Take it like a gift

Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.

Network brute force tool, faster than other existing solutions.

Grabs screenshots and HTML of large numbers of websites.

Check for and exploit LFI vulnerabilities with a focus on PHP systems.

The Swiss Army knife for automated Web Application Testing

Powerful and user-friendly password hunting tool.

Turn single threaded command line applications into a fast, multi-threaded application.

A vulnerability scanning tools for penetration testing.

A shiny new copy of Chromium that will bring colors in your hunt.

Burp extension to decode NTLM SSP headers and extract domain/host information.

Android remote administration tool.

Extract subdomains from SSL certificates in HTTPS sites.

S3 bucket finder from html,js and bucket misconfiguration testing tool.

Customisable and automated HTTP header injection.

A standalone Java decompiler GUI.