Turbolist3r – An Automated Subdomain Scanning Tool

Turbolist3r is a subdomain enumeration tool which can identify subdomain takeovers. It is heavily based…

Read more

Nmap Automator – a tool I used during OSCP for simple recon

Nmap Automator is a great tool for initial port scans of a given ip address.…

Read more

Knock – Open Source Subdomain Scanner Tool

Knock is a python based tool for enumerating subdomains on a targeted domain. You can…

Read more

Galileo – Open Source Web Application Auditing Framework

Galileo is a free web application auditing framework that can perform various penetration testing tasks,…

Read more

Commix – The OS Command Injection and Exploitation Tool

Commix is a command injection exploitation tool used for testing command injection vulnerabilities in web…

Read more

Net Creds – Open Source Tool to Sniff Network Passwords and Hashes

Net Creds is a free tool that sniffs passwords and hashes from a network interface.…

Read more

BoomER | An Open Source Post-Exploitation Tool To Exploit Local Vulnerabilities

BoomER is a Command-line interface python open-source framework fully developed in Python 3.X for post-exploitation…

Read more

Altair – An Open Source Modular Web Vulnerability Scanner

Altair is a Python tool that can be used to scan for web related vulnerabilities,…

Read more

Nuclei- A Fast and Customizable Vulnerability Scanner

Nuclei is a tool that is used to send requests across the given target based…

Read more

Wapiti – The Black Box Vulnerability Scanner for Web Applications

Wapiti is an open source tool that scans web applications for multiple vulnerabilities including data…

Read more

Tulpar – An Open Source Web Application Vulnerability Scanner

Tulpar is an open source penetration testing tool that can find web application vulnerabilities such…

Read more

XAttacker Tool – Scan and Auto Exploit Web Vulnerabilities

XAttacker is a perl tool capable of scanning and auto-exploiting vulnerabilities in web applications. By…

Read more

Latest Cyber Security News | Network Security Hacking

libssh2 CVE-2026-55200 Shows Why Outbound SSH Is an Attack Surface

by Rebecca Sutton

The critical libssh2 CVE-2026-55200 flaw inverts SSH security: the remote server attacks the connecting client, …

by Rebecca Sutton

DirtyClone Is the Fourth ‘Dirty’ Linux Kernel Exploit in Six Weeks

by Rebecca Sutton

GPT-5.6 Sol’s Launch: METR’s Evaluation Gaming Finding Matters More Than the Restrictions

by Rebecca Sutton

Gaslight macOS Malware Is a Warning Shot at the AI Security Stack

by Rebecca Sutton

Cisco Unified CM SSRF Flaw Is Being Exploited to Drop Webshells

by Rebecca Sutton

Free Hacking Tools

BruteDum- A network attack bruteforce tool

by Tyler Loftus

I found a doozie here ladies and gentlemen, with a little python script called BruteDum.  …

by Tyler Loftus

MHDDoS – A DDoS Attack Script With Over 50 Different Methods

by Tyler Loftus

A Review of DNS Enumeration Tool: DNSEnum

by Tyler Loftus

Harvest Subdomains with DNSHarvester

by Tyler Loftus

Capture the Flag

DC: 2 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Hello Community! We have just completed first vulnhub machine of DC series by DCAU in …

by Unallocated Author

DC: 1 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Mr-Robot Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Rickdiculously – A CTF Designed for Rick And Morty Fans

by Unallocated Author

Did you know ?

Programming Languages for Cyber Security: What the Tools Actually Use

by Rebecca Sutton

Security tooling is not written in a single language. Python powers most automation. C sits …

by Rebecca Sutton

What Is a Buffer Overflow? The Bug That Keeps Driving Critical CVEs

by Rebecca Sutton

Linux Server Hardening: What to Do First and Why It Matters

by Rebecca Sutton

VPN Internals Explained: Protocols, Leaks, and What the Kill Switch Actually Does

by Rebecca Sutton

SQL Injection: Why It Persists and How to Prevent It

by Rebecca Sutton

Latest Hacking News