There are several other resources that can be accessed either online or installed in VirtualBox that you can use to hone your penetration testing skills. The following list contains few resources you may want to explore as a supplement to the exercises in this book:
|
hack.me |
Easy to advanced challenges |
|
|
Hack this site |
Easy to advanced challenges |
|
|
Vulnerable by design |
Easy to advanced challenges |
|
|
Bee-Box |
Vulnerable web sites |
|
|
Moth |
Vulnerable web applications |
|
|
RasPwn |
Vulnerable Raspberry Pi image |
|
|
OWASP-BWA |
OWASP broken web application |
https://www.owasp.org/index.php/OWASP_Broken_Web_Applications_Project |
|
Hackfest 2016 Sedna |
Medium difficulty - root access |
|
|
Hackfest 2016 Quaoar |
Easy machine to own |
|
|
Pentester Lab: XSS and MySQL File |
Easy SQL injection example |
https://www.vulnhub.com/entry/pentester-lab-xss-and-mysql-file,66/ |
|
SQLInjection to Shell |
Intermediate - SQL injection to shell |
https://www.vulnhub.com/entry/pentester-lab-from-sql-injection-to-shell-ii,69/ |
|
Damn vulnerable web application |
Vulnerable - PHP/MySQL application |
https://github.com/Hackademic/hackademic |
|
Hackxor |
Webapp hacking game |
http://hackxor.sourceforge.net/cgi-bin/index.pl |
|
WebGoat |
Medium level challenge |
https://www.owasp.org/index.php/Category:OWASP_WebGoat_Project |
