Take it like a gift

Trishul
Trishul

Burp Suite Extension to hunt for common vulnerabilities found in websites.

Injectify
Injectify

Perform advanced MiTM attacks on websites with ease.

airgeddon
airgeddon

This is a multi-use bash script for Linux systems to audit wireless networks.

apk-mitm
apk-mitm

A CLI application that automatically prepares Android APK files for HTTPS inspection.

HackTricks
HackTricks

Find trick/technique/whatever learnt from CTFs, real life apps, reading researches, and news.

b374k
b374k

PHP Webshell with handy features.

GRecon
GRecon

Run a Google based passive recon against your scope.

bWAPP
bWAPP

An extremely buggy web application!.

Comperio
Comperio

OSINT tool to find usernames across 80+ social media and social networking sites.

bxss.net
bxss.net

Web service that allows for detection Blind XSS vulnerabilities within web applications.

gaussrf
gaussrf

Fetch known URLs from several sources and Filter Urls With OpenRedirection or SSRF Parameters.

JSONBee
JSONBee

A ready to use JSONP endpoints/payloads to help bypass Content Security Policy.

Arachni
Arachni

Web Application Security Scanner Framework.

AttifyOS
AttifyOS

Distribution for pentesting IoT devices.

Hackvertor
Hackvertor

Tag based conversion tool written in Java implemented as a Burp Suite extension.