Security Links
The Jupiter X Core plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 4.7.5. This is due to improper authentication via the Social Login widget. This makes it possible for unauthenticated attackers to log in as the first user to have logged in with a social media account, including administrator accounts. Attackers can exploit the vulnerability even if the Social Login element has been disabled, as long as it was previously enabled and used. The vulnerability was partially patched in version 4.7.5, and fully patched in version 4.7.8.
#TOOL
CyberChef

The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis.

https://gchq.github.io/CyberChef/
offsec.tools

A vast collection of security tools.

https://offsec.tools/
Subdomain Finder

A subdomain finder is a tool used to find the subdomains of a given domain.

https://subdomainfinder.c99.nl/
AtoZosint

A curated list for OSINT.

https://start.me/p/b5NOR6/atozosint
Malware Analysis Tools

Malware analysis tools list.

https://malwareanalysis.tools/
Malwarebytes Digital Footprint Portal

Scan exposed personal information via email address.

https://www.malwarebytes.com/digital-footprint-app
SecurityTrails

We offer robust APIs & data services for Security Teams worldwide.

https://securitytrails.com/
Object-See Foundation

At Objective-See our goal is simple, create free open-source security tools for macOS!

https://objective-see.org/index.html
Defuse Security

Defuse Security. Home of PIE Bin, TRENT, and more...

https://defuse.ca/
IP Subnet Calculator

This calculator returns a variety of information regarding Internet Protocol version 4 (IPv4) and IPv6 subnets including possible network addresses, usable host ranges, subnet mask, and IP class, among others.

https://www.calculator.net/ip-subnet-calculator.html
Redteam-Tools

Tools and Techniques for Red Team / Penetration Testing.

https://github.com/A-poc/RedTeam-Tools
Open Source Security Index

The Most Popular & Fastest Growing Open Source Security Projects on GitHub.

https://opensourcesecurityindex.io/
hackingtool

All in One Hacking tool For Hackers

https://github.com/Z4nzu/hackingtool
urlDNA

The DNA test for websites.

https://urldna.io/
KitPloit

Leading source of security tools, hacking tools, cybersecurity and network security. Learn about new tools and updates in one place.

https://www.kitploit.com/
Hak5

Hacking Tools & Media

https://hak5.org/
Beagle Security Web Application Vulnerabilities Index

The web application vulnerabilities index lists vulnerabilities according to its severity and is classified by the compliance standard it falls under.

https://beaglesecurity.com/blog/web-application-vulnerabilities-index.html
Flipper Zero

A portable multi-tool for pentesters and geeks in a toy-like body. It loves hacking digital stuff, such as radio protocols, access control systems, hardware, and more. It's fully open-source and customizable, so you can extend it in whatever way you like.

https://flipperzero.one/
Cybersecurity Stash

The Ultimate Cybersecurity Resource List. A curated directory of cybersecurity tools and resources for infosec professionals.

https://cybersecuritystash.com/
Ransomware Tool Matrix

A resource containing all the tools each ransomware gangs uses.

https://github.com/BushidoUK/Ransomware-Tool-Matrix
Pentest List

Pentest List is a curation of the latest top-rated tools and content in penetration testing and security defense. Discover cutting-edge tools, blogs, and more, covering port scanning, SQL injection, and a wide range of other vulnerability exploits.

https://pentestlist.com/
urlscan.io

Website scanner for suspicious and malicious URLs

https://urlscan.io/
phish.ly

Analyze suspicious emails with Tines & urlscan. Forward a suspicious email (or an .eml attachment) to scan@phish.ly, Tines will automatically analyze the URLs with urlscan and send you a report.

https://phish.ly/
Crontab.guru

The quick and simple editor for cron schedule expressions by Cronitor.

https://crontab.guru/