Take it like a gift

MobSF
MobSF

All-in-one mobile application pentesting, malware analysis and security assessment framework.

Findomain
Findomain

The complete solution for domain recognition.

Autorize
Autorize

Automatic authorization enforcement detection extension for Burp Suite.

Canvas
Canvas

Assessment tool that allows penetration testing and hostile attack simulations.

GoLinkFinder
GoLinkFinder

A fast and minimal JS endpoint extractor.

GodPotato
GodPotato

Privilege escalation tool for Windows.

git-wild-hunt
git-wild-hunt

A tool to hunt for credentials in GitHub wild AKA git*hunt.

GraphQL Threat Matrix
GraphQL Threat Matrix

Threat framework to research security gaps in GraphQL implementations.

Headless Burp
Headless Burp

Provides a suite of extensions and a maven plugin to automate security tests using Burp Suite.

Filebuster
Filebuster

An extremely fast and flexible web fuzzer.

Kscan
Kscan

Kscan is an all-round scanner developed purely in Go, with functions such as port scanning, protocol.

Amass
Amass

In-depth Attack Surface Mapping and Asset Discovery.

jwtear
jwtear

Modular command-line tool to parse, create and manipulate JWT tokens.

BaRMIe
BaRMIe

Enumerating and attacking Java Remote Method Invocation services.

John Hammond
John Hammond

John Hammond YouTube channel.