Joomscan – Open Source Joomla Vulnerability Scanner

Joomscan is a scanner by OWASP, which aims to automate the task for vulnerability assessments…

Read more

Impersonate Local Microsoft Users with msImpersonate

What is msImpersonate? What’s up nerds! Captain AMayorica hooked us up again with another Microsoft…

Read more

mitmAP – An Open Source Tool to Create a Fake Access Point...

The Evil Access Point (AP) attack has been around for a long time. There are…

Read more

Sqlmap – Free Tool for SQL Injection Discovery And Exploitation

Sqlmap is an open source tool used to test the SQL injection vulnerabilities within web…

Read more

Routersploit – A Free Framework for Exploiting Embedded Devices

Routersploit is an open source framework used for exploiting vulnerabilities in embedded devices like routers.…

Read more

BruteDum- A network attack bruteforce tool

I found a doozie here ladies and gentlemen, with a little python script called BruteDum. …

Read more

Dalfox – An Automated XSS Finder

Dalfox is a fast, powerful parameter analysis and XSS scanner based on a DOM parser.…

Read more

W3af – Web Application Attack and Audit Framework

W3af is a GUI based framework that helps in auditing and identifying vulnerabilities in web…

Read more

TheFatRat – A Convenient Exploitation Tool

TheFatRat is an easy to use tool which helps in generating backdoors, system exploitation, post…

Read more

Blazy – Open Source Modern Login Brute-forcer

I know what you are thinking, bruteforce doesn’t work anymore in many cases. However, Blazy…

Read more

Photon – A Very Handy Open Source OSINT Tool

Photon is a relatively fast crawler designed for automating OSINT (Open Source Intelligence) with a…

Read more

WindowsSpyBlocker – Free Tool To Prevent Tracking and Spying

Thinking someone is spying on you is one of the most unsettling feelings ever, I…

Read more

Latest Cyber Security News | Network Security Hacking

How CVE-2026-20253 Turns Splunk’s PostgreSQL Sidecar Into an Open Door

by Rebecca Sutton

CVE-2026-20253 is a CVSS 9.8 pre-auth flaw in Splunk Enterprise’s PostgreSQL sidecar service. An unauthenticated …

by Rebecca Sutton

LiteLLM Vulnerability Chain: What Security Teams Running AI Gateways Need to Do Now

by Rebecca Sutton

Palo Alto’s GlobalProtect Authentication Bypass Was Exploited Four Days After Disclosure

by Rebecca Sutton

Apple Silicon Is Not a Safe Harbor From Spectre-Class Attacks

by Rebecca Sutton

Atomic Arch: 400+ AUR Packages Backdoored with eBPF Rootkit and Credential Stealer

by Rebecca Sutton

Free Hacking Tools

BruteDum- A network attack bruteforce tool

by Tyler Loftus

I found a doozie here ladies and gentlemen, with a little python script called BruteDum.  …

by Tyler Loftus

MHDDoS – A DDoS Attack Script With Over 50 Different Methods

by Tyler Loftus

A Review of DNS Enumeration Tool: DNSEnum

by Tyler Loftus

Harvest Subdomains with DNSHarvester

by Tyler Loftus

Capture the Flag

DC: 2 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Hello Community! We have just completed first vulnhub machine of DC series by DCAU in …

by Unallocated Author

DC: 1 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Mr-Robot Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Rickdiculously – A CTF Designed for Rick And Morty Fans

by Unallocated Author

Did you know ?

Reverse Shell Explained: Setup, Attack Chain, and Detection

by Rebecca Sutton

A reverse shell makes the target machine initiate the connection back to the attacker, bypassing …

by Rebecca Sutton

How Ransomware Works: Encryption Is the Least of Your Problems

by Rebecca Sutton

Why Credential and Session Exposure Monitoring Should Be a Baseline Security Practice

by Mic Johnson

AI Coding Agents Are Redefining Cyber Risk — Is Your Exposure Strategy Ready?

by Mic Johnson

How to Develop a Risk Management Framework

by Mic Johnson

Latest Hacking News