1earn

1earn is a knowledge base for information security, maintained in Chinese by a team called ffffffff0x. The repository is a large collection of notes, guides, checklists, and writeups organized into categories covering both offensive and defensive security topics, as well as general development notes.

On the defensive side, the repository includes material on log analysis, system hardening, forensic investigation (covering disk, memory, and file analysis), incident response procedures, and the setup of monitoring and honeypot infrastructure. On the offensive side, it covers web vulnerabilities and exploitation payloads, post-exploitation techniques such as privilege escalation and persistence, bypassing security devices, protocol-level attacks, and red team methodology.

Specific topic areas include industrial control system (ICS) security with notes on protocols like S7comm and PLC attack techniques, IoT and firmware security, Android mobile security, cloud security for major providers, Windows and Linux exploitation, and CTF (Capture the Flag) competition writeups. The repository links to write-through solutions for popular CTF challenge platforms like HackTheBox and VulnHub to help learners practice.

There is also a development section with notes on version control using Git, web development, databases, regular expressions, and data visualization.

The README frames this as a personal knowledge-sharing project, with a disclaimer that errors are possible given the scope and the maintainer's own skill limits. It encourages readers to file issues for any mistakes or suggestions. A roadmap document is provided for beginners who want a structured path through the material.

The content is licensed under CC BY-NC-SA 4.0, meaning it can be shared and adapted for non-commercial purposes with attribution.