Take it like a gift

Naabu
sponsor
Naabu

A fast port scanner written in go with a focus on reliability and simplicity.

StaCoAn
StaCoAn

Crossplatform tool which help to perform static code analysis on mobile applications.

NoSQL Injector
NoSQL Injector

NoSql Injection CLI tool for finding vulnerable websites using MongoDB.

parameth
parameth

Brute discover GET and POST parameters.

Osmedeus
Osmedeus

A Workflow Engine for Offensive Security

Mimicry
Mimicry

A dynamic deception tool that actively deceives an attacker.

Lookyloo
Lookyloo

Allows users to capture a website page and then display a tree of domains that call each other.

mimikatz
mimikatz

A little tool to play with Windows security.

metasploitable
metasploitable

VM that is built from the ground up with a large amount of security vulnerabilities.

Nmap
Nmap

The network mapper.

lorsrf
lorsrf

Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load.

metahttp
metahttp

Script that automates the scanning of a target network for HTTP resources through XXE.

off-by-slash
off-by-slash

Burp extension to detect alias traversal via NGINX misconfiguration at scale.

orpheus
orpheus

Bypass Kerberoast detections with modified KDC options and encryption types.

mitmproxy
mitmproxy

An interactive TLS-capable intercepting HTTP proxy.