（持续更新中）

安全网站

https://www.anquanke.com/

http://www.91ri.org/

http://www.4hou.com/

http://www.freebuf.com/

https://www.sec-wiki.com

https://www.trustedsec.com/category/articles/

https://paper.seebug.org/

博客

http://www.harmj0y.net/blog/

https://g-laurent.blogspot.com/

https://3gstudent.github.io/3gstudent.github.io/about/

渗透技巧合集

https://github.com/coreb1t/awesome-pentest-cheat-sheets    Collection of the cheat sheets useful for pentesting

https://github.com/3gstudent/Pentest-and-Development-Tips

https://room362.com/post/2012/2012-10-01-dirty-little-secrets-they-didnt-teach-you-in-pentest-class/

https://github.com/SecWiki/linux-kernel-exploits  linux-kernel-exploits Linux平台提权漏洞集合

https://github.com/SecWiki/windows-kernel-exploits windows-kernel-exploits Windows平台提权漏洞集合

工具——合集

https://github.com/We5ter/Scanners-Box 

工具——内网控制和拓展

https://github.com/samratashok/nishang

https://github.com/byt3bl33d3r/CrackMapExec

https://github.com/Kevin-Robertson/Inveigh

https://github.com/CoreSecurity/impacket

https://github.com/BloodHoundAD/BloodHound

https://github.com/EmpireProject/Empire

https://github.com/EmpireProject/EmPyre  纯python的渗透工具，使用完全类似于Empire

https://github.com/byt3bl33d3r/pth-toolkit   pth工具合集

https://github.com/Veil-Framework/Veil     免杀工具

工具——框架

https://pentestbox.org/zh/     windows下的便携渗透测试框架

https://github.com/infobyte/faraday  渗透测试框架

工具——恶意软件分析

https://github.com/rshipp/awesome-malware-analysis

工具——无线

https://github.com/P0cL4bs/WiFi-Pumpkin

https://github.com/wifiphisher/wifiphisher

代码审计