# Catatan Seekor: KYUBI

#### Article

* [Design Best Practices for an Authentication System](https://cybersecurity.ieee.org/blog/2016/06/02/design-best-practices-for-an-authentication-system/)
* [GHunt - Investigate Google Accounts with emails.GHunt - Investigate Google Accounts with emails.](https://hakin9.org/ghunt-investigate-google-accounts-with-emails/)
* [OWASP Cheat Sheet](https://cheatsheetseries.owasp.org/index.html)

#### Lab

* [Hack This Site](https://www.hackthissite.org/pages/index/index.php)

#### Tools

* [BeEF](https://sectools.org/tool/beef/)
* [Burp Suite](https://portswigger.net/burp)
* [I can see your local web servers](http://http.jameshfisher.com/2019/05/26/i-can-see-your-local-web-servers/)
* [Metasploit](https://www.metasploit.com)
* [Sn1per](https://github.com/1N3/Sn1per)
* [SQLMAP](http://sqlmap.org)
* [SQL Ninja](http://sqlninja.sourceforge.net)
* [Qark](https://github.com/linkedin/qark)
* [urlscan.io](https://urlscan.io)
* [wapiti-scanner](https://wapiti-scanner.github.io/)

#### Links

* [Mutation XSS in Google Search](https://www.acunetix.com/blog/web-security-zone/mutation-xss-in-google-search/) by Tomasz Nidecki
* [Web Penetration Testing](https://www.hackingarticles.in/web-penetration-testing/) by Rajpal Singh
* [Bincang Cyber](https://bincangcyber.id)
* [GPG Tutorial](https://www.devdungeon.com/content/gpg-tutorial)
* [CVEDetails](https://www.cvedetails.com)