Take it like a gift

XXElixir
XXElixir

This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.

FireShodanMap
FireShodanMap

Realtime map that integrates Firebase, Google Maps and Shodan.

detect-secrets
detect-secrets

An enterprise friendly way of detecting and preventing secrets in code.

Arsenal
Arsenal

Just a quick inventory, reminder and launcher for pentest commands.

DefaultPassword
DefaultPassword

Default passwords database sorted by manufacturers.

CypherDog
CypherDog

PowerShell Cmdlets to interact with BloodHound Data via Neo4j HTTP API.

DumpsterDiver
DumpsterDiver

Tool to search secrets in various filetypes.

APTRS
APTRS

Automated penetration testing reporting system.

Dismap
Dismap

Asset discovery and identification tool.

DEFCON
DEFCON

The world’s most prominent and well-known computer security conferences.

dnstwist
dnstwist

Domain name permutation engine for detecting several types of attacks.

dsniff
dsniff

Collection of tools for network auditing and penetration testing.

bore
bore

A simple CLI tool for making tunnels to localhost.

bucket_finder
bucket_finder

DigiNinja's bucket_finder utility.

Angry IP Scanner
Angry IP Scanner

Fast and simple-to-use open-source/cross-platform network scanner.