Trape – A Free GUI Based Phishing/Tracking Tool

Trape is a tool written in python that can aid in tracking a client after…

Read more

Droopescan – CMS Based Web Applications Scanner

Droopescan is a python based scanner that is used to scan the web applications that…

Read more

BoomER | An Open Source Post-Exploitation Tool To Exploit Local Vulnerabilities

BoomER is a Command-line interface python open-source framework fully developed in Python 3.X for post-exploitation…

Read more

W3af – Web Application Attack and Audit Framework

W3af is a GUI based framework that helps in auditing and identifying vulnerabilities in web…

Read more

Gobuster – An Elegant CLI Utility for Brute Forcing URI Directories

Every reconnaissance phase has a standard checklist that is to be followed. If you’ve ever…

Read more

Social Mapper – Find Social Media Profiles Using Only a Photo

Social Mapper is an open source tool that searches for profile information from social media…

Read more

Impersonate Local Microsoft Users with msImpersonate

What is msImpersonate? What’s up nerds! Captain AMayorica hooked us up again with another Microsoft…

Read more

Cr3dOv3r – Free Password Reuse Attack Tool

Cr3dOv3r is an open source tool that helps in finding credentials reuse attack for any…

Read more

A2SV – SSL Vulnerability Analysis Tool

A2SV is an open source tool used for scanning SSL vulnerabilities in web applications. A2SV…

Read more

Tplmap – Open Source Tool to Scan For Server Side Template Injection...

Tplmap is a python tool that can find code injection and Server Side Templates Injection…

Read more

BinGoo- A Command Line Dorking Tool

What is BinGoo? Welcome to BinGoo, the all-in-one dorking tool written in bash. It uses…

Read more

Cansina – Open Source Hidden Content Discovery Tool

Reconnaissance is one of the first steps to conduct within a pen test engagement. During…

Read more

Latest Cyber Security News | Network Security Hacking

The ASLR Caveat on NGINX’s Critical HTTP/3 Flaw Changes Nothing About Urgency

by Rebecca Sutton

CVE-2026-42530, the NGINX HTTP/3 vulnerability rated CVSS 9.2, is collecting dismissals because exploitation requires ASLR …

by Rebecca Sutton

CVE-2026-48907: How the Joomla JCE Exploit Works and What to Do About It

by Rebecca Sutton

SpyCloud Report Finds Phishing Attacks Surge as Employee Data Is Exposed at 86% of Fortune 100 Companies

by CyberNewswire

Heimdal Survey: Executives Four Times More Confident About AI Risk Than the Teams Managing It

by CyberNewswire

How CVE-2026-20253 Turns Splunk’s PostgreSQL Sidecar Into an Open Door

by Rebecca Sutton

Free Hacking Tools

BruteDum- A network attack bruteforce tool

by Tyler Loftus

I found a doozie here ladies and gentlemen, with a little python script called BruteDum.  …

by Tyler Loftus

MHDDoS – A DDoS Attack Script With Over 50 Different Methods

by Tyler Loftus

A Review of DNS Enumeration Tool: DNSEnum

by Tyler Loftus

Harvest Subdomains with DNSHarvester

by Tyler Loftus

Capture the Flag

DC: 2 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Hello Community! We have just completed first vulnhub machine of DC series by DCAU in …

by Unallocated Author

DC: 1 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Mr-Robot Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Rickdiculously – A CTF Designed for Rick And Morty Fans

by Unallocated Author

Did you know ?

Privilege Escalation: The Step Between Foothold and Full Compromise

by Rebecca Sutton

Privilege escalation is the pivot point in almost every serious intrusion. This guide explains where …

by Rebecca Sutton

Nmap for Beginners: Understanding Scans Before You Run Them

by Rebecca Sutton

Reverse Shell Explained: Setup, Attack Chain, and Detection

by Rebecca Sutton

How Ransomware Works: Encryption Is the Least of Your Problems

by Rebecca Sutton

Why Credential and Session Exposure Monitoring Should Be a Baseline Security Practice

by Mic Johnson

Latest Hacking News