- http://omercitak.com/
- https://ferruh.mavituna.com/
- http://php.net/
- https://www.reddit.com/r/lolphp/
- http://stackoverflow.com/
- https://addons.mozilla.org/en-US/firefox/addon/hackbar/
- http://d3adend.org/blog/
- http://www.dvwa.co.uk/
- https://ringzer0team.com/
- https://pentesterlab.com/exercises/web_for_pentester
- http://pentestmonkey.net/
- https://www.vulnhub.com/
- https://www.netsparker.com.tr/blog/
- http://overthewire.org/wargames/ --online ctf
- https://pentesterlab.com/exercises/web_for_pentester_II/
- http://www.itsecgames.com/
- http://d3adend.org/xss/ghettoBypass xss payloads
- https://www.exploit-db.com/papers/17934/
- http://ha.cker.io/
- https://www.mertsarica.com/
- http://onuryilmaz.info/
- https://www.reddit.com/r/lolphp/
- https://www.klavyedelikanlilari.com/