都是一些大众资源,一些忘了,想起来再加上去。
CTF-wiki:
- CTF-wiki:https://ctf-wiki.github.io/ctf-wiki/
- O CTF:http://kmb.ufoctf.ru/index.html
- Awesome CTF:https://book.ph0en1x.com/
CTF练手网站:
- XCTF:https://www.xctf.org.cn/
- Hackme CTF: https://hackme.inndy.tw/
- Bugku: http://123.206.31.85/
- Jarvisoj: https://www.jarvisoj.com/
- Sniperoj: http://www.sniperoj.com/
- 南邮: http://ctf.nuptzj.cn
- CGCTF: https://cgctf.nuptsast.com/challenges
- 实验吧: http://shiyanbar.com/ctf/practice
- i春秋: https://www.ichunqiu.com/competition
- wechall: http://www.wechall.net
- CTFS:https://github.com/ctfs
- Google:搜索往期比赛及WP
- 一些个人QQ群或者小密圈或者组织,如安恒杯月赛
渗透学习:
- 渗透指南:https://www.gitbook.com/book/kennel209/owasp-testing-guide-v4/
- BWAPP虚拟机:http://sourceforge.net/projects/bwapp/files/bee-box/
- DVWA:http://www.dvwa.co.uk/
- Vulhub:https://github.com/vulhub/vulhub/
- Vulapp:https://github.com/Medicean/VulApps/
- Pentesterlab:https://pentesterlab.com/
- exploit-exercises:https://exploit-exercises.com/
- sqli-labs: https://github.com/Audi-1/sqli-labs
- XSS:https://public-firing-range.appspot.com/
- XSS:http://xsst.sinaapp.com/example/1-1.php
- 各种cms,中间件漏洞复现
渗透资源:
- 在线工具:https://www.sec-wiki.com/topic/12
- Python工具:https://github.com/We5ter/Scanners-Box
- Webshell:https://github.com/tennc/webshell
- Win平台提权漏洞集合:https://github.com/SecWiki/windows-kernel-exploits
- Linux平台提权漏洞集合:https://github.com/SecWiki/linux-kernel-exploits
- 在线运行代码工具:https://www.jdoodle.com
- 代码审计:P神小密圈
网友评论