GainSec

CVE-2022-34613, CVE-2022-34618, CVE-2022-34619 – Multiple XSS (And more) in Mealie

Multiple new CVEs discovered and disclosed! XSS, file uploads and more!

I found a Denial of Service discovered against Fossil SCM when running on Windows boxes.

How to Find the next BIG Data Leak in under 20 minutes or less! – LeakLooker-X – Updated 2022

An update to my tutorial for installing and running LeakLooker-X working properly with current versions of Kali Linux and Celery.

Azure Cloud Pen Testing Software Suite

Should I add this Repo to TreeHouse Wordlists?

You tell me what you think of this wordlist repo? Is it worth adding?

The Hacker’s Search Engine

An all-in-one "hacker" search engine

OSINT Tool for Searching GitHub

Find every companies secrets, passwords, api keys and accidentally exposed data on GitHub.

CLI Web Discovery Alternative to Dirb, Dirsearch, Etc

A great alternative to have for web discovery during web app pen tests or bug bounties.

Awesome new feature added to Kali

Great new feature added to Kali Linux!

All in One RF/HID reader/writer smaller then the ProxMark?!

A great and useful device for any physical penetration test or hardware hacking engagement.

OSINT Unified Research Tool (Search Engine)

Another day, another great OSINT tool added to the toolset. This one being a all-in-one research tool.

Alternative to Google Hacking Database

Web application to help in search engine and especially google dorking!

How to install Veracrypt on Kali Linux

How to install, use and uninstall Veracrypt on Kali Linux.

NEW TOOL for Automated External Recon – Discovery – Vuln Scanning

A new piece for your arsenal for the automation of external penetration tests? Maybe not.

Using the WayBack Machine to create parameter wordlists

A tool to create parameter wordlists of whatever domains (and subdomains) via the internet archive (wayback machine)!