Take it like a gift

This extension will help you to detect GET/POST based XSS vulnerability in any website easily.

Toolkit to detect and keep track on Blind XSS, XXE & SSRF.

Advanced AWS access credentials scanner.

Tool for automating the search for IDOR vulnerabilities in web applications and APIs.

Automated security reporting from markdown templates.

Advanced discovery of Privileged Accounts, includes Shadow Admins.

Generates permutations, alterations and mutations of subdomains and then resolves them.

Gather information about the Active Directory and generates a report.

Generates gopher link for exploiting SSRF and gaining RCE in various servers.

This Burp Suite provides additional Scanner checks for AWS security issues.

Golang tool which helps dropping the irrelevant entries from your ffuf result file.

A powerful and user-friendly binary analysis platform.

Lateral movement graph for Azure Active Directory.

Standalone MITM attack framework allowing for the bypass of 2-factor authentication.

Reverse engineering and pentesting for Android applications.