![](https://assets.offsec.tools/tools/unix-privesc-check-5942.png) |
|
unix-privesc-check |
|
Shell script to check for simple privilege escalation vectors on Unix systems. |
|
|
|
|
![](https://assets.offsec.tools/tools/git-wild-hunt-3563.jpeg) |
|
git-wild-hunt |
|
A tool to hunt for credentials in GitHub wild AKA git*hunt. |
|
|
![](https://assets.offsec.tools/tools/jwt-tool-4742.png) |
|
JWT Tool |
|
A toolkit for testing, tweaking and cracking JSON Web Tokens. |
|
|
![](https://assets.offsec.tools/tools/rusty-hog-3082.png) |
|
Rusty Hog |
|
A suite of secret scanners built in Rust for performance. |
|
|
![](https://assets.offsec.tools/tools/bypasswaf-8542.png) |
|
bypasswaf |
|
Add headers to all Burp requests to bypass some WAF products. |
|
|
![](https://assets.offsec.tools/tools/shodan-9997.png) |
|
Shodan |
|
Search engine for Internet-connected devices. |
|
|
![](https://assets.offsec.tools/tools/jok3r-7062.png) |
|
jok3r |
|
Network and Web Pentest Automation Framework. |
|
|
|
|
![](https://assets.offsec.tools/tools/http-request-smuggler-4255.png) |
|
HTTP Request Smuggler |
|
Extension for Burp Suite designed to help you launch HTTP Request Smuggling attacks. |
|
|