Joomscan – Open Source Joomla Vulnerability Scanner

Joomscan is a scanner by OWASP, which aims to automate the task for vulnerability assessments…

Read more

Brakeman – A Code Security Auditing Tool for Ruby

What is a Brakeman? in the 1800s a brakeman was a rail worker responsible for…

Read more

Commix – The OS Command Injection and Exploitation Tool

Commix is a command injection exploitation tool used for testing command injection vulnerabilities in web…

Read more

Evilginx – The Free Advanced Phishing Attack Framework

Evilginx is framework that is able to steal user credentials through a man in the…

Read more

Blackeye – A Free Phishing Tool

So what is this phishing tool all about? Blackeye is tool scripted in shell to…

Read more

Harvest Subdomains with DNSHarvester

We’re back again with another banger from Dan Miessler so if you liked the post…

Read more

SniffAir – An Open Source Wireless Security Framework

SniffAir is an open source tool made for sophisticated wireless attacks and data capture, it…

Read more

Winpayloads – An Open Source Tool for Generating Windows Payloads

Winpayloads is a python based tool which combines some of the Powershell Empire features along…

Read more

Droopescan – CMS Based Web Applications Scanner

Droopescan is a python based scanner that is used to scan the web applications that…

Read more

Tulpar – An Open Source Web Application Vulnerability Scanner

Tulpar is an open source penetration testing tool that can find web application vulnerabilities such…

Read more

Impersonate Local Microsoft Users with msImpersonate

What is msImpersonate? What’s up nerds! Captain AMayorica hooked us up again with another Microsoft…

Read more

Blazy – Open Source Modern Login Brute-forcer

I know what you are thinking, bruteforce doesn’t work anymore in many cases. However, Blazy…

Read more

Latest Cyber Security News | Network Security Hacking

Cisco Unified CM SSRF Flaw Is Being Exploited to Drop Webshells

by Rebecca Sutton

CVE-2026-20230, an SSRF in Cisco Unified CM’s WebDialer component, is being actively exploited via Tor …

by Rebecca Sutton

PostCSS npm Typosquat: How to Check If Your Machine Is Compromised

by Rebecca Sutton

SonicWall CVE-2024-40766 Proves Patching Is Not Remediation

by Rebecca Sutton

usbliter8 Exploit Achieves Code Execution in Apple’s Unpatchable SecureROM

by Rebecca Sutton

The ASLR Caveat on NGINX’s Critical HTTP/3 Flaw Changes Nothing About Urgency

by Rebecca Sutton

Free Hacking Tools

BruteDum- A network attack bruteforce tool

by Tyler Loftus

I found a doozie here ladies and gentlemen, with a little python script called BruteDum.  …

by Tyler Loftus

MHDDoS – A DDoS Attack Script With Over 50 Different Methods

by Tyler Loftus

A Review of DNS Enumeration Tool: DNSEnum

by Tyler Loftus

Harvest Subdomains with DNSHarvester

by Tyler Loftus

Capture the Flag

DC: 2 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Hello Community! We have just completed first vulnhub machine of DC series by DCAU in …

by Unallocated Author

DC: 1 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Mr-Robot Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Rickdiculously – A CTF Designed for Rick And Morty Fans

by Unallocated Author

Did you know ?

VPN Internals Explained: Protocols, Leaks, and What the Kill Switch Actually Does

by Rebecca Sutton

A technical breakdown of how a VPN works: packet handling, protocol comparisons, DNS and WebRTC …

by Rebecca Sutton

SQL Injection: Why It Persists and How to Prevent It

by Rebecca Sutton

Virus vs Worm: Why the Propagation Difference Actually Matters

by Rebecca Sutton

Man in the Middle Attack: Techniques, Real Examples, and Defences

by Rebecca Sutton

How to Detect a Keylogger on Your System

by Rebecca Sutton

Latest Hacking News