Windows
Understanding What IP, Port, and Protocol Is
This topic focuses on understanding the definitions of IP addresses, ports, and protocols, the differences between each of them, as well as commonly used standard ports and the network services that operate on those ports.
By SysAlbania in Latest Tutorials, Windows, Network Security
EternalBlue Exploit Analysis – Runbook
This runbook details a hands-on simulation of exploiting the EternalBlue vulnerability (CVE-2017-0144), targeting an unpatched Windows 7 machine in a controlled lab environment using Metasploit.
By SysAlbania in Exploits, Windows
Popular Articles
EternalBlue Exploit Analysis – Runbook
This runbook details a hands-on simulation of exploiting the EternalBlue vulnerability (CVE-2017-0144), targeting an unpatched Windows 7 machine in a controlled lab environment using Metasploit.
Understanding What IP, Port, and Protocol Is
This topic focuses on understanding the definitions of IP addresses, ports, and protocols, the differences between each of them, as well as commonly used standard ports and the network services that operate on those ports.
Latest Resources
TheFatRat
TheFatRat is an exploiting tool which compiles a malware with famous payload, and then the compiled maware can be executed on Linux , Windows , Mac and Android. TheFatRat Provides An Easy way to create Backdoors and Payload which can bypass most anti-virus.
Exploiting Tool
Brutal
Payload for teensy like a rubber ducky but the syntax is different. this Human interfaes device (HID attacks ). Penetration With Teensy. Brutal is a toolkit to quickly create various payload, powershell attack, virus attack and launch listener for a Human Interface Device (Payload Teensy) All content shared is strictly for educational and awareness purposes. I do not promote, engage in, or encourage any illegal activities. Use the information responsibly and in compliance with applicable laws.
Brute force
Exploit Eye - CVE and Vulnerability Search Tool for Ethical Hackers
When you’re hunting for vulnerabilities, you jump between three different websites. NVD for CVE data. Exploit-DB for working exploits. GitHub for proof-of-concept code. That’s annoying. You lose time. You miss things. I built Exploit Eye to fix that. The Problem Here’s what happens when you research a vulnerability. You find a CVE number somewhere. CVE-2025-1234, for example. First, you check the National Vulnerability Database. You find details there. Severity scores. Affected versions. The description tells you what’s vulnerable. But no exploit code. For that, you need Exploit-DB. So you open Exploit-DB in another tab. Search again. Maybe you find an exploit. Maybe you don’t. Then you want to see if someone made a tool for it. Off to GitHub. Third search. Third tab. Three searches. Every single vulnerability. That gets old fast when you’re doing actual security research. What Exploit Eye Does Exploit Eye searches all three at once. One keyword, complete results. Type “apache” and get: All Apache CVEs from NVD CVSS scores and severity ratings Direct links to Exploit-DB exploits GitHub repositories with security tools One search. Everything you need. Features → Search latest critical CVEs (last 7 days) → Search CVEs by keyword or vendor/product → Get detailed CVE information with CVSS scores → Search Exploit-DB for working exploits → Search GitHub for POCs and security tools → Clean terminal output with direct links Use it for ethical hacking, penetration testing, bug bounty hunting, security research, vulnerability tracking. How It Works Run the tool. You get a menu with six options. [1] Latest Critical CVEs Shows the vulnerabilities discovered in the last 7 days that are rated critical. Check this regularly. This is what attackers are looking at right now. [2] Search CVEs by Keyword Your main search option. Type anything - “apache”, “wordpress”, “windows privilege escalation”. Get every related CVE. [3] Search CVEs by Vendor/Product Same as option 2, but focused on specific vendors. Microsoft vulnerabilities, Cisco products, whatever you need. [4] Get Specific CVE Details For when you have the CVE number. CVE-2025-1234, for example. Get full description, CVSS score, severity rating, direct links to exploits and GitHub POCs. [5] Search Exploit-DB Searches Exploit-DB for working exploit code. Direct links to exploits you can use. Finding the vulnerability is one thing. Getting the code that exploits it is what matters. [6] Search GitHub for Tools/Exploits Searches GitHub for security tools, proof-of-concept code, exploit frameworks. Sorted by stars so you see what the community uses. Installation Exploit Eye has been tested on Linux (Kali, Parrot, Ubuntu, Debian, Arch). Should work on most systems with Python 3. 1 2 3 4 5 6 git clone https://github.com/BullsEye0/exploit-eye.git cd exploit-eye python3 -m venv venv source venv/bin/activate pip3 install -r requirements.txt python3 exploit-eye.py
OSINT
Darkdump
Darkdump is a OSINT interface for carrying out deep web investgations written in python in which it allows users to enter a search query in which darkdump provides the ability to scrape .onion sites relating to that query to try to extract emails, metadata, keywords, images, social media etc. Darkdump retrieves sites via Ahmia.fi and scrapes those .onion addresses when connected via the tor network.
OSINT
ProxManager - Proxmox VM Manager
A native desktop application built with Python and PyQt5 for quick monitoring and management of virtual machines (VMs) hosted on a Proxmox node. It's designed for users who need an instant view of server metrics and operational control over their VMs without having to access the full web interface.
Programming