Empire – Open Source Post-Exploitation Agent Tool

Empire is regarded as one of the most useful frameworks by many penetration testers. It…

Read more

Review of dnsx – a multi-purpose DNS toolkit

Dnsx is a fast and multi-purpose DNS toolkit that allows you to run multiple probers…

Read more

KillShot – An Information Gathering and Vulnerability Scanning Tool

KillShot is a penetration testing tool that can be used to gather useful information and…

Read more

Lnkbomb- Exploit Insecure File Shares

Today I have a tool that exploits insecure file shares and allows penetration testers to…

Read more

Red Hawk – Open Source Information Gathering and Vulnerability Scanning Tool

Red Hawk is an open source tool that is used for information gathering and certain…

Read more

W3af – Web Application Attack and Audit Framework

W3af is a GUI based framework that helps in auditing and identifying vulnerabilities in web…

Read more

AutoRecon – An Open Source Enumeration Tool

AutoRecon is an enumeration tool that performs automated enumeration with multi-threaded capabilities. It is purposely…

Read more

Sparta- A Network Scanning and Enumeration Tool

What Is Sparta? Sparta, created by SECFORCE is the ultimate tool for recon and network…

Read more

Eyewitness – Open Source Target Visualization and Recon Tool

Got a huge list of targets that you’d like to enumerate but can’t really visit…

Read more

Harvest Subdomains with DNSHarvester

We’re back again with another banger from Dan Miessler so if you liked the post…

Read more

Minimalistic OffSec Scanner – A Powerful TCP and UDP Scanner

Here we have a compilation of tools by InfoSecMatter that is used for scanning open…

Read more

gau (GetAllUrls) Review – A Tool For Discovering URL’s

Getallurls (gau) fetches known URLs from AlienVault’s, the Wayback Machine, and Common Crawl for any…

Read more

Latest Cyber Security News | Network Security Hacking

The ASLR Caveat on NGINX’s Critical HTTP/3 Flaw Changes Nothing About Urgency

by Rebecca Sutton

CVE-2026-42530, the NGINX HTTP/3 vulnerability rated CVSS 9.2, is collecting dismissals because exploitation requires ASLR …

by Rebecca Sutton

CVE-2026-48907: How the Joomla JCE Exploit Works and What to Do About It

by Rebecca Sutton

SpyCloud Report Finds Phishing Attacks Surge as Employee Data Is Exposed at 86% of Fortune 100 Companies

by CyberNewswire

Heimdal Survey: Executives Four Times More Confident About AI Risk Than the Teams Managing It

by CyberNewswire

How CVE-2026-20253 Turns Splunk’s PostgreSQL Sidecar Into an Open Door

by Rebecca Sutton

Free Hacking Tools

BruteDum- A network attack bruteforce tool

by Tyler Loftus

I found a doozie here ladies and gentlemen, with a little python script called BruteDum.  …

by Tyler Loftus

MHDDoS – A DDoS Attack Script With Over 50 Different Methods

by Tyler Loftus

A Review of DNS Enumeration Tool: DNSEnum

by Tyler Loftus

Harvest Subdomains with DNSHarvester

by Tyler Loftus

Capture the Flag

DC: 2 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Hello Community! We have just completed first vulnhub machine of DC series by DCAU in …

by Unallocated Author

DC: 1 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Mr-Robot Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Rickdiculously – A CTF Designed for Rick And Morty Fans

by Unallocated Author

Did you know ?

Privilege Escalation: The Step Between Foothold and Full Compromise

by Rebecca Sutton

Privilege escalation is the pivot point in almost every serious intrusion. This guide explains where …

by Rebecca Sutton

Nmap for Beginners: Understanding Scans Before You Run Them

by Rebecca Sutton

Reverse Shell Explained: Setup, Attack Chain, and Detection

by Rebecca Sutton

How Ransomware Works: Encryption Is the Least of Your Problems

by Rebecca Sutton

Why Credential and Session Exposure Monitoring Should Be a Baseline Security Practice

by Mic Johnson

Latest Hacking News