XAttacker Tool – Scan and Auto Exploit Web Vulnerabilities

XAttacker is a perl tool capable of scanning and auto-exploiting vulnerabilities in web applications. By…

Read more

Golismero – Web Application Vulnerability Scanner

So what is this tool all about? Golismero is an open source framework, used for…

Read more

TIDoS – Open Source Reconnaissance and Web Application Audit Framework

TIDoS framework is a python based toolkit that performs a comprehensive audit of the web…

Read more

Brutex – Open Source Tool for Brute Force Automation

Brutex is a shell based open source tool to make your work faster. It combines…

Read more

Aquatone | An Open Source Domain Flyover Tool

Aquatone is a tool programmed by go-lang to inspect domains/check their status and also provide…

Read more

BeRoot – A Post Exploitation Privilege Escalation Tool

BeRoot is a post-exploitation tool to check for common misconfigurations which can allow an attacker…

Read more

DumpsterDiver – The Tool For Finding Hardcoded Secrets

What is this dumpster diving tool you speak of? The creator of this tool has…

Read more

Cloakify – A Tool to Mask Your Data in Plain Sight

Cloakify Factory is a tool to transforms any file type into a list of harmless…

Read more

Tplmap – Open Source Tool to Scan For Server Side Template Injection...

Tplmap is a python tool that can find code injection and Server Side Templates Injection…

Read more

Pythem – Web and Network Security Audit Framework

Pythem is a python framework used for performing various security tests on networks and web…

Read more

Airgeddon – A Swiss Army WiFi Hacking Tool

Today LHN have been looking at Airgeddon, on initial inspection it seems to be a…

Read more

PhishX –Spear Phishing Tool for Capturing Credentials

PhishX is a python tool that can capture user credentials using a spear phishing attack.…

Read more

Latest Cyber Security News | Network Security Hacking

The ASLR Caveat on NGINX’s Critical HTTP/3 Flaw Changes Nothing About Urgency

by Rebecca Sutton

CVE-2026-42530, the NGINX HTTP/3 vulnerability rated CVSS 9.2, is collecting dismissals because exploitation requires ASLR …

by Rebecca Sutton

CVE-2026-48907: How the Joomla JCE Exploit Works and What to Do About It

by Rebecca Sutton

SpyCloud Report Finds Phishing Attacks Surge as Employee Data Is Exposed at 86% of Fortune 100 Companies

by CyberNewswire

Heimdal Survey: Executives Four Times More Confident About AI Risk Than the Teams Managing It

by CyberNewswire

How CVE-2026-20253 Turns Splunk’s PostgreSQL Sidecar Into an Open Door

by Rebecca Sutton

Free Hacking Tools

BruteDum- A network attack bruteforce tool

by Tyler Loftus

I found a doozie here ladies and gentlemen, with a little python script called BruteDum.  …

by Tyler Loftus

MHDDoS – A DDoS Attack Script With Over 50 Different Methods

by Tyler Loftus

A Review of DNS Enumeration Tool: DNSEnum

by Tyler Loftus

Harvest Subdomains with DNSHarvester

by Tyler Loftus

Capture the Flag

DC: 2 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Hello Community! We have just completed first vulnhub machine of DC series by DCAU in …

by Unallocated Author

DC: 1 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Mr-Robot Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Rickdiculously – A CTF Designed for Rick And Morty Fans

by Unallocated Author

Did you know ?

Privilege Escalation: The Step Between Foothold and Full Compromise

by Rebecca Sutton

Privilege escalation is the pivot point in almost every serious intrusion. This guide explains where …

by Rebecca Sutton

Nmap for Beginners: Understanding Scans Before You Run Them

by Rebecca Sutton

Reverse Shell Explained: Setup, Attack Chain, and Detection

by Rebecca Sutton

How Ransomware Works: Encryption Is the Least of Your Problems

by Rebecca Sutton

Why Credential and Session Exposure Monitoring Should Be a Baseline Security Practice

by Mic Johnson

Latest Hacking News