Take it like a gift

steghide
steghide

Steganography program that hides secrets in the least significant bits of a file.

SubdomainFinder
SubdomainFinder

Find subdomains by searching public certificate records.

svn-extractor
svn-extractor

Simple script to extract all web resources by means of .SVN folder exposed over network.

subtake
subtake

Extension of sublister tool to check for subdomain takeovers.

SSH PuTTY login bruteforcer
SSH PuTTY login bruteforcer

A wrapper script which uses PuTTY to perform SSH login bruteforce attacks.

sqlmap
sqlmap

Automatic SQL injection and database takeover tool.

Sleepy Puppy
Sleepy Puppy

Sleepy Puppy XSS Payload Management Framework.

WhatBreach
WhatBreach

OSINT tool to find breached emails, databases, pastes, and relevant information.

HostileSubBruteforcer
HostileSubBruteforcer

Bruteforce existing subdomains and provide informations about them.

FastFuzz Chrome Extension
FastFuzz Chrome Extension

Site fast fuzzing with chorme extension.

wacker
wacker

A WPA3 dictionary cracker.

Fresh Resolvers
Fresh Resolvers

List of fresh DNS resolvers updated every 12h.

Security Monkey
Security Monkey

Monitor AWS, GCP, OpenStack, and GitHub orgs for assets and their changes over time.

BurpGPT
BurpGPT

A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan.

X8
X8

Hidden parameters discovery suite.