Take it like a gift

XFFenum
XFFenum

X-Forwarded-For [403 forbidden] enumeration.

ScriptSentry
ScriptSentry

ScriptSentry finds misconfigured and dangerous logon scripts.

SiteBroker
SiteBroker

Utility for information gathering and penetration testing automation.

w3af
w3af

Web Application Attack and Audit Framework.

DNSCewl
DNSCewl

A DNS bruteforcing wordlist generator.

Burp-AnonymousCloud
Burp-AnonymousCloud

Performs passive scan to identify buckets and test them for publicly accessible vulnerabilities.

gitscraper
gitscraper

Scrapes public GitHub repositories for common naming conventions in variables, folders and files.

wifite
wifite

Runs existing wireless-auditing tools for you. Stop memorizing command arguments & switches!

capa
capa

The FLARE team's open-source tool to identify capabilities in executable files.

Unredacter
Unredacter

Never ever ever use pixelation as a redaction technique.

commit-stream
commit-stream

OSINT tool for finding Github repositories by extracting commit logs in real time.

webscreenshot
webscreenshot

A simple script to screenshot a list of websites.

celerystalk
celerystalk

An asynchronous enumeration & vulnerability scanner.

Coerced potato
Coerced potato

A Windows potato to privesc.

bundler-audit
bundler-audit

Patch-level verification for Bundler.