Take it like a gift

ScopeHunter
ScopeHunter

Command-line tool for finding in-scope targets for bug bounty programs.

Graphicator
Graphicator

Enumerate and extract GraphQL APIs.

IPRotate
IPRotate

Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.

AzureADLateralMovement
AzureADLateralMovement

Lateral movement graph for Azure Active Directory.

keyhacks.sh
keyhacks.sh

Automation of tokens/api keys testing.

DVRF
DVRF

The Damn Vulnerable Router Firmware project.

Core Impact
Core Impact

Designed to enable security teams to conduct advanced penetration tests with ease.

cloudflare-origin-ip
cloudflare-origin-ip

Try to find the origin IP of a webapp protected by Cloudflare.

FireShodanMap
FireShodanMap

Realtime map that integrates Firebase, Google Maps and Shodan.

graphql-armor
graphql-armor

The missing GraphQL security security layer.

JPEXS
JPEXS

Free Flash decompiler.

CertStealer
CertStealer

A .NET tool for exporting and importing certificates without touching disk.

Blacklist3r
Blacklist3r

Identify usage of pre-shared Machine Keys in a application for encryption and decryption.

DalFox
DalFox

Powerful open source XSS scanning tool and parameter analyzer.

Kwetza
Kwetza

Infect an existing Android application with a Meterpreter payload.