Wapiti – The Black Box Vulnerability Scanner for Web Applications

Wapiti is an open source tool that scans web applications for multiple vulnerabilities including data…

Read more

MassBleed – An Open Source SSL Vulnerability Scanner

MassBleed is an open source tool used for scanning SSL vulnerabilities in web applications. The…

Read more

Tplmap – Open Source Tool to Scan For Server Side Template Injection...

Tplmap is a python tool that can find code injection and Server Side Templates Injection…

Read more

BoomER | An Open Source Post-Exploitation Tool To Exploit Local Vulnerabilities

BoomER is a Command-line interface python open-source framework fully developed in Python 3.X for post-exploitation…

Read more

Tulpar – An Open Source Web Application Vulnerability Scanner

Tulpar is an open source penetration testing tool that can find web application vulnerabilities such…

Read more

Dalfox – An Automated XSS Finder

Dalfox is a fast, powerful parameter analysis and XSS scanner based on a DOM parser.…

Read more

Mip22- A Phishing Tool for Linux and Android

What is Mip22? Mip22 is a modern and advanced cyber security program for use with…

Read more

ARPwner – A GUI Based ARP and DNS Spoofing Tool

ARPwner is a GUI based tool that can perform tasks like ARP and DNS spoofing.…

Read more

BeRoot – A Post Exploitation Privilege Escalation Tool

BeRoot is a post-exploitation tool to check for common misconfigurations which can allow an attacker…

Read more

Harvest Subdomains with DNSHarvester

We’re back again with another banger from Dan Miessler so if you liked the post…

Read more

DumpsterFire – A Tool That Generates Network Shenanigans to Facilitate Blue Team...

DumpsterFire is an open-source tool made by blue team member to edit create and control…

Read more

WAScan – An Open Source Web Application Scanner

Today, we are going to talk about a powerful web application scanner named WAScan. WAScan…

Read more

Latest Cyber Security News | Network Security Hacking

DirtyClone Is the Fourth ‘Dirty’ Linux Kernel Exploit in Six Weeks

by Rebecca Sutton

CVE-2026-43503 DirtyClone is the fourth DirtyFrag-family privilege escalation in six weeks. JFrog’s public PoC raises …

by Rebecca Sutton

GPT-5.6 Sol’s Launch: METR’s Evaluation Gaming Finding Matters More Than the Restrictions

by Rebecca Sutton

Gaslight macOS Malware Is a Warning Shot at the AI Security Stack

by Rebecca Sutton

Cisco Unified CM SSRF Flaw Is Being Exploited to Drop Webshells

by Rebecca Sutton

PostCSS npm Typosquat: How to Check If Your Machine Is Compromised

by Rebecca Sutton

Free Hacking Tools

BruteDum- A network attack bruteforce tool

by Tyler Loftus

I found a doozie here ladies and gentlemen, with a little python script called BruteDum.  …

by Tyler Loftus

MHDDoS – A DDoS Attack Script With Over 50 Different Methods

by Tyler Loftus

A Review of DNS Enumeration Tool: DNSEnum

by Tyler Loftus

Harvest Subdomains with DNSHarvester

by Tyler Loftus

Capture the Flag

DC: 2 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Hello Community! We have just completed first vulnhub machine of DC series by DCAU in …

by Unallocated Author

DC: 1 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Mr-Robot Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Rickdiculously – A CTF Designed for Rick And Morty Fans

by Unallocated Author

Did you know ?

Programming Languages for Cyber Security: What the Tools Actually Use

by Rebecca Sutton

Security tooling is not written in a single language. Python powers most automation. C sits …

by Rebecca Sutton

What Is a Buffer Overflow? The Bug That Keeps Driving Critical CVEs

by Rebecca Sutton

Linux Server Hardening: What to Do First and Why It Matters

by Rebecca Sutton

VPN Internals Explained: Protocols, Leaks, and What the Kill Switch Actually Does

by Rebecca Sutton

SQL Injection: Why It Persists and How to Prevent It

by Rebecca Sutton

Latest Hacking News