Take it like a gift

Burp-Encode-IP
Burp-Encode-IP

Burp Suite extension to encode an IP address focused to bypass application IP/domain blacklist.

PayGen
PayGen

Tool to generate stable undetected payload.

HackTricks
HackTricks

Find trick/technique/whatever learnt from CTFs, real life apps, reading researches, and news.

xsscrapy
xsscrapy

Fast, thorough, XSS/SQLi spider.

SSRFmap
SSRFmap

Automatic SSRF fuzzer and exploitation tool.

vaf
vaf

Cross-platform very advanced and fast web fuzzer written in nim.

Faraday security
Faraday security

Open source sulnerability management and orchestration platform.

SharpHose
SharpHose

Asynchronous password spraying tool for Windows environments.

ScriptSentry
ScriptSentry

ScriptSentry finds misconfigured and dangerous logon scripts.

holehe
holehe

Check if the mail is used on different sites and retrieve informations on sites.

codeql
codeql

Power security researchers around the world as well as code scanning.

0d1n
0d1n

Tool for automating customized attacks against web applications.

secbutler
secbutler

The perfect butler for pentesters, bug-bounty hunters and security researchers.

ASNLookup
ASNLookup

Leverage ASN to look up IP addresses owned by a specific organization.

vcsmap
vcsmap

Plugin-based tool to scan public version control systems for sensitive information.