Gobuster – An Elegant CLI Utility for Brute Forcing URI Directories

Every reconnaissance phase has a standard checklist that is to be followed. If you’ve ever…

Read more

Evilginx – The Free Advanced Phishing Attack Framework

Evilginx is framework that is able to steal user credentials through a man in the…

Read more

Powershell-RAT | A Backdoor Tool to Extract Data via Gmail

Powershell-RAT is a Python and Powershell script tool that has been made to help a pen…

Read more

gau (GetAllUrls) Review – A Tool For Discovering URL’s

Getallurls (gau) fetches known URLs from AlienVault’s, the Wayback Machine, and Common Crawl for any…

Read more

Evilgrade – MITM Attack Framework to Exploit Machines

Evilgrade is a modular framework that takes over target machines by injecting fake updates in…

Read more

Bloodhound – A Tool For Exploring Active Directory Domain Security

Bloodhound is an open source application used for analyzing security of active directory domains.  The…

Read more

mitmAP – An Open Source Tool to Create a Fake Access Point...

The Evil Access Point (AP) attack has been around for a long time. There are…

Read more

MassBleed – An Open Source SSL Vulnerability Scanner

MassBleed is an open source tool used for scanning SSL vulnerabilities in web applications. The…

Read more

Sn1per – An Automated Pentesting Framework

Sn1per is an automated scanner that can be used during a penetration test to enumerate…

Read more

WiFiDuck BadUSB Tester

I found this one while doings some research on BadUSBs and thought it would be…

Read more

InfoG v1.0 – An Open Source Information Gathering Tool

Note that InfoG 1 is now deprecated, use version 2 instead: https://github.com/Tech-Sec/InfoG.git InfoG is a Shellscript…

Read more

Just Scan It with JFScan

What is JFScan? JFScan is a great enumeration tool  created by nullt3r written mainly in…

Read more

Latest Cyber Security News | Network Security Hacking

Atomic Arch: 400+ AUR Packages Backdoored with eBPF Rootkit and Credential Stealer

by Rebecca Sutton

An AUR supply chain attack compromised more than 400 Arch Linux packages from 11 June …

by Rebecca Sutton

Check Point VPN Authentication Bypass (CVE-2026-50751): Client-Controlled IKEv1 Auth Flipped by Ransomware Affiliate

by Rebecca Sutton

RaccoonLine Publishes Analysis of VPN Data Disclosure Risks and the Shift Toward Decentralized Routing

by CyberNewswire

RaccoonLine Shares Technical Overview of VLESS Protocol in New Engineering Explainer

by CyberNewswire

Lyrie.ai Joins First Batch of Anthropic’s Cyber Verification Program

by CyberNewswire

Free Hacking Tools

BruteDum- A network attack bruteforce tool

by Tyler Loftus

I found a doozie here ladies and gentlemen, with a little python script called BruteDum.  …

by Tyler Loftus

MHDDoS – A DDoS Attack Script With Over 50 Different Methods

by Tyler Loftus

A Review of DNS Enumeration Tool: DNSEnum

by Tyler Loftus

Harvest Subdomains with DNSHarvester

by Tyler Loftus

Capture the Flag

DC: 2 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Hello Community! We have just completed first vulnhub machine of DC series by DCAU in …

by Unallocated Author

DC: 1 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Mr-Robot Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Rickdiculously – A CTF Designed for Rick And Morty Fans

by Unallocated Author

Did you know ?

Why Credential and Session Exposure Monitoring Should Be a Baseline Security Practice

by Mic Johnson

Data breaches and ransomware incidents are often discussed as if they begin with a sophisticated …

by Mic Johnson

AI Coding Agents Are Redefining Cyber Risk — Is Your Exposure Strategy Ready?

by Mic Johnson

How to Develop a Risk Management Framework

by Mic Johnson

The Supply Chain Is the New Battlefield: How One Weak Link Compromises Entire Ecosystems

by Mic Johnson

The Risks and Rewards of AI SEO in High-Stakes Search Environments

by Mic Johnson

Latest Hacking News