Turbolist3r – An Automated Subdomain Scanning Tool

Turbolist3r is a subdomain enumeration tool which can identify subdomain takeovers. It is heavily based…

Read more

BoomER | An Open Source Post-Exploitation Tool To Exploit Local Vulnerabilities

BoomER is a Command-line interface python open-source framework fully developed in Python 3.X for post-exploitation…

Read more

KillShot – An Information Gathering and Vulnerability Scanning Tool

KillShot is a penetration testing tool that can be used to gather useful information and…

Read more

Harvest Subdomains with DNSHarvester

We’re back again with another banger from Dan Miessler so if you liked the post…

Read more

InfoG v1.0 – An Open Source Information Gathering Tool

Note that InfoG 1 is now deprecated, use version 2 instead: https://github.com/Tech-Sec/InfoG.git InfoG is a Shellscript…

Read more

Droopescan – CMS Based Web Applications Scanner

Droopescan is a python based scanner that is used to scan the web applications that…

Read more

CMSeeK | An Open Source Content Management System Detection and Exploitation Tool

CMSeek is an open-source tool that analyzes the regex of websites in order to detect…

Read more

Mip22- A Phishing Tool for Linux and Android

What is Mip22? Mip22 is a modern and advanced cyber security program for use with…

Read more

Lnkbomb- Exploit Insecure File Shares

Today I have a tool that exploits insecure file shares and allows penetration testers to…

Read more

Sn1per – An Automated Pentesting Framework

Sn1per is an automated scanner that can be used during a penetration test to enumerate…

Read more

Sqlmap – Free Tool for SQL Injection Discovery And Exploitation

Sqlmap is an open source tool used to test the SQL injection vulnerabilities within web…

Read more

Just Scan It with JFScan

What is JFScan? JFScan is a great enumeration tool  created by nullt3r written mainly in…

Read more

Latest Cyber Security News | Network Security Hacking

libssh2 CVE-2026-55200 Shows Why Outbound SSH Is an Attack Surface

by Rebecca Sutton

The critical libssh2 CVE-2026-55200 flaw inverts SSH security: the remote server attacks the connecting client, …

by Rebecca Sutton

DirtyClone Is the Fourth ‘Dirty’ Linux Kernel Exploit in Six Weeks

by Rebecca Sutton

GPT-5.6 Sol’s Launch: METR’s Evaluation Gaming Finding Matters More Than the Restrictions

by Rebecca Sutton

Gaslight macOS Malware Is a Warning Shot at the AI Security Stack

by Rebecca Sutton

Cisco Unified CM SSRF Flaw Is Being Exploited to Drop Webshells

by Rebecca Sutton

Free Hacking Tools

BruteDum- A network attack bruteforce tool

by Tyler Loftus

I found a doozie here ladies and gentlemen, with a little python script called BruteDum.  …

by Tyler Loftus

MHDDoS – A DDoS Attack Script With Over 50 Different Methods

by Tyler Loftus

A Review of DNS Enumeration Tool: DNSEnum

by Tyler Loftus

Harvest Subdomains with DNSHarvester

by Tyler Loftus

Capture the Flag

DC: 2 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Hello Community! We have just completed first vulnhub machine of DC series by DCAU in …

by Unallocated Author

DC: 1 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Mr-Robot Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Rickdiculously – A CTF Designed for Rick And Morty Fans

by Unallocated Author

Did you know ?

Programming Languages for Cyber Security: What the Tools Actually Use

by Rebecca Sutton

Security tooling is not written in a single language. Python powers most automation. C sits …

by Rebecca Sutton

What Is a Buffer Overflow? The Bug That Keeps Driving Critical CVEs

by Rebecca Sutton

Linux Server Hardening: What to Do First and Why It Matters

by Rebecca Sutton

VPN Internals Explained: Protocols, Leaks, and What the Kill Switch Actually Does

by Rebecca Sutton

SQL Injection: Why It Persists and How to Prevent It

by Rebecca Sutton

Latest Hacking News