Security Resource Hub

Curated learning, practice labs, and toolkit links for ethical security work. Built for developers who want to ship safer software and understand how systems fail.

Snapshot

Sections

Total links

Safety rule

Test only in legal environments you own or are authorized to assess.

~/learn

> LEARN_

$ ./load_foundations.sh

OWASP Top 10

external

The core web app risks every developer and tester should know.

#web#risk-model

PortSwigger Web Security Academy

external

Hands-on lessons and labs for modern web vulnerabilities.

#labs#web

NIST Secure Software Development Framework

external

Practical secure-by-design guidance for software teams.

#sdlc#standards

~/practice

> PRACTICE_

$ ./start_training.sh

Hack The Box

external

Guided labs and real-world style challenges for security skills.

#ctf#network

TryHackMe

external

Beginner-friendly paths from fundamentals to advanced topics.

#beginner#guided

picoCTF

external

Free CTF exercises that build practical offensive/defensive basics.

#ctf#free

~/tooling

> TOOLS_

$ ./load_toolkit.sh

Burp Suite Community Edition

external

Essential proxy tooling for inspecting and testing web traffic.

#proxy#web

Nmap

external

Network discovery and auditing tool with broad community support.

#network#scanning

Wireshark

external

Deep packet analysis for understanding and troubleshooting traffic.

#packets#analysis

SecLists

external

Wordlists and payload collections commonly used in security testing.

#wordlists#reference