Free Resources for Incident Response Professionals

To help make your tough job a bit easier.

External Resources

This is a list of external resources for your reference. None of these links is affiliated with us in any way, but we respect their work and their contribution to the IT Security community. You will find a mixture of offensive and defensive resources on this page, since to do either well-requires knowledge of both.

Learning Resources

Need to brush up on Linux? Try https://linuxjourney.com/ 

Want help understanding a Linux command? https://explainshell.com/

Interested to explore coding? Check out https://www.codecademy.com/ 

Want to review the basics of different types of attacks? Here’s some lessons for you

https://www.hacksplaining.com/exercises 

How would you like to learn more about Metasploit and help out a great charity? Go here to find out https://www.offensive-security.com/metasploit-unleashed/ 

Need some more information on Windows Event Logs https://www.ultimatewindowssecurity.com/securitylog/default.aspx

How about some free PowerShell video training direct from Microsoft?

https://mva.microsoft.com/en-US/training-courses/getting-started-with-microsoft-powershell-8276 

https://mva.microsoft.com/en-US/training-courses/whats-new-in-powershell-v5-16434 

For great sample policies and procedures, look here:

https://www.incidentresponse.com/resources/policies-plans/

Looking for great video training in digital forensics?  Check out https://www.youtube.com/13cubed 

Capture the Flag and Other Challenges

Pentesting

Want to learn more about web application pentesting? Check out https://www.owasp.org (a good overview of their projects is here https://www.owasp.org/images/0/01/Owasp_Dev_Guide.pdf) and also explore https://pentesterlab.com/

https://www.hackthebox.eu/

Need some good wordlists for password cracking? Try:

https://wiki.skullsecurity.org/passwords

https://crackstation.net/buy-crackstation-wordlist-password-cracking-dictionary.htm 

Other

And here’s some other sites with great information for continuing your journey into penetration testing and incident response: