YAWAST – Open Source Web Application Information Gathering Toolkit

YAWAST is a web application penetration testing toolkit that can perform information gathering and basic…

Read more

BoomER | An Open Source Post-Exploitation Tool To Exploit Local Vulnerabilities

BoomER is a Command-line interface python open-source framework fully developed in Python 3.X for post-exploitation…

Read more

Dalfox – An Automated XSS Finder

Dalfox is a fast, powerful parameter analysis and XSS scanner based on a DOM parser.…

Read more

Wifi Pumpkin – WiFi MITM Attack and Audit Framework

Wifi Pumpkin is a security audit framework used to test the security of wifi against…

Read more

Joomscan – Open Source Joomla Vulnerability Scanner

Joomscan is a scanner by OWASP, which aims to automate the task for vulnerability assessments…

Read more

FinalRecon – An All In One OSINT Tool for Web Reconnaissance

Final Recon is a useful tool for gathering data about a target from open source…

Read more

Just Scan It with JFScan

What is JFScan? JFScan is a great enumeration tool  created by nullt3r written mainly in…

Read more

Golismero – Web Application Vulnerability Scanner

So what is this tool all about? Golismero is an open source framework, used for…

Read more

A Review of DNS Enumeration Tool: DNSEnum

Back again with more DNS enumeration tools. This one has been around for quite some…

Read more

Airgeddon – A Swiss Army WiFi Hacking Tool

Today LHN have been looking at Airgeddon, on initial inspection it seems to be a…

Read more

Brosec – An Open Source Interactive Tool to Utilize Payloads and Commands

Brosec is an open source terminal based tool to help all the security professionals generate…

Read more

InfoG v1.0 – An Open Source Information Gathering Tool

Note that InfoG 1 is now deprecated, use version 2 instead: https://github.com/Tech-Sec/InfoG.git InfoG is a Shellscript…

Read more

Latest Cyber Security News | Network Security Hacking

Atomic Arch: 400+ AUR Packages Backdoored with eBPF Rootkit and Credential Stealer

by Rebecca Sutton

An AUR supply chain attack compromised more than 400 Arch Linux packages from 11 June …

by Rebecca Sutton

Check Point VPN Authentication Bypass (CVE-2026-50751): Client-Controlled IKEv1 Auth Flipped by Ransomware Affiliate

by Rebecca Sutton

RaccoonLine Publishes Analysis of VPN Data Disclosure Risks and the Shift Toward Decentralized Routing

by CyberNewswire

RaccoonLine Shares Technical Overview of VLESS Protocol in New Engineering Explainer

by CyberNewswire

Lyrie.ai Joins First Batch of Anthropic’s Cyber Verification Program

by CyberNewswire

Free Hacking Tools

BruteDum- A network attack bruteforce tool

by Tyler Loftus

I found a doozie here ladies and gentlemen, with a little python script called BruteDum.  …

by Tyler Loftus

MHDDoS – A DDoS Attack Script With Over 50 Different Methods

by Tyler Loftus

A Review of DNS Enumeration Tool: DNSEnum

by Tyler Loftus

Harvest Subdomains with DNSHarvester

by Tyler Loftus

Capture the Flag

DC: 2 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Hello Community! We have just completed first vulnhub machine of DC series by DCAU in …

by Unallocated Author

DC: 1 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Mr-Robot Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Rickdiculously – A CTF Designed for Rick And Morty Fans

by Unallocated Author

Did you know ?

Why Credential and Session Exposure Monitoring Should Be a Baseline Security Practice

by Mic Johnson

Data breaches and ransomware incidents are often discussed as if they begin with a sophisticated …

by Mic Johnson

AI Coding Agents Are Redefining Cyber Risk — Is Your Exposure Strategy Ready?

by Mic Johnson

How to Develop a Risk Management Framework

by Mic Johnson

The Supply Chain Is the New Battlefield: How One Weak Link Compromises Entire Ecosystems

by Mic Johnson

The Risks and Rewards of AI SEO in High-Stakes Search Environments

by Mic Johnson

Latest Hacking News