The Latest Web Hacking

Web Hacking Articles

Find the Best Web Hacking from 2018 here:


Wikto Scanner Download - Web Server Security Tool

Wikto Scanner Download – Web Server Security Tool

Wikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including over 3500 potentially dangerous files/CGIs, versions on over 900 servers, and version specific problems on over 250 servers. It’s Nikto for Windows basically with some extra features written in C# and requires the .NET framework. […]

Topic: Hacking Tools, Web Hacking
Jack - Drag & Drop Clickjacking Tool

Jack – Drag & Drop Clickjacking Tool For PoCs

Jack is a Drag and Drop web-based Clickjacking Tool for the assistance of development in PoCs made with static HTML and JavaScript. Jack is web based and requires either a web server to serve its HTML and JS content or can be run locally. Typically something like Apache will suffice but anything that is able […]

Topic: Hacking Tools, Web Hacking
Another Week Another Mass Domain Hijacking

Another Week Another Mass Domain Hijacking

Following shortly after the .io domain cock-up that left thousands vulnerable to domain hijacking, this week more than 750 domains were jacked via registrar Gandi. Seems like some pretty sloppy administration going on, but that’s how business goes sadly security is still a very much reactive trade. People don’t enable strict controls and audit unless […]

Topic: Exploits/Vulnerabilities, Web Hacking
snitch - Information Gathering Tool Via Dorks

snitch – Information Gathering Tool Via Dorks

Snitch is an information gathering tool which automates the process for a specified domain. Using built-in dork categories, this tool helps gather specified information domains which can be found using web search engines. It can be quite useful in early phases of penetration tests (commonly called the Information Gathering phase). snitch can identify general information, […]

Topic: Hacking Tools, Privacy, Web Hacking
OneLogin Hack - Encrypted Data Compromised

OneLogin Hack – Encrypted Data Compromised

The OneLogin hack is blowing up now it seems like whoever got access can also decrypt encrypted customer data which is just about AS BAD as it can get for a password/identity management service. Now I’m a HUGE supporter of password management tools as I’ve mentioned many times here, so anyone who signed up for […]

Topic: Cryptography, Exploits/Vulnerabilities, Privacy, Web Hacking