Lnkbomb- Exploit Insecure File Shares

Today I have a tool that exploits insecure file shares and allows penetration testers to…

Read more

Webpwn3r – Web Application Vulnerability Scanner

Webpwn3r is a powerful scanning tool, written in Python, to detect remote command execution vulnerabilities,…

Read more

Nmap Automator – a tool I used during OSCP for simple recon

Nmap Automator is a great tool for initial port scans of a given ip address.…

Read more

BitB- Capture credentials with a fake browser login

What is a Browser in the Browser attack What’s up nerds! Mr.D0x has yet another…

Read more

CrackMapExec –Post Exploitation tool for Active Directory Networks

CrackMapExec(CME) is a post exploitation tool that can be used for tasks like cracking administrative…

Read more

Turbolist3r – An Automated Subdomain Scanning Tool

Turbolist3r is a subdomain enumeration tool which can identify subdomain takeovers. It is heavily based…

Read more

Brakeman – A Code Security Auditing Tool for Ruby

What is a Brakeman? in the 1800s a brakeman was a rail worker responsible for…

Read more

mitmAP – An Open Source Tool to Create a Fake Access Point...

The Evil Access Point (AP) attack has been around for a long time. There are…

Read more

YAWAST – Open Source Web Application Information Gathering Toolkit

YAWAST is a web application penetration testing toolkit that can perform information gathering and basic…

Read more

Empire – Open Source Post-Exploitation Agent Tool

Empire is regarded as one of the most useful frameworks by many penetration testers. It…

Read more

Sparta- A Network Scanning and Enumeration Tool

What Is Sparta? Sparta, created by SECFORCE is the ultimate tool for recon and network…

Read more

Trape – A Free GUI Based Phishing/Tracking Tool

Trape is a tool written in python that can aid in tracking a client after…

Read more

Latest Cyber Security News | Network Security Hacking

Atomic Arch: 400+ AUR Packages Backdoored with eBPF Rootkit and Credential Stealer

by Rebecca Sutton

An AUR supply chain attack compromised more than 400 Arch Linux packages from 11 June …

by Rebecca Sutton

Check Point VPN Authentication Bypass (CVE-2026-50751): Client-Controlled IKEv1 Auth Flipped by Ransomware Affiliate

by Rebecca Sutton

RaccoonLine Publishes Analysis of VPN Data Disclosure Risks and the Shift Toward Decentralized Routing

by CyberNewswire

RaccoonLine Shares Technical Overview of VLESS Protocol in New Engineering Explainer

by CyberNewswire

Lyrie.ai Joins First Batch of Anthropic’s Cyber Verification Program

by CyberNewswire

Free Hacking Tools

BruteDum- A network attack bruteforce tool

by Tyler Loftus

I found a doozie here ladies and gentlemen, with a little python script called BruteDum.  …

by Tyler Loftus

MHDDoS – A DDoS Attack Script With Over 50 Different Methods

by Tyler Loftus

A Review of DNS Enumeration Tool: DNSEnum

by Tyler Loftus

Harvest Subdomains with DNSHarvester

by Tyler Loftus

Capture the Flag

DC: 2 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Hello Community! We have just completed first vulnhub machine of DC series by DCAU in …

by Unallocated Author

DC: 1 Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Mr-Robot Hacking Challenge Walkthrough (Vulnhub)

by Unallocated Author

Rickdiculously – A CTF Designed for Rick And Morty Fans

by Unallocated Author

Did you know ?

Why Credential and Session Exposure Monitoring Should Be a Baseline Security Practice

by Mic Johnson

Data breaches and ransomware incidents are often discussed as if they begin with a sophisticated …

by Mic Johnson

AI Coding Agents Are Redefining Cyber Risk — Is Your Exposure Strategy Ready?

by Mic Johnson

How to Develop a Risk Management Framework

by Mic Johnson

The Supply Chain Is the New Battlefield: How One Weak Link Compromises Entire Ecosystems

by Mic Johnson

The Risks and Rewards of AI SEO in High-Stakes Search Environments

by Mic Johnson

Latest Hacking News