Blazy – Open Source Modern Login Brute-forcer

I know what you are thinking, bruteforce doesn’t work anymore in many cases. However, Blazy…

Read more

Just Scan It with JFScan

What is JFScan? JFScan is a great enumeration tool  created by nullt3r written mainly in…

Read more

RapidScan – Free Web Vulnerability Scanner Framework

RapidScan is a python based scanning tool used for analyzing vulnerabilities in web applications. The…

Read more

Evilgrade – MITM Attack Framework to Exploit Machines

Evilgrade is a modular framework that takes over target machines by injecting fake updates in…

Read more

XSStrike – XSS Detection and Exploitation Suite

XSStrike is an open source tool that detects Cross Site Scripting vulnerabilities and exploits them. …

Read more

Joomscan – Open Source Joomla Vulnerability Scanner

Joomscan is a scanner by OWASP, which aims to automate the task for vulnerability assessments…

Read more

Avet – Open Source Tool for Anti-Virus Evasion

Many times when you want to perform an exploitation to a windows target, you need…

Read more

CMSeek – CMS Detection and Information Gathering

CMSeek is a python tool that is used to detect Content Management System (CMS) within…

Read more

BadKarma – Network Reconnaissance Tool with Advanced Features

BadKarma is a GUI based network reconnaissance tool that can gather useful network information at…

Read more

Facebook Account Bruteforcer

Protect your Facebook Password Found this one while I was on Safari. Its a pretty…

Read more

Routersploit – A Free Framework for Exploiting Embedded Devices

Routersploit is an open source framework used for exploiting vulnerabilities in embedded devices like routers.…

Read more

Harvest Subdomains with DNSHarvester

We’re back again with another banger from Dan Miessler so if you liked the post…

Read more

Latest Cyber Security News | Network Security Hacking

The ASLR Caveat on NGINX’s Critical HTTP/3 Flaw Changes Nothing About Urgency

by Rebecca Sutton

CVE-2026-42530, the NGINX HTTP/3 vulnerability rated CVSS 9.2, is collecting dismissals because exploitation requires ASLR …

by Rebecca Sutton

CVE-2026-48907: How the Joomla JCE Exploit Works and What to Do About It

by Rebecca Sutton

SpyCloud Report Finds Phishing Attacks Surge as Employee Data Is Exposed at 86% of Fortune 100 Companies

by CyberNewswire

Heimdal Survey: Executives Four Times More Confident About AI Risk Than the Teams Managing It

by CyberNewswire

How CVE-2026-20253 Turns Splunk’s PostgreSQL Sidecar Into an Open Door

by Rebecca Sutton

Free Hacking Tools

BruteDum- A network attack bruteforce tool

by Tyler Loftus

I found a doozie here ladies and gentlemen, with a little python script called BruteDum.  …

by Tyler Loftus

MHDDoS – A DDoS Attack Script With Over 50 Different Methods

by Tyler Loftus

A Review of DNS Enumeration Tool: DNSEnum

by Tyler Loftus

Harvest Subdomains with DNSHarvester

by Tyler Loftus

Capture the Flag

DC: 2 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Hello Community! We have just completed first vulnhub machine of DC series by DCAU in …

by Unallocated Author

DC: 1 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Mr-Robot Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Rickdiculously – A CTF Designed for Rick And Morty Fans

by Unallocated Author

Did you know ?

Privilege Escalation: The Step Between Foothold and Full Compromise

by Rebecca Sutton

Privilege escalation is the pivot point in almost every serious intrusion. This guide explains where …

by Rebecca Sutton

Nmap for Beginners: Understanding Scans Before You Run Them

by Rebecca Sutton

Reverse Shell Explained: Setup, Attack Chain, and Detection

by Rebecca Sutton

How Ransomware Works: Encryption Is the Least of Your Problems

by Rebecca Sutton

Why Credential and Session Exposure Monitoring Should Be a Baseline Security Practice

by Mic Johnson

Latest Hacking News