Operative Framework – Open Source Intelligence Gathering Tool

The Operative Framework tool can be used within a red team/social engineering engagement to collect…

Read more

XSStrike – XSS Detection and Exploitation Suite

XSStrike is an open source tool that detects Cross Site Scripting vulnerabilities and exploits them. …

Read more

Vega – Open Source Tool for Analyzing Web Applications Security

Vega is a GUID based open source tool used for testing the security of web…

Read more

Yuki Chan – The Auto Web Penetration Testing Tool

Yuki Chan is an open source tool that automates some of the information gathering and…

Read more

6 OSINT Tools That Make a Pentester’s Life Easier

So you have been tasked with performing a penetration test of the internet-facing systems of…

Read more

Habu – Open Source Network Penetration Testing Toolkit

Habu is an open source penetration testing toolkit that can perform various penetration testing tasks…

Read more

Azurite – An Azure AD Enumeration Tool

What is Azurite? This one’s a doozy folks. With the rapid growth of cloud infrastructure…

Read more

NoSQLMap – Open Source Audit and Attack NoSQL Databases

NoSQLMap is an open source python based tool, designed to audit and automate injection attacks…

Read more

Webpwn3r – Web Application Vulnerability Scanner

Webpwn3r is a powerful scanning tool, written in Python, to detect remote command execution vulnerabilities,…

Read more

Wifi Pumpkin – WiFi MITM Attack and Audit Framework

Wifi Pumpkin is a security audit framework used to test the security of wifi against…

Read more

Droopescan – CMS Based Web Applications Scanner

Droopescan is a python based scanner that is used to scan the web applications that…

Read more

FinalRecon – An All In One OSINT Tool for Web Reconnaissance

Final Recon is a useful tool for gathering data about a target from open source…

Read more

Latest Cyber Security News | Network Security Hacking

DirtyClone Is the Fourth ‘Dirty’ Linux Kernel Exploit in Six Weeks

by Rebecca Sutton

CVE-2026-43503 DirtyClone is the fourth DirtyFrag-family privilege escalation in six weeks. JFrog’s public PoC raises …

by Rebecca Sutton

GPT-5.6 Sol’s Launch: METR’s Evaluation Gaming Finding Matters More Than the Restrictions

by Rebecca Sutton

Gaslight macOS Malware Is a Warning Shot at the AI Security Stack

by Rebecca Sutton

Cisco Unified CM SSRF Flaw Is Being Exploited to Drop Webshells

by Rebecca Sutton

PostCSS npm Typosquat: How to Check If Your Machine Is Compromised

by Rebecca Sutton

Free Hacking Tools

BruteDum- A network attack bruteforce tool

by Tyler Loftus

I found a doozie here ladies and gentlemen, with a little python script called BruteDum.  …

by Tyler Loftus

MHDDoS – A DDoS Attack Script With Over 50 Different Methods

by Tyler Loftus

A Review of DNS Enumeration Tool: DNSEnum

by Tyler Loftus

Harvest Subdomains with DNSHarvester

by Tyler Loftus

Capture the Flag

DC: 2 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Hello Community! We have just completed first vulnhub machine of DC series by DCAU in …

by Unallocated Author

DC: 1 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Mr-Robot Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Rickdiculously – A CTF Designed for Rick And Morty Fans

by Unallocated Author

Did you know ?

Programming Languages for Cyber Security: What the Tools Actually Use

by Rebecca Sutton

Security tooling is not written in a single language. Python powers most automation. C sits …

by Rebecca Sutton

What Is a Buffer Overflow? The Bug That Keeps Driving Critical CVEs

by Rebecca Sutton

Linux Server Hardening: What to Do First and Why It Matters

by Rebecca Sutton

VPN Internals Explained: Protocols, Leaks, and What the Kill Switch Actually Does

by Rebecca Sutton

SQL Injection: Why It Persists and How to Prevent It

by Rebecca Sutton

Latest Hacking News