The Latest Infosec News, Tools, and Exploits – Got Root?
XAttacker Tool Free Version Website Vulnerability Scanner & Auto ExploiterYou can use this tool to check the security by finding the vulnerability in your website or you can use this tool to Get Shells | […]
BlackMamba is a multi-client C2/post-exploitation framework with some spyware features. It is powered by Python 3.8.6 and QT Framework. Some of BlackMamba features are: Multi-Client – Supports multiple client connections at the same time. Real-Time […]
Smersh is a pentest oriented collaborative tool used to track the progress of your company’s missions and generate rapport. Preview front (Angular): Search bar with dark theme Hacktivity tab preview API (Symfony + Api Platform) […]
Subdomain Scan With Ping Method & Check HTTP/S Statuses. Flags Value Description –hostname example.com Domain for scan. –output Records the output with the domain name. –list /tmp/lists/example.txt Lister for subdomains. New Features Checking HTTP/HTTPS statuses […]
Rizin is a fork of the radare2 reverse engineering framework with a focus on usability, working features and code cleanliness. Rizin is portable and it can be used to analyze binaries, disassemble code, debug programs, […]
Knockpy is a python tool designed to enumerate subdomains on a target domain through a wordlist. It is designed to scan for DNS zone transfer and to try to bypass the wildcard DNS record automatically […]
Domain analyzer is a security analysis tool which automatically discovers and reports information about the given domain. Its main purpose is to analyze domains in an unattended way. Example default options How Domain analyzer takes […]
remote-method-guesser (rmg) is a command line utility written in Java and can be used to identify security vulnerabilities on Java RMI endpoints. Currently, the following operations are supported: List available bound names and their corresponding […]
Damn Vulnerable GraphQL Application is an intentionally vulnerable implementation of Facebook’s GraphQL technology, to learn and practice GraphQL Security. Damn Vulnerable GraphQL is a deliberately weak and insecure implementation of GraphQL that provides a safe […]
Xerror is an automated penetration tool , which will help security professionals and non professionals to automate their pentesting tasks. Xerror will perform all tests and, at the end generate two reports for executives and […]
