# P14N

1. <mark style="color:purple;">THM</mark>
2. <mark style="color:purple;">certificate</mark>

   | API PENETRATION TESTING                       | <https://www.apisecuniversity.com/courses/api-penetration-testing>                                                                                                           |
   | --------------------------------------------- | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
   | Mobile APPLICATION PENETRATION TESTING        | <https://academy.tcm-sec.com/courses/enrolled/1557555>                                                                                                                       |
   | WEB APPLICATION PENETRATION TESTING           | <https://academy.tcm-sec.com/courses/enrolled/1792341>                                                                                                                       |
   | Python SCRIPTING                              | <https://courses.davidbombal.com/courses/1170936/lectures/25346093>                                                                                                          |
   | NETWORK PENETRATION TESTING                   | <https://app.cybrary.it/browse/course/offensive-penetration-testing>                                                                                                         |
   | WIRELESS NETWORKS PENETRATION TESTING         | <https://app.cybrary.it/profile/sudoninja?tab=cert-completion&cert=CC-972e8154-96fc-4979-8e1d-fd9407b693a8>                                                                  |
   | ACTIVE DIRECTORY PENETRATION TESTING          | <https://cyberwarfare.live/product/multi-cloud-red-team-analyst-mcrta/>                                                                                                      |
   | CLOUD PENETRATION TESTING(AWS, GCP and Azure) | <https://cyberwarfare.live/product/multi-cloud-red-team-analyst-mcrta/>                                                                                                      |
   | Red Team                                      | <https://portal.cyberwarfare.live/products/certified-red-team-analyst>                                                                                                       |
   | IOT PENETRATION TESTING                       | [expolit.io](http://expolit.io/)                                                                                                                                             |
   | Thick client PENETRATION TESTING              | [Course: Offensive Thick Client Penetration Testing \| Udemy](https://www.udemy.com/course/offensive-thick-client-penetration-testing/learn/lecture/50132083#overview)       |
   | SOURCE CODE REVIEW                            | Coursera - Secure Coding Specializations                                                                                                                                     |
   | bug bounty                                    | <https://www.udemy.com/course-dashboard-redirect/?course_id=3927586>                                                                                                         |
   |                                               | <https://www.udemy.com/course-dashboard-redirect/?course_id=3766352>                                                                                                         |
   | LLM / AI penetration testing                  | <https://www.udemy.com/course/llm-pentesting-red-teaming/?srsltid=AfmBOop0pbcOp6bddPw7CoYlOlTJGZXIRlb7VfqvFokC6_FFHCUv57IG&couponCode=CP130525>                              |
   |                                               | <https://www.udemy.com/course/the-ultimate-ai-llm-penetration-testing-training-course/?srsltid=AfmBOoo48udLjry5EYNQx4bKYPP6Ab1W21qM1L2eg9So1nDVs4Z26GF1&couponCode=CP130525> |
   |                                               | <https://portswigger.net/web-security/llm-attacks>                                                                                                                           |

### <mark style="color:purple;">**3. Structured Cybersecurity Training Platforms**</mark>

* [CyberWarfare.live](https://cyberwarfare.live/) – Cyber warfare and security research training.
* [TCM Security Academy](https://academy.tcm-sec.com/) – Affordable ethical hacking & cybersecurity courses.
* [Cybrary](https://app.cybrary.it/) – Cybersecurity and IT skills training platform.
* [David Bombal Courses](https://courses.davidbombal.com/l/products?sortKey=name\&sortDirection=asc\&page=1) – Networking & cybersecurity courses.
* [APIsec University](https://university.apisec.ai/apisec-certified-expert) – API security certifications.
* [Mobile Hacking Lab](https://www.mobilehackinglab.com/?msg=signup) – Mobile app hacking & pentesting.
* [EduTA Mind Hacking](https://www.eduta.org/courses/mind-hacking/) – Cyber mindset and skill courses.
* [Cybergita VAPT Mastery](https://learn.cybergita.com/courses/master-the-art-of-vulnerability-assessment-and-penetration-testing-vapt-100-free-professional-training/) – Free professional VAPT training.
* [EC-Council Learning](https://learn.eccouncil.org/main?logged=false) – CEH & EC-Council certifications.
* [LinkedIn Learning](https://www.linkedin.com/learning/?trk=nav_neptune_learning&) – Business, IT, and security training.

***

### **2. Practical Hacking Labs**

* [TryHackMe – SQL Injection Lab](https://tryhackme.com/room/sqlinjectionlm) – Hands-on SQLi training.
* [HackTheBox Academy – HTTPS/TLS Attacks](https://academy.hackthebox.com/academy-lab-relations/modules/httpstls-attacks) – TLS attack lab.
* [HackXpert Labs](https://labs.hackxpert.com/) – Online cybersecurity labs.
* [HackViser Labs](https://app.hackviser.com/login?returnUrl=%2Flabs) – Security testing practice.
* [Cyber Ranges](https://app.cyberranges.com/?r=/playlist/650a39054d095f00ac43c4dc) – Cyber range exercises.
* [Avatao](https://next.avatao.com/learning-paths) – Developer-focused security challenges.
* [TinyXSS](https://tinyxss.terjanq.me/) – XSS practice playground.

***

### **3. Specialized Security Resources**

* [PortSwigger Account](https://portswigger.net/users/youraccount/personaldetails) – Burp Suite community & resources.
* [Pentest Arsenal](https://pentestarsenal.netlify.app) – Pentesting tools & resources.
* [HackRTB (Hack The Box B2C)](https://hckrtb2c.b2clogin.com/...) – Access to HackTheBox labs.

***

### **4. General Tech & Development Learning**

* [OneByte Labs](https://onebytelabs.in/account/home) – General IT & security training.
* [Udemy – WordPress Blogging in Hindi](https://www.udemy.com/course/create-blog-on-wordpress-hindi/?couponCode=MT40825A) – Website creation in Hindi.
* [ClassCentral – YouTube Penetration Testing Bootcamp](https://www.classcentral.com/classroom/youtube-penetration-testing-bootcamp-53185) – Free bootcamp.

<mark style="color:purple;">**4.Pentesting Labs Collection**</mark>

#### **1. Web Application Pentesting**

* [Web Application Labs](https://sudoninja.gitbook.io/sudoninjabook/security-area/web-application-penetration-testing/lab) – Vulnerable web apps for SQLi, XSS, CSRF, and other web security testing.

#### **2. Network Pentesting**

* [Vulnerable Network Labs](https://sudoninja.gitbook.io/sudoninjabook/security-area/network-pt/vulnerable-network-labs) – Network exploitation labs for scanning, enumeration, and exploitation.

#### **3. Mobile Application Security**

* [Vulnerable Mobile Apps](https://sudoninja.gitbook.io/sudoninjabook/security-area/mobile-penetration-testing/vulnerable-mobile-apps) – Android/iOS app hacking environments.

#### **4. Active Directory (AD) Security**

* [Active Directory Labs](https://sudoninja.gitbook.io/sudoninjabook/security-area/active-directory-penetration-testing/lab) – AD attack simulations for Kerberoasting, Pass-the-Hash, etc.

#### **5. API Pentesting**

* [API Labs](https://sudoninja.gitbook.io/sudoninjabook/security-area/api-pentesting/lab) – REST/GraphQL API exploitation scenarios.

#### **6. Source Code Review**

* [Mastering Source Code Analysis Labs](https://sudoninja.gitbook.io/sudoninjabook/security-area/source-code-review/mastering-source-code-analysis-lab) – Vulnerable codebases for manual/static analysis practice.

#### **7. IoT Security**

* [IoT Labs](https://sudoninja.gitbook.io/sudoninjabook/security-area/iot-penetration-testing/vulnerable-iot-labs) – Exploiting smart devices and embedded systems.

#### **8. Red Teaming**

* [Build Your Own CTF Machine](https://sudoninja.gitbook.io/sudoninjabook/security-area/red-teaming/configure-your-own-vulnerable-ctf-machine) – Guide for creating custom CTF vulnerable environments.

#### **9. Cloud Security**

* [Vulnerable Cloud Labs](https://sudoninja.gitbook.io/sudoninjabook/security-area/cloud-security/vulnerable-cloud-labs) – Misconfigured AWS, Azure, GCP setups for exploitation.

#### **10. Bug Bounty Practice**

* [Bug Bounty Labs](https://sudoninja.gitbook.io/sudoninjabook/security-area/bug-bounty-hunting/bug-bounty-practice-labs) – Realistic bounty-style challenges.

#### **11. Thick Client Pentesting**

* [Thick Client Labs](https://sudoninja.gitbook.io/sudoninjabook/security-area/thick-client-pentesting/vulnerable-labs-and-applications) – Desktop application exploitation.

#### **12. Wireless Security**

* [Wireless Labs](https://sudoninja.gitbook.io/sudoninjabook/security-area/wireless-penetration-testing/vulnerable-wireless-labs) – Wi-Fi hacking & security testing environments.

#### **13. AI/LLM Security**

* [Vulnerable LLM/AI Labs](https://sudoninja.gitbook.io/sudoninjabook/security-area/llm-penetration-testing/vulnerable-llm-ai-labs) – Prompt injection, data leakage, and AI exploitation scenarios.

5. <mark style="color:purple;">**Live Target**</mark>

Bug hunting

6. <mark style="color:purple;">**Done**</mark>