SECURITY SITES

http://www.infosyssec.org Security portal
http://www.phrack.org Security zine
http://www.securityfocus.com Security portal
http://www.securitynewsportal.com
http://archives.neohapsis.com/archives/bugtraq/ Bugtraq archive
http://www.securitytracker.com Security portal
http://www.windowsecurity.com The name says it all
http://www.linuxsecurity.com The name says it all
http://www.techweb.com/tech/security/ Security news
http://www.c4i.org Different types of security information
http://www.sans.org/rr/ The SANS Institute reading room
http://www.wirelesscon.com/live/ Wireless networking information
http://www.80211-planet.com Wireless networking information
http://www.netstumbler.com Wireless networking information
http://www.sbq.com The Secure Business Quarterly by @Stake
http://www.owasp.org Information on web application security risks and defenses

Exploit's

http://packetstormsecurity.nl
http://hack.co.za
http://neworder.box.sk
http://pulhas.org/xploits/
http://security.nnov.ru/search/exploits.asp
http://www.wbglinks.net
http://www.rootkit.com
http://s0ftpj.org/en/site.html
http://rootshell.redi.tk
http://astalavista.com
http://www.hackersplayground.org
http://www.foundstone.com
http://lsd-pl.net

LISTS FOR BRUTE-FORCING

http://neworder.box.sk/codebox.links.php?&key=passdict
http://www.cotse.com/tools/wordlists1.htm
http://www.cotse.com/tools/wordlists2.htm
http://www.cotse.com/wordlists/
http://www.mirrors.wiretapped.net/security/host-security/wordlists
http://ftp.cerias.purdue.edu/pub/dict/

DEFAULT PASSWORD LISTS

http://www.mksecure.com/defpw/
http://www.phenoelit.de/dpl/index.html
http://www.securiteam.com/securitynews/5RR080A1TS.html
http://www.cirt.net/cgi-bin/passwd.pl
http://www.astalavista.com/library/auditing/password/lists/

LOOKUP PORT NUMBERS

http://www.neohapsis.com/neolabs/neo-ports/
http://www.cirt.net/cgi-bin/ports.pl
http://www.portsdb.org/

TROJAN HORSES

http://www.pestpatrol.com/Search/query.asp
http://www.simovits.com/trojans/
http://www.commodon.com/threat/threat-ports.htm

SECURITY MAILING LISTS

http://www.securityfocus.com/archive Large listing of top newsletters
http://archives.neohapsis.com Large listing; current and archives
http://www.sans.org/newsletters Various newsletters
http://www.counterpane.com/crypto-gram.html Crypto-Gram newsletter

MISCELLANEOUS INTERESTING ITEMS

http://www.tlproxy.com HTTP and Socks proxies
http://tools.rosinstrument.com/proxy HTTP and Socks proxies
http://tatumweb.com/iptools.htm Huge list of various online network dig tools
http://www.microsoft.com/technet/treeview/default....chnet/security/tools/tools.asp Microsoft security tools and checklists
http://www.robertgraham.com/pubs Several good pieces on firewall/network traffic, sniffing, and intrusion detection
http://browsercheck.qualys.com Online browser security check
http://www.yourwindow.to/security-policies/ Security policy creation and purchase
http://www.riskworld.net/7799.htm ISO 17799/BS7799 compliance assessment tool
http://www.cisco.com/warp/public/474/ Steps to reset Cisco passwords at the consol
http://csrc.nist.gov/ATE/materials.html Security training and awareness material
http://www.tscm.com/threatlvls.html Nice overview of the threats from technical surveillance