertrickzone

XSS
https://github.com/EdOverflow/bugbounty-cheatsheet/blob/master/cheatsheets/xss.md
https://github.com/ismailtasdelen/xss-payload-list

SQLi
https://github.com/EdOverflow/bugbounty-cheatsheet/blob/master/cheatsheets/sqli.md

SSRF
https://github.com/EdOverflow/bugbounty-cheatsheet/blob/master/cheatsheets/ssrf.md
https://github.com/swisskyrepo/PayloadsAllTheThings/tree/master/Server%20Side%20Request%20Forgery

CRLF
https://github.com/EdOverflow/bugbounty-cheatsheet/blob/master/cheatsheets/crlf.md
https://github.com/swisskyrepo/PayloadsAllTheThings/tree/master/CRLF%20Injection

CSV-Injection
https://github.com/EdOverflow/bugbounty-cheatsheet/blob/master/cheatsheets/csv-injection.md
https://github.com/swisskyrepo/PayloadsAllTheThings/tree/master/CSV%20Injection

Command Injection
https://github.com/swisskyrepo/PayloadsAllTheThings/tree/master/Command%20Injection

Directory Traversal
https://github.com/swisskyrepo/PayloadsAllTheThings/tree/master/Directory%20Traversal

LFI
https://github.com/EdOverflow/bugbounty-cheatsheet/blob/master/cheatsheets/lfi.md
https://github.com/swisskyrepo/PayloadsAllTheThings/tree/master/File%20Inclusion

XXE
https://github.com/EdOverflow/bugbounty-cheatsheet/blob/master/cheatsheets/xxe.md

Open-Redirect
https://github.com/EdOverflow/bugbounty-cheatsheet/blob/master/cheatsheets/open-redirect.md

RCE
https://github.com/EdOverflow/bugbounty-cheatsheet/blob/master/cheatsheets/rce.md

Crypto
https://github.com/EdOverflow/bugbounty-cheatsheet/blob/master/cheatsheets/crypto.md

Template Injection
https://github.com/EdOverflow/bugbounty-cheatsheet/blob/master/cheatsheets/template-injection.md
https://github.com/swisskyrepo/PayloadsAllTheThings/tree/master/Server%20Side%20Template%20Injection

XSLT
https://github.com/EdOverflow/bugbounty-cheatsheet/blob/master/cheatsheets/xslt.md

Content Injection
https://github.com/EdOverflow/bugbounty-cheatsheet/blob/master/cheatsheets/content-injection.md

LDAP Injection
https://github.com/swisskyrepo/PayloadsAllTheThings/tree/master/LDAP%20Injection

NoSQL Injection
https://github.com/swisskyrepo/PayloadsAllTheThings/tree/master/NoSQL%20Injection

CSRF Injection
https://github.com/swisskyrepo/PayloadsAllTheThings/tree/master/CSRF%20Injection

GraphQL Injection
https://github.com/swisskyrepo/PayloadsAllTheThings/tree/master/GraphQL%20Injection

IDOR
https://github.com/swisskyrepo/PayloadsAllTheThings/tree/master/Insecure%20Direct%20Object%20References

ISCM
https://github.com/swisskyrepo/PayloadsAllTheThings/tree/master/Insecure%20Source%20Code%20Management

LaTex Injection
https://github.com/swisskyrepo/PayloadsAllTheThings/tree/master/LaTeX%20Injection

OAuth
https://github.com/swisskyrepo/PayloadsAllTheThings/tree/master/OAuth

XPATH Injection
https://github.com/swisskyrepo/PayloadsAllTheThings/tree/master/XPATH%20Injection

Bypass Upload Tricky
https://github.com/swisskyrepo/PayloadsAllTheThings/tree/master/Upload%20Insecure%20Files

⬇️ Our TELEGRAM Group's And Channel's ⬇️

https://t.me/cybertrickzone ==> Main Channel

https://t.me/INDIANCYBERWARRIOR ==> Main Group

https://t.me/CodeSecurityVault ==> Ebooks, handwritten notes PDF Channel

OUR FACEBOOK GROUP :- https://www.facebook.com/groups/1666615317033089/

INSTAGRAM :- https://instagram.com/cybertrickszone

TWITTER :- https://twitter.com/cybertrickszone?t=-nLbfEpl0AnDHGsG1Rvupg&s=09

Our YouTube Channel ==>
https://youtube.com/c/NikhilCyberTech

2nd YT CHANNEL:- https://youtube.com/c/CyberTechwithNikhil

OUR DISCORD SERVER :- https://discord.gg/4VnzdkURxv

Linktree:- https://linktr.ee/cybertrickszone

Owner Bio :- protocolnick.t.me

𝗧𝗿𝘆𝗛𝗮𝗰𝗸𝗠𝗲 𝗖𝘆𝗯𝗲𝗿 𝗔𝗱𝘃𝗲𝗻𝘁 𝗗𝗮𝘆- 𝟮


𝗟𝗲𝗮𝗿𝗻 𝗣𝘆𝘁𝗵𝗼𝗻 & 𝗝𝘂𝗽𝘆𝘁𝗲𝗿 😍


𝗪𝗮𝗹𝗸𝘁𝗵𝗿𝗼𝘂𝗴𝗵: https://youtu.be/MPjm-g0Uq5Q?si=C7-ZZsDlozN4syzQ


Please Like & Subscribe to our YouTube channel😄

𝗧𝗿𝘆𝗛𝗮𝗰𝗸 𝗠𝗲 𝗔𝗱𝘃𝗲𝗻𝘁 𝗼𝗳 𝗖𝘆𝗯𝗲𝗿 𝗗𝗮𝘆-𝟯

𝗕𝗿𝘂𝘁𝗲 𝗳𝗼𝗿𝗰𝗶𝗻𝗴 𝗣𝗮𝘀𝘀𝘄𝗼𝗿𝗱😍

𝗪𝗮𝗹𝗸𝘁𝗵𝗿𝗼𝘂𝗴𝗵: https://youtu.be/tbNuQH8vFMU

Please Like & Subscribe to our YouTube Channel😄

𝗙𝗶𝗻𝗮𝗹𝗹𝘆 𝘁𝗵𝗲 𝗦𝘁𝗿𝗶𝗸𝗲 𝗵𝗮𝘀 𝗯𝗲𝗲𝗻 𝗥𝗲𝗺𝗼𝘃𝗲𝗱 🥳

𝗪𝗮𝘁𝗰𝗵 𝗧𝗿𝘆𝗛𝗮𝗰𝗸𝗠𝗲 𝗗𝗮𝘆-𝟰

𝗪𝗮𝗹𝗸𝘁𝗵𝗿𝗼𝘂𝗴𝗵: https://youtu.be/qLusVF1owU0?si=kXfDTMpWTx60giSA

How to analyze and Decrypt hash values? | Hashing tutorial in cyber security | Educational Purposes

video link : https://youtu.be/LBStRFbiXOI

like share subscribe support our channel

credits : @cybertrickzone

FROM INTERNET
1)[Account Take Over] through reset password token leaked in response, 2500 € Reward
https://infosecwriteups.com/account-take-over-through-reset-password-token-leaked-in-response-2500-reward-b643f97a7c67

2)picoCTF 2024 Write-Up
https://lynguist0.medium.com/picoctf-2024-write-up-5681a6a5350e

3)[Walkthrough] Mobile Hacking Lab — Secure Note
https://medium.com/@karimul.sh/walkthrough-mobile-hacking-lab-secure-note-eeb4af20e01b

4)Ramadan Nights CTF With Cyber Talents
https://medium.com/@mohammadolimat/ramadan-nights-ctf-7178ced2facd

5)picoCTF 2024 — Write-up — Web
https://cybersecmaverick.medium.com/picoctf-2024-write-up-web-992348f48b99
#bug #bugs #bugbounty #bugbountytip #bugbountytips #hacking #hacker #ethicalhacking #ethicalhacker #ethicalhackers #cybersecurity

🐞 Bug Bounty Tip: 🕵️‍♂️

If you find Web frameworks like Symfony, add /app_dev.php/_profiler/open?file=app/config/parameters.yml to the wordlist, and you may get juicy data. Enjoy! 🚀




Symfony has a built-in profiler that can be accessed during development to provide information about the application's performance and behavior. The URL /app_dev.php/_profiler/ is used to access this profiler.

In the tip, it suggests adding /app_dev.php/_profiler/open?file=app/config/parameters.yml to a wordlist. A wordlist is a list of words used for testing purposes, often in password cracking or in this case, for trying different URLs.

By adding this specific URL to the wordlist and attempting to access it on a Symfony application in development mode, an attacker might be able to access sensitive data stored in the parameters.yml file. This file often contains configuration settings, including database credentials and other sensitive information.

#bugbountytips #bugbountytip #cybersecurity #ethicalhacking