DumpsterDiver – The Tool For Finding Hardcoded Secrets

What is this dumpster diving tool you speak of? The creator of this tool has…

Read more

Dalfox – An Automated XSS Finder

Dalfox is a fast, powerful parameter analysis and XSS scanner based on a DOM parser.…

Read more

KillShot – An Information Gathering and Vulnerability Scanning Tool

KillShot is a penetration testing tool that can be used to gather useful information and…

Read more

Galileo – Open Source Web Application Auditing Framework

Galileo is a free web application auditing framework that can perform various penetration testing tasks,…

Read more

Tmux – An Introduction to a Hacker’s Swiss Army Knife

Tmux is a terminal multiplexer: which in lamen terms means it is able to create…

Read more

Sn1per – An Automated Pentesting Framework

Sn1per is an automated scanner that can be used during a penetration test to enumerate…

Read more

CMSeeK | An Open Source Content Management System Detection and Exploitation Tool

CMSeek is an open-source tool that analyzes the regex of websites in order to detect…

Read more

XAttacker Tool – Scan and Auto Exploit Web Vulnerabilities

XAttacker is a perl tool capable of scanning and auto-exploiting vulnerabilities in web applications. By…

Read more

gau (GetAllUrls) Review – A Tool For Discovering URL’s

Getallurls (gau) fetches known URLs from AlienVault’s, the Wayback Machine, and Common Crawl for any…

Read more

Harvest Subdomains with DNSHarvester

We’re back again with another banger from Dan Miessler so if you liked the post…

Read more

WAScan – An Open Source Web Application Scanner

Today, we are going to talk about a powerful web application scanner named WAScan. WAScan…

Read more

Infection Monkey – An Open Source Tool for Testing a Data Center’s...

What is Infection Monkey? Infection Monkey is an open-source breach and attack simulation tool for…

Read more

Latest Cyber Security News | Network Security Hacking

Palo Alto’s GlobalProtect Authentication Bypass Was Exploited Four Days After Disclosure

by Rebecca Sutton

CVE-2026-0257’s GlobalProtect authentication bypass went from advisory to active exploitation in four days. The recurring …

by Rebecca Sutton

Apple Silicon Is Not a Safe Harbor From Spectre-Class Attacks

by Rebecca Sutton

Atomic Arch: 400+ AUR Packages Backdoored with eBPF Rootkit and Credential Stealer

by Rebecca Sutton

Check Point VPN Authentication Bypass (CVE-2026-50751): Client-Controlled IKEv1 Auth Flipped by Ransomware Affiliate

by Rebecca Sutton

RaccoonLine Publishes Analysis of VPN Data Disclosure Risks and the Shift Toward Decentralized Routing

by CyberNewswire

Free Hacking Tools

BruteDum- A network attack bruteforce tool

by Tyler Loftus

I found a doozie here ladies and gentlemen, with a little python script called BruteDum.  …

by Tyler Loftus

MHDDoS – A DDoS Attack Script With Over 50 Different Methods

by Tyler Loftus

A Review of DNS Enumeration Tool: DNSEnum

by Tyler Loftus

Harvest Subdomains with DNSHarvester

by Tyler Loftus

Capture the Flag

DC: 2 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Hello Community! We have just completed first vulnhub machine of DC series by DCAU in …

by Unallocated Author

DC: 1 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Mr-Robot Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Rickdiculously – A CTF Designed for Rick And Morty Fans

by Unallocated Author

Did you know ?

How Ransomware Works: Encryption Is the Least of Your Problems

by Rebecca Sutton

Ransomware still encrypts files with a hybrid AES/RSA scheme, but the data theft and backup …

by Rebecca Sutton

Why Credential and Session Exposure Monitoring Should Be a Baseline Security Practice

by Mic Johnson

AI Coding Agents Are Redefining Cyber Risk — Is Your Exposure Strategy Ready?

by Mic Johnson

How to Develop a Risk Management Framework

by Mic Johnson

The Supply Chain Is the New Battlefield: How One Weak Link Compromises Entire Ecosystems

by Mic Johnson

Latest Hacking News