Fast and customizable subdomain wordlist generator using DSL.
Exfiltrate files from a target's Google Drive that you have access to, via Google's API.
Identify and fingerprint Web Application Firewall products protecting a website.
Crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more.
Multi Tool Subdomain Enumeration.
Burp Suite plugin to test for authorization flaws.
A .NET tool for exporting and importing certificates without touching disk.
OSINT tool to find usernames across 80+ social media and social networking sites.
OSINT tool used for web crawling or examining JavaScript files for likely useful data.
A default credential scanner.
Awesome cloud enumerator.
HTTP proxy / monitor / reverse proxy that allows to view all of the HTTP(S) traffic.
Route53/CloudFront Vulnerability assessment utility.
Burp Suite extension for dynamic payload generation to detect injection flaws.
Distribution for pentesting IoT devices.
