Altair – An Open Source Modular Web Vulnerability Scanner

Altair is a Python tool that can be used to scan for web related vulnerabilities,…

Read more

Sn1per – An Automated Pentesting Framework

Sn1per is an automated scanner that can be used during a penetration test to enumerate…

Read more

webscreenshot.py | A Simple script that aids in testing large websites

Web Screenshot – webscreenshot.py is a great tool which comes in handy when a penetration…

Read more

Nmap Automator – a tool I used during OSCP for simple recon

Nmap Automator is a great tool for initial port scans of a given ip address.…

Read more

Operative Framework – Open Source Intelligence Gathering Tool

The Operative Framework tool can be used within a red team/social engineering engagement to collect…

Read more

Yuki Chan – The Auto Web Penetration Testing Tool

Yuki Chan is an open source tool that automates some of the information gathering and…

Read more

Raccoon – Open Source Enumeration and Information Gathering Tool

Raccoon is an offensive security tool known for reconnaissance and information gathering. The tool can…

Read more

MassBleed – An Open Source SSL Vulnerability Scanner

MassBleed is an open source tool used for scanning SSL vulnerabilities in web applications. The…

Read more

Facebook Account Bruteforcer

Protect your Facebook Password Found this one while I was on Safari. Its a pretty…

Read more

Uniscan – Web Application Penetration Testing Tool

Uniscan is an open source tool capable of scanning web applications for critical vulnerabilities, such…

Read more

Knock – Open Source Subdomain Scanner Tool

Knock is a python based tool for enumerating subdomains on a targeted domain. You can…

Read more

Modlishka – An Open Source Phishing Tool With 2FA Authentication

Modlishka is a go based phishing proxy that takes your phishing campaigns to the next…

Read more

Latest Cyber Security News | Network Security Hacking

LiteLLM Vulnerability Chain: What Security Teams Running AI Gateways Need to Do Now

by Rebecca Sutton

A three-CVE chain lets any default LiteLLM user escalate to admin and get a shell …

by Rebecca Sutton

Palo Alto’s GlobalProtect Authentication Bypass Was Exploited Four Days After Disclosure

by Rebecca Sutton

Apple Silicon Is Not a Safe Harbor From Spectre-Class Attacks

by Rebecca Sutton

Atomic Arch: 400+ AUR Packages Backdoored with eBPF Rootkit and Credential Stealer

by Rebecca Sutton

Check Point VPN Authentication Bypass (CVE-2026-50751): Client-Controlled IKEv1 Auth Flipped by Ransomware Affiliate

by Rebecca Sutton

Free Hacking Tools

BruteDum- A network attack bruteforce tool

by Tyler Loftus

I found a doozie here ladies and gentlemen, with a little python script called BruteDum.  …

by Tyler Loftus

MHDDoS – A DDoS Attack Script With Over 50 Different Methods

by Tyler Loftus

A Review of DNS Enumeration Tool: DNSEnum

by Tyler Loftus

Harvest Subdomains with DNSHarvester

by Tyler Loftus

Capture the Flag

DC: 2 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Hello Community! We have just completed first vulnhub machine of DC series by DCAU in …

by Unallocated Author

DC: 1 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Mr-Robot Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Rickdiculously – A CTF Designed for Rick And Morty Fans

by Unallocated Author

Did you know ?

Reverse Shell Explained: Setup, Attack Chain, and Detection

by Rebecca Sutton

A reverse shell makes the target machine initiate the connection back to the attacker, bypassing …

by Rebecca Sutton

How Ransomware Works: Encryption Is the Least of Your Problems

by Rebecca Sutton

Why Credential and Session Exposure Monitoring Should Be a Baseline Security Practice

by Mic Johnson

AI Coding Agents Are Redefining Cyber Risk — Is Your Exposure Strategy Ready?

by Mic Johnson

How to Develop a Risk Management Framework

by Mic Johnson

Latest Hacking News