Take it like a gift

TruffleHog
TruffleHog

Find credentials all over the place.

Spoofy
Spoofy

Checks if a list of domains can be spoofed based on SPF and DMARC records.

API fuzzer
API fuzzer

Fuzz request attributes using common pentesting techniques and lists vulnerabilities.

GoAltdns
GoAltdns

A permutation generation tool written in golang.

The PenTesters Framework
The PenTesters Framework

The Penetration Testers Framework (PTF) is a way for modular support for up-to-date tools.

Fuzzilli
Fuzzilli

A JavaScript Engine Fuzzer.

terraform
terraform

Enables you to safely and predictably create, change, and improve infrastructure.

GitHacker
GitHacker

A Git source leak exploit tool that restores the entire Git repository, including data from stash.

SimplyEmail
SimplyEmail

Email recon made fast and easy, with a framework to build on.

github-subdomains
github-subdomains

Find subdomains on GitHub.

gef
gef

A modern experience for GDB with advanced debugging capabilities.

DNSCewl
DNSCewl

A DNS bruteforcing wordlist generator.

sslscan
sslscan

Tests SSL/TLS enabled services to discover supported cipher suites.

sulley
sulley

A pure-python fully automated and unattended fuzzing framework.

getsploit
getsploit

Command line utility for searching and downloading exploits.