CISA added CVE-2026-48939 and CVE-2026-56291 to its Known Exploited Vulnerabilities catalog after automated attackers exploited …
A proof of concept to bypass the Google’s reCaptcha V2 verification system was posted online …
The Evil Access Point (AP) attack has been around for a long time. There are…
BeRoot is a post-exploitation tool to check for common misconfigurations which can allow an attacker…
Routersploit is an open source framework used for exploiting vulnerabilities in embedded devices like routers.…
I found this one while doings some research on BadUSBs and thought it would be…
What is msImpersonate? What’s up nerds! Captain AMayorica hooked us up again with another Microsoft…
Webvulnscan is a web application scanner that automates vulnerability assessment tasks. The tool can automatically…
MassBleed is an open source tool used for scanning SSL vulnerabilities in web applications. The…
XSStrike is an open source tool that detects Cross Site Scripting vulnerabilities and exploits them. …
Leviathan is an open source toolkit that can be used for auditing networks and web…
Webpwn3r is a powerful scanning tool, written in Python, to detect remote command execution vulnerabilities,…
Today I have a tool that exploits insecure file shares and allows penetration testers to…
Back again with more DNS enumeration tools. This one has been around for quite some…
CISA added CVE-2026-48939 and CVE-2026-56291 to its Known Exploited Vulnerabilities catalog after automated attackers exploited …
I found a doozie here ladies and gentlemen, with a little python script called BruteDum. …
Hello Community! We have just completed first vulnhub machine of DC series by DCAU in …
A technical walkthrough of the kerberoasting attack: the Kerberos quirk it abuses, RC4 vs AES, …
A proof of concept to bypass the Google’s reCaptcha V2 verification system was posted online …
A new version of Dridex banking malware was detected and it is targeting European banks and …
