Offensive Operations
Penetration testing, exploitation, and CNO resources.
8 resources
Exploit Database
Offensive Security's public exploit archive. Search disclosed exploits by product, CVE, or platform. Useful reference fo…
Hack The Box — Starting Point
Guided intro machines from HTB. Covers basic recon, exploitation, and privilege escalation. Progress to Pro Labs for adv…
LiveOverflow — Binary Exploitation YouTube Series
Free YouTube playlist covering binary exploitation fundamentals. Great supplement to pwn.college. Covers BOF, format str…
ManTech ACTP — Advanced Cyber Training Program
DoD-contracted CNO developer training pipeline covering Python for operators, C/assembly, shellcode, exploit development…
OWASP Top 10
The canonical list of critical web application security risks. Required reading for CEH, OSCP, and any web application t…
OverTheWire Wargames
Classic Linux and networking wargames. Start with Bandit for command-line fundamentals, then progress through Narnia, Le…
PortSwigger Web Security Academy
Free, hands-on web application security labs from the makers of Burp Suite. Covers SQLi, XSS, SSRF, OAuth, deserializati…
TryHackMe — Jr Penetration Tester Path
Structured, browser-based learning path covering enumeration, exploitation, web hacking, and post-exploitation. Great fo…