Documentation Hub

Extensive resources on web application security, including Top 10, testing guides, and projects.

Globally-accessible knowledge base of adversary tactics and techniques.

Voluntary framework consisting of standards, guidelines, and best practices to manage cybersecurity risk.

Library of alerts, best practices, and guidance from the US Cybersecurity & Infrastructure Security Agency.

Security and Privacy Controls for Information Systems and Organizations.

Protecting Controlled Unclassified Information in Nonfederal Systems.

International standard for information security management systems (ISMS).

Prioritized set of actions to protect organizations and data from known cyber attack vectors.

Online manual pages for Linux commands and system calls.

Official user guide for the Wireshark network protocol analyzer.

Official documentation for the Kali Linux penetration testing distribution.

Free course providing comprehensive documentation for the Metasploit Framework.

Official documentation for the Burp Suite web vulnerability scanner.

Documentation for the Suricata Intrusion Detection System (IDS/IPS).

Documentation and manuals for the Snort Intrusion Prevention System (IPS).

A collection of OSINT tools categorized for easy reference (visual framework).

Documentation and usage guide for the CyberChef data manipulation tool.

Generic signature format for SIEM systems, documentation hosted on GitHub.

Official documentation for the Splunk data platform.

Documentation for Elasticsearch, Logstash, Kibana, and Beats.

Documentation for the Shodan search engine API.

Documentation for the VirusTotal API for file and URL analysis.

Documentation for the Windows Sysinternals suite of utilities.

Framework for planning and discussing adversary engagement operations and denial/deception.

Documentation for the Cuckoo automated malware analysis sandbox.

Official documentation for the Tanium endpoint management and security platform.

Documentation for OSQuery, allowing SQL-based querying of operating system information.

Documentation for the Zeek network security monitoring framework.

Documentation for the OpenVAS vulnerability scanner (part of Greenbone).

Documentation for the Ghidra software reverse engineering framework.

Documentation for the Autopsy digital forensics platform.

Documentation for the Volatility memory forensics framework.

Main website for Sigma rules, including documentation and usage guides.

Specific documentation on writing and understanding Suricata rules.

Support and documentation for Cisco Secure Endpoint (formerly AMP).

Microsoft documentation on security features and recommended baselines for Windows.

Resource site dedicated to Active Directory security concepts and best practices.

Microsoft documentation covering PowerShell security features and considerations.

Manual page for TShark, the command-line version of Wireshark.

An online book explaining the concepts behind TLS/SSL protocols.

Official documentation and book for the Nmap network scanner.

Documentation for Nessus vulnerability scanners from Tenable.

Documentation on using Ansible for security automation tasks.

Official AWS documentation covering security services and best practices.

Official Microsoft Azure documentation for security center, services, and best practices.

Official Google Cloud documentation covering security products and practices.

Mozilla's information security guidelines and policies.

Support and documentation for the Tor Browser and network.

Official documentation regarding the CMMC framework for DoD contractors.

Official document library for the Payment Card Industry Data Security Standard.