Take it like a gift

Designed to enable security teams to conduct advanced penetration tests with ease.

Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.

Pinpoint the security issues that actually matter.

Lists CVEs that are currently being discussed on the social network Mastodon.

A Burp Suite extension for finding the use of potentially dangerous methods/functions.

A Bash script and Docker image for Bug Bounty reconnaissance, intended for headless use.

Scans the history of GitHub repositories to find sensitive things.

A tool that can help detect and takeover subdomains with dead DNS records.

Filesystem analysis tool/directory looking for interesting stuff.

Utility for information gathering and penetration testing automation.

Windows persistence toolkit written in C#.

X-Forwarded-For [403 forbidden] enumeration.

Bruteforce and enumerate Active Directory accounts through Kerberos pre-authentication.

Checks if a list of domains can be spoofed based on SPF and DMARC records.

Exploit SQL Injection vulnerabilities on a web application that uses Microsoft SQL Server.