Ethical Hacking – Additional Resources

Welcome to the home of FREE and PAID Ethical Hacking Additional Resources!

The Toolshed!


Kali Linux
This Debian-based Linux Distro is the X Hat’s Dream! Chock full of tools for hacking delights. For example, Kali Linux has the Metasploit framework installed and ready to rock.

This is an advanced hacker framework. It has the latest scanning and exploits with predefined settings and databases. This is often considered the premier pentester framework. This is pre-built into Kali Linux – helping to make that distro so popular.

Reconnaissance/Scanning Tools


dig – Linux OS – DNS lookups

A powerful script for DNS enumeration

host – Linux OS – DNS operations

Handy for ping sweeps; built right in to Kali



This is a port scanner with many of the same features as nmap

This is very similar to fping, but offers a GUI as it is Windows-based

“Zenmap is the official Nmap Security Scanner GUI. It is a multi-platform free and open-source application that aims to make Nmap easy for beginners to use while providing advanced features for experienced Nmap users. Frequently used scans can be saved as profiles to make them easy to run repeatedly. A command creator allows the interactive creation of Nmap command lines. Scan results can be saved and viewed later. Saved scan results can be compared with one another to see how they differ. The results of recent scans are stored in a searchable database.

Multi-platform DNS tool


USA Jobs

Vulnerability Resources

Microsoft Security Response Center

Security Focus


National Vulnerability Database


Exploit Database

Dark Reading

Security Magazine

Common Vulnerability Scoring System

Common Vulnerabilities and Exposures

Security Models

Biba biba75.pdf (

Bell-La Pedula ModelBell.pdf (

Clark-Wilson06.pdf (

State MachineSecurity Architecture and Design/Security Models