### Online Courses
1. **Cybrary**:
- Provides a number of courses on ethical hacking, pen testing, and more.
- Options to take courses for free or for a fee.
2. **Coursera**:
- Courses include, but are not limited to, "Cybersecurity Specialization" by the University of Maryland and "Introduction to Cyber Security" by NYU.
- Usually contain hands-on labs.
3. **Udemy**:
- Variability of courses exist on ethical hacking and penetration testing; several include hands-on exercises.
- Highly rated courses with practical, real-world projects should be researched.
4. **edX**:
- "Cybersecurity Fundamentals" by Rochester Institute of Technology.
- Provides verified certificates upon payment.
### Books
1. **Dafydd Stuttard and Marcus Pinto, "The Web Application Hacker's Handbook"**:
- The book is a reference for performing web application security testing.
Focuses on using Metasploit for penetrating testing.
### YouTube Channels
1. **Hak5**:
- Range from a wide array of hacking and cyber security-related topics, but the focus is to practically demonstrate many different types of hacks.
2. **The Cyber Mentor**:
- Tutorials about ethical hacking tools, techniques, and preparation for certification.
3. **NetworkChuck**:
- Makes videos related to ethical hacking basics among other wide IT-related topics.
### Practice Platforms
1. **Hack The Box**:
- Legal platform to practice Ethical Hacking in real-time
2. **TryHackMe**:
* Provides hands-on labs, followed by guided scenarios to deepen the understanding of Ethical Hacking and Cybersecurity concepts.
3. **OverTheWire**:
* Games to learn and practice security concepts through challenges.
### Certification
1. **Certified Ethical Hacker (CEH):
- An advanced certification covering all sorts of hacking techniques and methodologies.
2. **Offensive Security Certified Professional (OSCP)**:
- A more profound certification that targets higher levels of practical skills for a penetration tester.
3. **CompTIA PenTest+**:
- Covers specific areas like penetration testing, vulnerability assessment, and management.
### Blogs and Websites
1. **OWASP**:
- Comprehensive resources on web application security: top vulnerabilities and testing guidelines.
2. **Krebs on Security**:
- A blog by journalist Brian Krebs about security news and trends.
3. **HackerOne**:
- This is an ethical hacker community with resources, blogs, and vulnerability disclosure programs.
### Additional Tips
- **Join forums and communities**: Joining various forums and online communities such as those found on Reddit-eg r/netsec and r/hacking-end will also be valuable for networking and sharing information.
- **Keep yourself updated**: Cybersecurity is continuously developing, so you need to keep yourself updated about recent trends and vulnerabilities.
These resources will provide you with a very firm foundation in the field of Ethical Hacking. Start off with the basics and then make your way up to the advanced topics and hands-on practices!
