XSStrike – XSS Detection and Exploitation Suite

XSStrike is an open source tool that detects Cross Site Scripting vulnerabilities and exploits them. …

Read more

How to Launch a Kali GUI using WSL2

Anyone here tired of dual booting to get into your Kali machine? Or configuring VMware…

Read more

CrackMapExec –Post Exploitation tool for Active Directory Networks

CrackMapExec(CME) is a post exploitation tool that can be used for tasks like cracking administrative…

Read more

Photon – A Very Handy Open Source OSINT Tool

Photon is a relatively fast crawler designed for automating OSINT (Open Source Intelligence) with a…

Read more

ARPwner – A GUI Based ARP and DNS Spoofing Tool

ARPwner is a GUI based tool that can perform tasks like ARP and DNS spoofing.…

Read more

Veil-Framework – Open Source Tool to Bypass Common Anti-Virus Solutions

Based on python, the Veil-Framework is one of the most popular tools for Anti-Virus evasion.…

Read more

Spiderfoot – An Open Source OSINT Information Gathering Tool

Spiderfoot is an open-source tool used for reconnaissance. It is capable of gathering open-source information…

Read more

Wapiti – The Black Box Vulnerability Scanner for Web Applications

Wapiti is an open source tool that scans web applications for multiple vulnerabilities including data…

Read more

CMSmap – An Open Source CMS Scanner

Cmsmap is a python based CMS scanner for automating the process of vulnerability assessment in…

Read more

BoomER | An Open Source Post-Exploitation Tool To Exploit Local Vulnerabilities

BoomER is a Command-line interface python open-source framework fully developed in Python 3.X for post-exploitation…

Read more

Golismero – Web Application Vulnerability Scanner

So what is this tool all about? Golismero is an open source framework, used for…

Read more

Nmap Automator – a tool I used during OSCP for simple recon

Nmap Automator is a great tool for initial port scans of a given ip address.…

Read more

Latest Cyber Security News | Network Security Hacking

DirtyClone Is the Fourth ‘Dirty’ Linux Kernel Exploit in Six Weeks

by Rebecca Sutton

CVE-2026-43503 DirtyClone is the fourth DirtyFrag-family privilege escalation in six weeks. JFrog’s public PoC raises …

by Rebecca Sutton

GPT-5.6 Sol’s Launch: METR’s Evaluation Gaming Finding Matters More Than the Restrictions

by Rebecca Sutton

Gaslight macOS Malware Is a Warning Shot at the AI Security Stack

by Rebecca Sutton

Cisco Unified CM SSRF Flaw Is Being Exploited to Drop Webshells

by Rebecca Sutton

PostCSS npm Typosquat: How to Check If Your Machine Is Compromised

by Rebecca Sutton

Free Hacking Tools

BruteDum- A network attack bruteforce tool

by Tyler Loftus

I found a doozie here ladies and gentlemen, with a little python script called BruteDum.  …

by Tyler Loftus

MHDDoS – A DDoS Attack Script With Over 50 Different Methods

by Tyler Loftus

A Review of DNS Enumeration Tool: DNSEnum

by Tyler Loftus

Harvest Subdomains with DNSHarvester

by Tyler Loftus

Capture the Flag

DC: 2 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Hello Community! We have just completed first vulnhub machine of DC series by DCAU in …

by Unallocated Author

DC: 1 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Mr-Robot Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Rickdiculously – A CTF Designed for Rick And Morty Fans

by Unallocated Author

Did you know ?

Programming Languages for Cyber Security: What the Tools Actually Use

by Rebecca Sutton

Security tooling is not written in a single language. Python powers most automation. C sits …

by Rebecca Sutton

What Is a Buffer Overflow? The Bug That Keeps Driving Critical CVEs

by Rebecca Sutton

Linux Server Hardening: What to Do First and Why It Matters

by Rebecca Sutton

VPN Internals Explained: Protocols, Leaks, and What the Kill Switch Actually Does

by Rebecca Sutton

SQL Injection: Why It Persists and How to Prevent It

by Rebecca Sutton

Latest Hacking News