HTTPX – A Tool to Fingerprint a Web Server

Httpx is a fast and multi-purpose HTTP toolkit that allows the user to run multiple…

Read more

Galileo – Open Source Web Application Auditing Framework

Galileo is a free web application auditing framework that can perform various penetration testing tasks,…

Read more

Yuki Chan – The Auto Web Penetration Testing Tool

Yuki Chan is an open source tool that automates some of the information gathering and…

Read more

Cansina – Open Source Hidden Content Discovery Tool

Reconnaissance is one of the first steps to conduct within a pen test engagement. During…

Read more

Brakeman – A Code Security Auditing Tool for Ruby

What is a Brakeman? in the 1800s a brakeman was a rail worker responsible for…

Read more

Spiderfoot – An Open Source OSINT Information Gathering Tool

Spiderfoot is an open-source tool used for reconnaissance. It is capable of gathering open-source information…

Read more

Commix – The OS Command Injection and Exploitation Tool

Commix is a command injection exploitation tool used for testing command injection vulnerabilities in web…

Read more

How to Launch a Kali GUI using WSL2

Anyone here tired of dual booting to get into your Kali machine? Or configuring VMware…

Read more

Just Scan It with JFScan

What is JFScan? JFScan is a great enumeration tool  created by nullt3r written mainly in…

Read more

Turbolist3r – An Automated Subdomain Scanning Tool

Turbolist3r is a subdomain enumeration tool which can identify subdomain takeovers. It is heavily based…

Read more

A Malware Showcase | Understanding Malware With Python

Malware showcase is a Github repository that contains examples of malware usage and behavior, this…

Read more

InfoG v1.0 – An Open Source Information Gathering Tool

Note that InfoG 1 is now deprecated, use version 2 instead: https://github.com/Tech-Sec/InfoG.git InfoG is a Shellscript…

Read more

Latest Cyber Security News | Network Security Hacking

usbliter8 Exploit Achieves Code Execution in Apple’s Unpatchable SecureROM

by Rebecca Sutton

Paradigm Shift has published a working exploit for Apple’s A12 and A13 SecureROM. The flaw …

by Rebecca Sutton

The ASLR Caveat on NGINX’s Critical HTTP/3 Flaw Changes Nothing About Urgency

by Rebecca Sutton

CVE-2026-48907: How the Joomla JCE Exploit Works and What to Do About It

by Rebecca Sutton

SpyCloud Report Finds Phishing Attacks Surge as Employee Data Is Exposed at 86% of Fortune 100 Companies

by CyberNewswire

Heimdal Survey: Executives Four Times More Confident About AI Risk Than the Teams Managing It

by CyberNewswire

Free Hacking Tools

BruteDum- A network attack bruteforce tool

by Tyler Loftus

I found a doozie here ladies and gentlemen, with a little python script called BruteDum.  …

by Tyler Loftus

MHDDoS – A DDoS Attack Script With Over 50 Different Methods

by Tyler Loftus

A Review of DNS Enumeration Tool: DNSEnum

by Tyler Loftus

Harvest Subdomains with DNSHarvester

by Tyler Loftus

Capture the Flag

DC: 2 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Hello Community! We have just completed first vulnhub machine of DC series by DCAU in …

by Unallocated Author

DC: 1 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Mr-Robot Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Rickdiculously – A CTF Designed for Rick And Morty Fans

by Unallocated Author

Did you know ?

Man in the Middle Attack: Techniques, Real Examples, and Defences

by Rebecca Sutton

From ARP spoofing to state-level carrier interception, man in the middle attacks cover a wide …

by Rebecca Sutton

How to Detect a Keylogger on Your System

by Rebecca Sutton

Privilege Escalation: The Step Between Foothold and Full Compromise

by Rebecca Sutton

Nmap for Beginners: Understanding Scans Before You Run Them

by Rebecca Sutton

Reverse Shell Explained: Setup, Attack Chain, and Detection

by Rebecca Sutton

Latest Hacking News