A critical flaw in Gitea’s official Docker image let anyone impersonate an admin with one …
Sucuri researchers warned that the “code.wordprssapi.com” website was recently used to steal WordPress cookies and …
What is a Browser in the Browser attack What’s up nerds! Mr.D0x has yet another…
CMSeek is a python tool that is used to detect Content Management System (CMS) within…
RapidScan is a python based scanning tool used for analyzing vulnerabilities in web applications. The…
Get ready to git this cloned as soon as possible, MHDDoS. This Distributed Denial of…
Commix is a command injection exploitation tool used for testing command injection vulnerabilities in web…
So what is this subfinder tool all about? Subfinder is a subdomain discovery tool that…
I know what you are thinking, bruteforce doesn’t work anymore in many cases. However, Blazy…
So you have been tasked with performing a penetration test of the internet-facing systems of…
Turbolist3r is a subdomain enumeration tool which can identify subdomain takeovers. It is heavily based…
Sitadel is a python based web application scanner. It’s flexible and has many different scanning…
Today I have a tool that exploits insecure file shares and allows penetration testers to…
Zarp is a powerful tool used for scanning and attacking networks. The tool is capable…
A critical flaw in Gitea’s official Docker image let anyone impersonate an admin with one …
I found a doozie here ladies and gentlemen, with a little python script called BruteDum. …
Hello Community! We have just completed first vulnhub machine of DC series by DCAU in …
A practitioner’s breakdown of the CSRF attack: how the forged request works, two documented exploits, …
Sucuri researchers warned that the “code.wordprssapi.com” website was recently used to steal WordPress cookies and …
Roee Hay of Aleph Research (security researcher) has discovered new trivial flaws on OnePlus devices …
