Welcome to The Forum

Register now to gain access to all of our features. Once registered and logged in, you will be able to create topics, post replies to

existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile

and so much more. This message will be removed once you have signed in.

Active Hackers

The best community of active hackers. This community has been working in hacking for more than 10 years.


Hacker Forum

Hacker from all countries join this community to share their knowledge and their hacking tools

    Hacking Tools

    You can find thousands of tools shared by hackers. RAT's, Bot's, Crypters FUD, Stealers, Binders, Ransomware, Mallware, Virus, Cracked Accounts, Configs, Guides, Videos and many other things.


      Become a Priv8 user and access all parts of the forum without restrictions and without limit of download. It only costs 100 dollars, and it will last you for a lifetime.

      Read Rules

      In this community we follow and respect rules, and they are the same for everyone, regardless of the user's rank. Read the rules well not to be prohibited.

      All Activity

      This stream auto-updates     

      1. Yesterday
      2. WordPress Power's WHOIS Domain Check plugin version 0.9.31 suffers from a persistent cross site scripting vulnerability. View the full article
      3. Webtareas versions 2.1 and 2.1p suffer from unauthenticated file uploads that allow for remote code execution and expose directory listings. View the full article
      4. Savsoft Quiz version 5 suffers from a persistent cross site scripting vulnerability. View the full article
      5. SuperMicro IPMI version 03.40 suffers from a cross site request forgery vulnerability. View the full article
      6. BSA Radar version 1.6.7234.24750 suffers from a cross site request forgery vulnerability. View the full article
      7. PHP version 7.4 FFI disable_functions bypass proof of concept exploit. View the full article
      8. itsMe

        Combos ~ [Dump,Mail-Access,Private]

        422K MIX Combolist [hide][Hidden Content]]
      9. [hide][Hidden Content]]
      10. Proxies: Yes Bots: 100 Email:Pass Capture: Plan / Expiry / Usable Days [hide][Hidden Content]]
      11. [hide][Hidden Content]]
      12. [hide][Hidden Content]]
      13. james bond

        x3 Nordvpn

        [Hidden Content]
      14. Intensio-Obfuscator Intensio-Obfuscator tool takes a python source code and transforms it into an obfuscated python code Replace all names of variables/classes/functions/files-name to random strings with a length defined and all chars to their hexadecimal value Remove all comments, all spaces lines Padding random scripts with always different values Changelog 07-09-2020 [upgrade] to version [fix] issue #53 [fix] issue #44 with pull request #52 [hide][Hidden Content]]
      15. itsMe


        HawkScan: Security Tool for Reconnaissance and Information Gathering on a website HawkScan Security Tool for Reconnaissance and Information Gathering on a website. (python 2.x & 3.x) This script uses “WafW00f” to detect the WAF in the first step. This script uses “Sublist3r” to scan subdomains. This script uses “waybacktool” to check in waybackmachine. Features URL fuzzing and dir/file detection Test backup/old file on all the files found (index.php.bak, index.php~ …) Check header information Check DNS information Check whois information User-agent random or personal Extract files Keep a trace of the scan Check @mail in the website and check if @mails leaked CMS detection + version and vulns Subdomain Checker Backup system (if the script stopped, it take again in the same place) WAF detection Add personal prefix Auto-update script Auto or personal output of scan (scan.txt) Check Github Recursive dir/file Scan with an authentication cookie Option –profil to pass profile page during the scan HTML report Work it with py2 and py3 Add option rate-limit if an app is unstable (–timesleep) Check-in waybackmachine Response error to WAF Check if DataBase firebase exist and accessible Automatic threads depending on the response to the website (and reconfig if WAF detected too many times). Max: 10 Search S3 buckets in source code page Testing bypass of waf if detected [hide][Hidden Content]]
      16. Last week
      17. [hide][Hidden Content]]
      18. [hide][Hidden Content]]
      19. [hide][Hidden Content]]
      20. [hide][Hidden Content]]
      21. [hide][Hidden Content]]
      22. [hide][Hidden Content]]
      23. [hide][Hidden Content]]
      24. [hide][Hidden Content]]
      25. [hide][Hidden Content]]
      26. bruninsneves

        EI Plus

        I need an EI Plus Brazil account, as I found no way to break it. It even serves as a guide for the accounts to be posted on the site, as it is a Brazilian account that broadcasts the Champions League [Hidden Content]
      27. WoWonder is a PHP Social Network Script, WoWonder is the best way to start your own social network website! WoWonder is fast, secured, and it will be regularly updated. Demo: [Hidden Content] [hide][Hidden Content]]
      1. Load more activity