All provided links
| name | url |
|---|---|  
| secureflag knowledgebase | https://knowledge-base.secureflag.com/ |
| standard malware strings |  https://www.eicar.org/download-anti-malware-testfile/ |
| OKTA security fundamentals|  https://auth0.com/docs/get-started/identity-fundamentals/authentication-and-authorization |
| ZAP tool | https://www.zaproxy.org/|
| using Burp Suite |  https://youtu.be/ouDe5sJ_uC8|
| Burpsuite Basics |  https://youtu.be/G3hpAeoZ4ek|
| XML external entities | https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/XML_External_Entity_Prevention_Cheat_Sheet.md|
| BURP tool | https://portswigger.net/burp/communitydownload|
| vulnerable demo apps | https://hub.docker.com/r/blabla1337/owasp-skf-lab/tags?page=1&name=java|
| ING security academy | https://academy.ing.net/learn/security-blue/academy/tools/README#3|
| ING security academy exam | https://academy.ing.net/learn/security-blue/4/academy/exam/README#2|
| all CVE's | https://www.cve.org/About/Overview|
| vuln severitycalculator | https://www.first.org/cvss/calculator/3.0|
| mitre | https://cwe.mitre.org/|
| IBM X-Force Exchange |  https://exchange.xforce.ibmcloud.com/|
| SSRF video | https://www.youtube.com/watch?v=ih5R_c16bKc|
| CSRF video | https://www.youtube.com/watch?v=7bTNMSqCMI0|
| exploits | https://www.exploit-db.com/|
| hacktricks | https://book.hacktricks.xyz/welcome/readme|
| sonar | https://rules.sonarsource.com/|
| packet storm security | https://packetstormsecurity.com/|
| sec news| https://thehackernews.com/|