Resources to Help You Get Started

Some resources are from unethical sources. (pirate sites, cracked software, etc) Everything here will have a legitimate source, as well as a “alternative” source for you to explore at your own discretion.

What you will find here

A little bit of everything you would need to get started.

• Tools: Core kit + optional tracks.
• Software: Hypervisors, base OS, and workflow helpers.
• Learning: Curated resources and practice paths.
• Starter packs: Downloadable bundles.

---

Tools

Start with the core kit. Add specialized tools only when you need them.

>

Core toolkit (start here)

One disassembler, one debugger, one packet tool, one instrumentation layer.

Core

Free Windows, macOS, Linux

Ghidra

Full suite with decompiler and scripting.

Open ->

Paid Windows, macOS, Linux

IDA Pro

Industry standard disassembler and debugger.

Open ->

Alt sources

Licensing Trial (request access)

Paid Windows, macOS, Linux

Binary Ninja

Modern UI with strong analysis workflows.

Open ->

Free Windows

x64dbg

Go-to user mode debugger for Windows.

Open ->

Free Windows

WinDbg Preview

Microsoft debugger for kernel and user mode.

Open ->

Free Cross-platform

Frida

Dynamic instrumentation and live hooks.

Open ->

Free Windows, macOS, Linux

Wireshark

Packet capture and deep protocol analysis.

Open ->

Free Windows, macOS, Linux

ImHex

Hex editor with patterns and plugins.

Open ->

>

Specialized tracks

Add these when you need firmware, mobile, or web focus.

Optional

Firmware + file analysis

Free Linux, macOS

Binwalk

Firmware extraction and analysis tooling.

Open ->

Free Cross-platform

YARA

Pattern matching for malware triage.

Open ->

Paid Windows, macOS, Linux

010 Editor

Hex editor with binary templates.

Open ->

Managed + mobile

Free Windows

dnSpyEx

.NET decompiler and debugger.

Open ->

Free Windows, macOS, Linux

JADX

Android DEX decompiler and viewer.

Open ->

Free Web

MobSF

Mobile app static + dynamic analysis.

Open ->

Paid Windows, macOS, Linux

JEB Decompiler

Commercial decompiler for mobile RE.

Open ->

Web + red team

Free Cross-platform

Nmap

Port scanning and service fingerprinting.

Open ->

Freemium Windows, macOS, Linux

Burp Suite

Web proxy, repeater, and scanner.

Open ->

Free Cross-platform

OWASP ZAP

Open source web proxy and scanner.

Open ->

Free CLI

ffuf

Fast content discovery and fuzzing.

Open ->

---

Software

>

Lab foundation

Pick a hypervisor + base OS + one analysis VM.

Foundation

Freemium Windows, Linux

VMware Workstation

Reliable desktop virtualization.

Open ->

Free Windows, macOS, Linux

VirtualBox

Free VM host with snapshots.

Open ->

Free Windows

Hyper-V

Built-in Windows hypervisor.

Open ->

Paid Windows

Windows 11

Great for WinDbg, .NET, and tooling.

Open ->

Free Linux

Ubuntu

General-purpose Linux base.

Open ->

Free Windows

FLARE-VM

Malware analysis environment.

Open ->

Free Linux

REMnux

Linux distro for malware analysis.

Open ->

>

Workflow + automation

Keep lab builds reproducible and notes organized.

Workflow

Free Cross-platform

Git

Version control for scripts and notes.

Open ->

Free Windows, macOS, Linux

VS Code

Lightweight editor with great tooling.

Open ->

Freemium Windows, macOS, Linux

Docker Desktop

Container runtime for labs and tooling.

Open ->

Free Cross-platform

Vagrant

Repeatable VM builds for labs.

Open ->

Freemium Windows, macOS, Linux

Obsidian

Local markdown notes and graphs.

Open ->

---

Learning resources

>

Learning resources

Small, high-signal picks to avoid overwhelm.

Start here

Free Framework

MITRE ATT&CK

Tactics, techniques, and detection ideas.

Open ->

Free Web labs

PortSwigger Web Security Academy

Hands-on labs for web testing and Burp skills.

Open ->

Free Courses

OpenSecurityTraining2

Deep-dive RE, OS, and low-level training.

Open ->

Free Labs

pwn.college

Interactive binary exploitation and RE exercises.

Open ->

Freemium Paths

TryHackMe

Guided learning tracks for red team basics.

Open ->

>

Practice targets

Intentionally vulnerable apps and labs.

Safe targets

Free Web app

OWASP Juice Shop

Intentionally vulnerable web app.

Open ->

Free Web app

DVWA

Damn Vulnerable Web App.

Open ->

Free VM

Metasploitable

Classic intentionally vulnerable VM.

Open ->

Freemium Platform

Hack The Box

Guided labs and challenge boxes.

Open ->

---

Suggested starter packs

>

Starter pack downloads

Swap in your preferred links once the zips are ready.

Downloads

Downloadable bundles you can swap out as your lab grows. Point the links to MediaFire, Dropbox, or Drive once you have the zips ready.

Pack ZIP download

Starter Pack: Core Tools

Foundational RE + red team tooling for a clean lab baseline.

toolsbaselinevm-ready

Open ->

Pack ZIP download

Starter Pack: Books + References

Curated PDFs, cheatsheets, and reference docs for quick lookup.

booksreferencescheatsheets

Open ->

Pack ZIP download

Starter Pack: Videos + Lessons

Playlists, labs, and step-by-step lessons for the lab track.

videoslessonslabs

Open ->

---

Hardware + lab interfaces

>

Bench + field gear

Interfaces, probes, and RF tools.

Hardware

Paid USB

Saleae Logic Analyzer

Reliable digital capture and protocol decode.

Open ->

Free USB

Bus Pirate

Open hardware multi-protocol tool.

Open ->

Paid JTAG/SWD

SEGGER J-Link

High-quality debug probe.

Open ->

Paid RF

RTL-SDR

Low-cost software defined radio.

Open ->

Paid RFID

Proxmark3

RFID/NFC research platform.

Open ->

---

Hygiene rules that save you pain