Take it like a gift

Kraken
Kraken

A modular multi-language webshell.

rush
rush

A cross-platform command-line tool for executing jobs in parallel.

GhostTrack
GhostTrack

Useful tool to track location or mobile number.

SecretScanner
SecretScanner

Find secrets and passwords in container images and file systems.

Oculus
Oculus

OSINT tool used to discover environments, directories, and subdomains of a particular domain.

ClassyShark
ClassyShark

Android and Java bytecode viewer.

subHijack
subHijack

Hijacking forgotten & misconfigured subdomains.

Replicator
Replicator

Burp Suite extension to help developers replicate findings from pentests.

Moriarty
Moriarty

Designed to enumerate missing KBs, detect various vulnerabilities, and suggest potential.

lsassy
lsassy

Python tool to remotely extract credentials on a set of hosts.

burp-vulners-scanner
burp-vulners-scanner

Vulnerability scanner based on vulners.com search API.

GCPBucketBrute
GCPBucketBrute

Enumerate Google Storage buckets, check the access and if they can be privilege escalated.

lnkbomb
lnkbomb

Malicious shortcut generator for collecting NTLM hashes from insecure file shares.

S3Viewer
S3Viewer

Publicly open storage viewer.

ScopeHunter
ScopeHunter

Command-line tool for finding in-scope targets for bug bounty programs.