Getallurls (gau) fetches known URLs from AlienVault’s, the Wayback Machine, and Common Crawl for any…
Reconnaissance is one of the first steps to conduct within a pen test engagement. During…
Dalfox is a fast, powerful parameter analysis and XSS scanner based on a DOM parser.…
MassBleed is an open source tool used for scanning SSL vulnerabilities in web applications. The…
BeRoot is a post-exploitation tool to check for common misconfigurations which can allow an attacker…
Zarp is a powerful tool used for scanning and attacking networks. The tool is capable…
Got a huge list of targets that you’d like to enumerate but can’t really visit…
Webvulnscan is a web application scanner that automates vulnerability assessment tasks. The tool can automatically…
Bloodhound is an open source application used for analyzing security of active directory domains. The…
Back again with more DNS enumeration tools. This one has been around for quite some…
Wapiti is an open source tool that scans web applications for multiple vulnerabilities including data…
W3af is a GUI based framework that helps in auditing and identifying vulnerabilities in web…
A three-CVE chain lets any default LiteLLM user escalate to admin and get a shell …
I found a doozie here ladies and gentlemen, with a little python script called BruteDum. …
Hello Community! We have just completed first vulnhub machine of DC series by DCAU in …
A reverse shell makes the target machine initiate the connection back to the attacker, bypassing …
The Canadian Government of Nunavut (GN)) has recently disclosed a ransomware attack on its IT …
Continuing the new normal of fixing things after major security breaches, Facebook has once again …
