A critical flaw in Gitea’s official Docker image let anyone impersonate an admin with one …
Passwords are everywhere. We use them to unlock phones, computers, websites, encrypted disks, encrypted files… …
Wifi Pumpkin is a security audit framework used to test the security of wifi against…
I came across this python script that can perform SSH login bruteforce attacks and decided…
Today, we are going to talk about a powerful web application scanner named WAScan. WAScan…
Galileo is a free web application auditing framework that can perform various penetration testing tasks,…
Zarp is a powerful tool used for scanning and attacking networks. The tool is capable…
Many times when you want to perform an exploitation to a windows target, you need…
XSStrike is an open source tool that detects Cross Site Scripting vulnerabilities and exploits them. …
XAttacker is a perl tool capable of scanning and auto-exploiting vulnerabilities in web applications. By…
With Sherlock you can search across a vast number of social platforms for a username.…
Xerosploit is a python-based toolkit for creating efficient Man In The Middle attacks which combines…
Based on python, the Veil-Framework is one of the most popular tools for Anti-Virus evasion.…
This tool provides automated setup of rogue access points by setting up a DHCP server…
A critical flaw in Gitea’s official Docker image let anyone impersonate an admin with one …
I found a doozie here ladies and gentlemen, with a little python script called BruteDum. …
Hello Community! We have just completed first vulnhub machine of DC series by DCAU in …
A practitioner’s breakdown of the CSRF attack: how the forged request works, two documented exploits, …
Passwords are everywhere. We use them to unlock phones, computers, websites, encrypted disks, encrypted files… …
In the next few tutorials I will explain how to use the different Websploit modules. …
