diff --git a/Sectraining/links.md b/Sectraining/links.md
new file mode 100644
index 0000000..086b6db
--- /dev/null
+++ b/Sectraining/links.md
@@ -0,0 +1,25 @@
+All provided links
+| name | url |
+|---|---|  
+|securelab knowledgebase | https://knowledge-base.secureflag.com/ |
+| standard malware strings |  https://www.eicar.org/download-anti-malware-testfile/ |
+| OKTA security fundamentals|  https://auth0.com/docs/get-started/identity-fundamentals/authentication-and-authorization |
+| ZAP tool | https://www.zaproxy.org/|
+| How to intercept HTTP requests and responses using Burp Suite |  https://youtu.be/ouDe5sJ_uC8|
+| Burpsuite Basics |  https://youtu.be/G3hpAeoZ4ek|
+| XML external entities | https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/XML_External_Entity_Prevention_Cheat_Sheet.md|
+| BURP tool  https://portswigger.net/burp/communitydownload|
+| vulnerable demo apps | https://hub.docker.com/r/blabla1337/owasp-skf-lab/tags?page=1&name=java|
+| ING security academy | https://academy.ing.net/learn/security-blue/academy/tools/README#3|
+| ING security academy exam | https://academy.ing.net/learn/security-blue/4/academy/exam/README#2|
+| all CVE's | https://www.cve.org/About/Overview|
+| vuln severitycalculator | https://www.first.org/cvss/calculator/3.0|
+| mitre | https://cwe.mitre.org/|
+| IBM X-Force Exchange |  https://exchange.xforce.ibmcloud.com/|
+| SSRF video | https://www.youtube.com/watch?v=ih5R_c16bKc|
+| CSRF video | https://www.youtube.com/watch?v=7bTNMSqCMI0|
+| exploits | https://www.exploit-db.com/|
+| https://book.hacktricks.xyz/welcome/readme|
+| sonar | https://rules.sonarsource.com/|
+| packet storm security | https://packetstormsecurity.com/|
+| sec news| https://thehackernews.com/|