Take it like a gift

certmitm
certmitm

A tool for testing for certificate validation vulnerabilities of TLS connections.

CypherDog
CypherDog

PowerShell Cmdlets to interact with BloodHound Data via Neo4j HTTP API.

sqlipy
sqlipy

Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.

SQLiDetector
SQLiDetector

Helps you to detect SQL injection "Error based" by sending multiple requests.

ClassyShark
ClassyShark

Android and Java bytecode viewer.

Damn Vulnerable RESTaurant
Damn Vulnerable RESTaurant

An intentionally vulnerable web API game for learning and training purposes.

SQLRecon
SQLRecon

A C# MS-SQL toolkit designed for offensive reconnaissance and post-exploitation.

Sn1per
Sn1per

Attack Surface Management Platform.

Smuggler
Smuggler

An HTTP Request Smuggling / Desync testing tool.

Apidor
Apidor

Tool for automating the search for IDOR vulnerabilities in web applications and APIs.

Donut
Donut

Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files.

Second Order
Second Order

Second-order subdomain takeover scanner.

sops
sops

Simple and flexible tool for managing secrets.

APKEnum
APKEnum

Passive enumeration utility For Android applications.

barq
barq

The AWS Cloud Post Exploitation framework!