## Privilege Escalation
* https://github.com/sagishahar/lpeworkshop

## APIs
* https://any-api.com/

## Tools
* https://github.com/BishopFox/GitGot
* https://www.threatcrowd.org/
* https://snyk.io/
* https://urlscan.io/
* https://securityheaders.com/
* https://xsshunter.com/

## Practice & Learning
* https://overthewire.org/
* https://hackthebox.eu/
* https://pwnable.tw/
* https://www.root-me.org/
* https://www.hackthissite.org/
* https://www.vulnhub.com/
* https://www.wechall.net/
* https://www.cybrary.it/

## OSINT
* https://github.com/jivoi/awesome-osint
* https://start.me/p/wMdQMQ/tools
* https://start.me/p/m6XQ08/osint
* https://github.com/techgaun/github-dorks
* https://www.exploit-db.com/google-hacking-database/
* https://github.com/sa7mon/S3Scanner
* https://github.com/aboul3la/Sublist3r/
* https://zeltser.com/lookup-malicious-websites/
* https://www.virustotal.com/  - Analyze suspicious files and urls
* https://sploitus.com/  - Exploit and Tool Search
* https://censys.io/
* https://www.shodan.io/
* https://haveibeenpwned.com/
* https://ipalyzer.com/
* https://urlscan.io/
* https://securityheaders.com/
* https://observatory.mozilla.org/
* https://transparencyreport.google.com/safe-browsing/search
* https://viz.greynoise.io/
* https://www.hunch.ly/
* https://www.osintcombine.com/

## WebApp Testing
* https://leanpub.com/web-hacking-101

## CTF, Bug Bounties
* https://hacker101.com/
* https://www.bugcrowd.com
* https://www.bugcrowd.com/university
* https://www.hackerone.com/
* https://hackenproof.com/
* https://bughunter.withgoogle.com/
* https://www.microsoft.com/en-us/msrc/bounty
* https://www.facebook.com/whitehat
* https://www.facebook.com/bugbounty
* https://aws.amazon.com/security/vulnerability-reporting/