This is an introductory guide to cybersecurity and bug bounty.
You will find cheatsheets for the following topics:
1- Network Traffic Analysis (tcpdump, wireshark)
2- SQL Injection (sqlmap)
3- Bruteforce Online Forms (Hydra)
4- Hashes Bruteforcing (Hashcat)
5- Network Discovery (Nmap)
6- Web Directories Fuzing (Ffuf)
7- Privilege escalation
- OpenVPN https://tryhackme.com/room/openvpn
- Welcome https://tryhackme.com/jr/welcome
- Intro to Researching https://tryhackme.com/room/introtoresearch
- Learn Linux https://tryhackme.com/room/zthlinux
- Crash Course Pentesting https://tryhackme.com/room/ccpentesting
Intductory CTFs to get your feet wet
- Google Dorking https://tryhackme.com/room/googledorking
- OHsint https://tryhackme.com/room/ohsint
- Shodan.io https://tryhackme.com/room/shodan
- Tmux https://tryhackme.com/room/rptmux
- Nmap https://tryhackme.com/room/rpnmap
- Sublist3r https://tryhackme.com/room/rpsublist3r
- Metasploit https://tryhackme.com/room/rpmetasploit
- Hydra https://tryhackme.com/room/hydra
- Linux Privesc https://tryhackme.com/room/linuxprivesc
- Web Scanning https://tryhackme.com/room/rpwebscanning
More introductory CTFs
- RootMe
- Vulnversity - https://tryhackme.com/room/vulnversity
- Blue - https://tryhackme.com/room/blue
- Simple CTF https://tryhackme.com/room/easyctf
- Bounty Hacker https://tryhackme.com/room/cowboyhacker
- Mr. Robot (Intermediate/Beginner) - https://tryhackme.com/room/mrrobot
- Crack the hash https://tryhackme.com/room/crackthehash
- Agent Sudo https://tryhackme.com/room/agentsudoctf
- The Cod Caper https://tryhackme.com/room/thecodcaper
- Ice https://tryhackme.com/room/ice
- Lazy Admin https://tryhackme.com/room/lazyadmin
- Basic Pentesting https://tryhackme.com/room/basicpentestingjt
- Capture the flag https://tryhackme.com/room/c4ptur3th3fl4g
- OWASP top 10 https://tryhackme.com/room/owasptop10
- Inclusion https://tryhackme.com/room/inclusion
- Injection https://tryhackme.com/room/injection
- Vulnversity https://tryhackme.com/room/vulnversity
- Basic Pentesting https://tryhackme.com/room/basicpentestingjt
- Juiceshop https://tryhackme.com/room/owaspjuiceshop
- Ignite https://tryhackme.com/room/ignite
- Overpass https://tryhackme.com/room/overpass
- Year of the Rabbit https://tryhackme.com/room/yearoftherabbit
- DevelPy https://tryhackme.com/room/bsidesgtdevelpy
- Jack of all trades https://tryhackme.com/room/jackofalltrades
- Bolt https://tryhackme.com/room/bolt
- Intro to x86 64 https://tryhackme.com/room/introtox8664
- CC Ghidra https://tryhackme.com/room/ccghidra
- CC Radare2 https://tryhackme.com/room/ccradare2
- CC Steganography https://tryhackme.com/room/ccstego
- Reverse Engineering https://tryhackme.com/room/reverseengineering
- Reversing ELF https://tryhackme.com/room/reverselfiles
- Dumping Router Firmware https://tryhackme.com/room/rfirmware
- Sudo Security Bypass https://tryhackme.com/room/sudovulnsbypass
- Sudo Buffer Overflow https://tryhackme.com/room/sudovulnsbof
- Windows Privesc Arena https://tryhackme.com/room/windowsprivescarena
- Linux Privesc Arena https://tryhackme.com/room/linuxprivescarena
- Windows Privesc https://tryhackme.com/room/windows10privesc
- Blaster https://tryhackme.com/room/blaster
- Ignite https://tryhackme.com/room/ignite
- Kenobi https://tryhackme.com/room/kenobi
- Pickle Rick https://tryhackme.com/room/picklerick
- Post Exploitation Basics https://tryhackme.com/room/postexploit
- Smag Grotto https://tryhackme.com/room/smaggrotto
- Inclusion https://tryhackme.com/room/inclusion
- Dogcat https://tryhackme.com/room/dogcat
- LFI basics https://tryhackme.com/room/lfibasics
- Buffer Overflow Prep https://tryhackme.com/room/bufferoverflowprep
- Overpass https://tryhackme.com/room/overpass
- Break out the cage https://tryhackme.com/room/breakoutthecage1
- Lian Yu https://tryhackme.com/room/lianyu
- Attacktive Directory https://tryhackme.com/room/attacktivedirectory
- Retro https://tryhackme.com/room/retro
- Blue Print https://tryhackme.com/room/blueprint
- Anthem https://tryhackme.com/room/anthem
- Relevant https://tryhackme.com/room/relevant
RQ: you can find some writeups on my Github profile, and ofc on the internet. Reading writeups and participating in CTFs is probably the best way to progress once you're used to HTB/THM rooms.
1- MLH Batch 2 (spring) CTF (winner)
2- MLH batch 3 (summer) CTF
3- Holberton CTF
4- Pbjar 2021 (top25, 872 teams)
5- Grabcon 2021 (top 20, 600+ active teams)
6- CSAW 2021
Milestone: Joined "Idek" senior team!
7- DownUnder CTF 2021 (top 6, 1594 teams)
8- Snyk CTF - Top 3
9- sPBCTF 2021 - Top 6 (free-to-play track)
10- TuniHack CTF 2021 - Top 2
1- HackTheBox Academy
2- TryHackMe rooms and guides
3- https://skerritt.blog/free-rooms/ (free THM rooms path)