Phishing 101 using SocialFish Tool

Phishing is a classic favorite attack of hackers. Not only that it provides easy access…

Read more

Tplmap – Open Source Tool to Scan For Server Side Template Injection...

Tplmap is a python tool that can find code injection and Server Side Templates Injection…

Read more

Uniscan – Web Application Penetration Testing Tool

Uniscan is an open source tool capable of scanning web applications for critical vulnerabilities, such…

Read more

InfoG v1.0 – An Open Source Information Gathering Tool

Note that InfoG 1 is now deprecated, use version 2 instead: https://github.com/Tech-Sec/InfoG.git InfoG is a Shellscript…

Read more

Brosec – An Open Source Interactive Tool to Utilize Payloads and Commands

Brosec is an open source terminal based tool to help all the security professionals generate…

Read more

NoSQLMap – Open Source Audit and Attack NoSQL Databases

NoSQLMap is an open source python based tool, designed to audit and automate injection attacks…

Read more

XSStrike – XSS Detection and Exploitation Suite

XSStrike is an open source tool that detects Cross Site Scripting vulnerabilities and exploits them. …

Read more

How to Launch a Kali GUI using WSL2

Anyone here tired of dual booting to get into your Kali machine? Or configuring VMware…

Read more

Dalfox – An Automated XSS Finder

Dalfox is a fast, powerful parameter analysis and XSS scanner based on a DOM parser.…

Read more

Sitadel – An Open Source Tool for Finding Web Application Vulnerabilities

Sitadel is a python based web application scanner. It’s flexible and has many different scanning…

Read more

Harvest Subdomains with DNSHarvester

We’re back again with another banger from Dan Miessler so if you liked the post…

Read more

Sqlmap – Free Tool for SQL Injection Discovery And Exploitation

Sqlmap is an open source tool used to test the SQL injection vulnerabilities within web…

Read more

Latest Cyber Security News | Network Security Hacking

Palo Alto’s GlobalProtect Authentication Bypass Was Exploited Four Days After Disclosure

by Rebecca Sutton

CVE-2026-0257’s GlobalProtect authentication bypass went from advisory to active exploitation in four days. The recurring …

by Rebecca Sutton

Apple Silicon Is Not a Safe Harbor From Spectre-Class Attacks

by Rebecca Sutton

Atomic Arch: 400+ AUR Packages Backdoored with eBPF Rootkit and Credential Stealer

by Rebecca Sutton

Check Point VPN Authentication Bypass (CVE-2026-50751): Client-Controlled IKEv1 Auth Flipped by Ransomware Affiliate

by Rebecca Sutton

RaccoonLine Publishes Analysis of VPN Data Disclosure Risks and the Shift Toward Decentralized Routing

by CyberNewswire

Free Hacking Tools

BruteDum- A network attack bruteforce tool

by Tyler Loftus

I found a doozie here ladies and gentlemen, with a little python script called BruteDum.  …

by Tyler Loftus

MHDDoS – A DDoS Attack Script With Over 50 Different Methods

by Tyler Loftus

A Review of DNS Enumeration Tool: DNSEnum

by Tyler Loftus

Harvest Subdomains with DNSHarvester

by Tyler Loftus

Capture the Flag

DC: 2 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Hello Community! We have just completed first vulnhub machine of DC series by DCAU in …

by Unallocated Author

DC: 1 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Mr-Robot Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Rickdiculously – A CTF Designed for Rick And Morty Fans

by Unallocated Author

Did you know ?

How Ransomware Works: Encryption Is the Least of Your Problems

by Rebecca Sutton

Ransomware still encrypts files with a hybrid AES/RSA scheme, but the data theft and backup …

by Rebecca Sutton

Why Credential and Session Exposure Monitoring Should Be a Baseline Security Practice

by Mic Johnson

AI Coding Agents Are Redefining Cyber Risk — Is Your Exposure Strategy Ready?

by Mic Johnson

How to Develop a Risk Management Framework

by Mic Johnson

The Supply Chain Is the New Battlefield: How One Weak Link Compromises Entire Ecosystems

by Mic Johnson

Latest Hacking News