hacker-roadmap

This repository is a learning roadmap for penetration testing — probing software, systems, or networks for security weaknesses in order to fix them — along with a curated catalog of tools, references, and resources for practicing ethical hacking. There is no software to install; the repo is essentially a long, organized index. The README notes that most tools it points to are UNIX-compatible, free, and open source.

The way it works is that the document first walks a reader through the basics: what penetration testing is, the differences between black, grey, and white hat hackers, key vocabulary like infosec, opsec, red team and blue team, and warnings about the legal side — that computer laws differ between countries, that even information gathering can be illegal, and that tools should be practiced on dedicated challenges rather than real targets. From there, it lists tools grouped by category: information gathering, password attacks, wordlists, wireless testing, exploitation tools, sniffing and spoofing, web hacking, post-exploitation, and broader frameworks. A separate "Additional resources" section points to books and manuals, security discussions, security advisories, and capture-the-flag style challenges where readers can practice safely.

You would use this repo when you are new to security and want a structured starting point, or when you are a developer trying to broaden into security and need a discovery map of the major tool categories. The README is explicit that it aims to teach a way of thinking about pen testing, not just provide a tool dump.

Important caveat: the README marks the project as terminated and archived, so content might be outdated.