Take it like a gift

Krakatau
Krakatau

Java decompiler, assembler, and disassembler.

detectify-cves
detectify-cves

Find CVEs that don't have a Detectify modules.

SessionProbe
SessionProbe

Evaluate user privileges in web applications across a list of URLs.

GTFOBins
GTFOBins

Unix binaries that can be used to bypass local security restrictions in misconfigured systems.

dnswalk
dnswalk

A DNS database debugger.

CVEMap
CVEMap

Navigate the CVE jungle with ease using CLI tool designed to provide a structured interface.

CTFR
CTFR

Abusing Certificate Transparency logs for getting HTTPS websites subdomains.

dnsReaper
dnsReaper

Subdomain takeover tool for attackers, bug bounty hunters and the blue team!

ffufPostprocessing
ffufPostprocessing

Golang tool which helps dropping the irrelevant entries from your ffuf result file.

dot
dot

The Deepfake Offensive Toolkit.

Evil SQL Client
Evil SQL Client

Interactive .NET SQL console client with enhanced SQL Server discovery/access/exfiltration features.

DVenom
DVenom

Helps to bypass antiviruses by providing an encryption wrapper and loader for your shellcode.

findsecuritycontacts.com
findsecuritycontacts.com

Scans the top 500 sites daily for their security.txt file or DNS records.

Gowhois
Gowhois

Whois command implemented by golang with awesome whois servers list.

Dome
Dome

Script that makes active and/or passive scan to obtain subdomains and search for open ports.