Empire – Open Source Post-Exploitation Agent Tool

Empire is regarded as one of the most useful frameworks by many penetration testers. It…

Read more

gau (GetAllUrls) Review – A Tool For Discovering URL’s

Getallurls (gau) fetches known URLs from AlienVault’s, the Wayback Machine, and Common Crawl for any…

Read more

Habu – Open Source Network Penetration Testing Toolkit

Habu is an open source penetration testing toolkit that can perform various penetration testing tasks…

Read more

WiFiDuck BadUSB Tester

I found this one while doings some research on BadUSBs and thought it would be…

Read more

Turbolist3r – An Automated Subdomain Scanning Tool

Turbolist3r is a subdomain enumeration tool which can identify subdomain takeovers. It is heavily based…

Read more

BoomER | An Open Source Post-Exploitation Tool To Exploit Local Vulnerabilities

BoomER is a Command-line interface python open-source framework fully developed in Python 3.X for post-exploitation…

Read more

BeRoot – A Post Exploitation Privilege Escalation Tool

BeRoot is a post-exploitation tool to check for common misconfigurations which can allow an attacker…

Read more

Harvest Subdomains with DNSHarvester

We’re back again with another banger from Dan Miessler so if you liked the post…

Read more

mitmAP – An Open Source Tool to Create a Fake Access Point...

The Evil Access Point (AP) attack has been around for a long time. There are…

Read more

Ffuf (Fuzz Faster U Fool) – An Open Source Fast Web Fuzzing...

Ffuf – Fuzz Faster U Fool is a great tool used for fuzzing. It has…

Read more

W3af – Web Application Attack and Audit Framework

W3af is a GUI based framework that helps in auditing and identifying vulnerabilities in web…

Read more

Airgeddon – A Swiss Army WiFi Hacking Tool

Today LHN have been looking at Airgeddon, on initial inspection it seems to be a…

Read more

Latest Cyber Security News | Network Security Hacking

Cisco Unified CM SSRF Flaw Is Being Exploited to Drop Webshells

by Rebecca Sutton

CVE-2026-20230, an SSRF in Cisco Unified CM’s WebDialer component, is being actively exploited via Tor …

by Rebecca Sutton

PostCSS npm Typosquat: How to Check If Your Machine Is Compromised

by Rebecca Sutton

SonicWall CVE-2024-40766 Proves Patching Is Not Remediation

by Rebecca Sutton

usbliter8 Exploit Achieves Code Execution in Apple’s Unpatchable SecureROM

by Rebecca Sutton

The ASLR Caveat on NGINX’s Critical HTTP/3 Flaw Changes Nothing About Urgency

by Rebecca Sutton

Free Hacking Tools

BruteDum- A network attack bruteforce tool

by Tyler Loftus

I found a doozie here ladies and gentlemen, with a little python script called BruteDum.  …

by Tyler Loftus

MHDDoS – A DDoS Attack Script With Over 50 Different Methods

by Tyler Loftus

A Review of DNS Enumeration Tool: DNSEnum

by Tyler Loftus

Harvest Subdomains with DNSHarvester

by Tyler Loftus

Capture the Flag

DC: 2 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Hello Community! We have just completed first vulnhub machine of DC series by DCAU in …

by Unallocated Author

DC: 1 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Mr-Robot Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Rickdiculously – A CTF Designed for Rick And Morty Fans

by Unallocated Author

Did you know ?

VPN Internals Explained: Protocols, Leaks, and What the Kill Switch Actually Does

by Rebecca Sutton

A technical breakdown of how a VPN works: packet handling, protocol comparisons, DNS and WebRTC …

by Rebecca Sutton

SQL Injection: Why It Persists and How to Prevent It

by Rebecca Sutton

Virus vs Worm: Why the Propagation Difference Actually Matters

by Rebecca Sutton

Man in the Middle Attack: Techniques, Real Examples, and Defences

by Rebecca Sutton

How to Detect a Keylogger on Your System

by Rebecca Sutton

Latest Hacking News