A new tool for handling network requests has appeared on GitHub — FlareProx. The project allows you to deploy an HTTP proxy on the basis of Cloudflare Workers and use it to redirect traffic...
The developers of Kali Linux have unveiled their latest release—2025.3, which broadens the distribution’s capabilities and introduces ten new tools for penetration testing. The update enhances deployment processes in virtualized environments, restores wireless driver...
Experts at Straiker have reported the discovery of a new tool called Villager, which since its release in July has been downloaded nearly 10,000 times from the official PyPI repository. Marketed as a client...
Penelope is a powerful shell handler built as a modern netcat replacement for RCE exploitation, aiming to simplify, accelerate, and optimize post-exploitation workflows. Features Session Features Description Unix with Python>=2.3 Unix without Python>=2.3 Windows...
On underground forums, cybercriminals have claimed they have begun deploying HexStrike AI—a new open-source penetration testing tool—against Citrix NetScaler vulnerabilities just hours after they were publicly disclosed. The news was reported by Check Point...
A Rust DLL project that integrates pe2shc to facilitate the development of Reflective DLLs. The project presently only supports 64-bit DLL development in most contexts, though with a few tweaks it should support 32-bit. rssh-rs Is an ssh...
The HexStrike AI repository has released HexStrike AI MCP Agents v6.0—a powerful framework for automating penetration tests. The system integrates more than 150 security tools and 12 autonomous AI agents operating through the FastMCP...
Bolthole A proof-of-concept ClickOnce payload for Red Teams to establish initial access in authorized penetration tests. Overview Bolthole provides operators with: Reverse SSH tunnel into the target environment CMD shell access as the executing...
Parrot Security OS 6.4 has been officially released, marking the final iteration of the sixth generation of this cybersecurity-focused Linux distribution. The development team has refreshed core components, introduced new tools, and begun preparations...
The emergence of a new tool known as RingReaper has sparked concern among cybersecurity experts and penetration testing teams alike. This program leverages a legitimate yet highly potent Linux kernel feature called io_uring to...
jxscout is a tool designed to help security researchers analyze and find vulnerabilities in JavaScript code. It works with your favorite proxy (Burp or Caido), capturing requests and saving optimized versions locally for easy analysis...
peeko is a browser-based XSS-powered C2 (Command and Control) tool that leverages the victim’s browser as a stealthy proxy inside internal networks. Through an injected XSS payload, peeko establishes a WebSocket connection to a central...
