Take it like a gift

Server-Side Template Injection and Code Injection Detection and Exploitation Tool.

Perform periodic syncs of data sources and performing analysis on the identified results.

Burp Suite plugin to detect current and discover new WSDL files.

The class-leading vulnerability scanning, penetration testing, and web app security platform.

Another Subdomain ENumeration Tool.

Automated All-in-One OS Command Injection Exploitation Tool.

Try to find all subdomains, similar-domains and related-domains of an organization.

ScriptSentry finds misconfigured and dangerous logon scripts.

Exploit SQL Injection vulnerabilities on a web application that uses Microsoft SQL Server.

Secrets detection for your GitHub, GitLab and Bitbucket repositories.

Powerful open source XSS scanning tool and parameter analyzer.

Plugin-based tool to scan public version control systems for sensitive information.

Secret Detection Tool.

Analyze the security headers returned by a web page and report dangerous configurations.

Cli tool for Exploit-DB that also allows you to take a copy of Exploit Database with you.