Useful Cybersecurity Websites - whitecyberduck's Blog

![[bookmark.png]] ### General | **Tool** | **Description** | **Link** | | --- | ----------- | --- | | CyberChef | A Swiss Army knife to manipulate data in complex ways without complex tools or algorithms. | https://gchq.github.io/CyberChef/ | | HackTricks | A wiki full of useful cheatsheets for all manners of hacking | https://book.hacktricks.xyz/ | | RExpository | A collection of regular expressions. | https://jaimepolop.github.io/RExpository/ | | dnstwist | A lookalike domain generator. | https://dnstwist.it/ | | IsItLegalToPay? | ransomware payment legality map | https://isitlegaltopay.com/ | | HaveIBeenSquatted | Check if a domain has been typosquatted | https://www.haveibeensquatted.com/ | ### Offensive | **Tool** | **Description** | **Link** | | ----------- | ------------------------------------------------------------------------------------------------------------------------------- | ------------------------------------------ | | GTFOBins | A list of Unix binaries that can be used to bypass security restrictions on misconfigured systems. | https://gtfobins.github.io/ | | LOLBins | Living Off The Land Binaries is a list of native Windows tooling that can be used by attackers. | https://lolbas-project.github.io/# | | LOLDrivers | Living Off The Land Drivers is a list of Windows drivers used by adversaries to bypass security controls and carry out attacks. | https://www.loldrivers.io/ | | LOOBins | Living Off the Orchard is a list of built-in macOS binaries and how they can be used by threat actors for malicious purposes. | https://www.loobins.io/ | | LOLApps | Living Off The Land Applications is a list of built-in and third-party applications that can be used and abused by attackers. | https://lolapps-project.github.io/# | | LOFLCAB | Living off the Foreign Land Cmdlets and Binaries | https://lofl-project.github.io/ | | LOLESXi | Living off the Land ESXi is a list of binaries/scripts available in VMware ESXi that can be abused. | https://lolesxi-project.github.io/LOLESXi/ | | Hijack Libs | A curated list of DLL Hijacking candidates. | https://hijacklibs.net/ | ### Defensive | **Tool** | **Description** | **Link** | | --- | ----------- | --- | | MalAPI | A map of the Windows APIs to common techniques used by malware. | https://malapi.io/ | | WTFBins | A collection of legitimate software that behaves exactly like malware, except, somehow, it's not. | https://wtfbins.wtf/ | | End Of Life | Documents EOL dates and support lifecycles for various products. | https://endoflife.date/ |