Take it like a gift

Jaeles
Jaeles

The Swiss Army knife for automated Web Application Testing

personal-security-checklist
personal-security-checklist

A compiled checklist of 300+ tips for protecting digital security and privacy.

pyfiscan
pyfiscan

Free web-application vulnerability and version scanner.

Qualys Cloud Platform
Qualys Cloud Platform

The revolutionary architecture that powers Qualys' IT, security, and compliance cloud apps.

PowerUpSQL
PowerUpSQL

A PowerShell toolkit for attacking SQL Server.

ratproxy
ratproxy

A semi-automated largely passive web application security audit tool.

PortSwigger WebSecurity Academy
PortSwigger WebSecurity Academy

Free, online web security training from the creators of Burp Suite.

SBOMb
SBOMb

SBOM parser that performs cursory vulnerability assessment.

scan-check-builder
scan-check-builder

Burp Suite extension which helps to improve the active and passive scanner by yourself.

PhoneInfoga
PhoneInfoga

Information gathering framework for phone numbers.

Scilla
Scilla

Information Gathering tool - DNS / Subdomains / Ports / Directories enumeration.

Pop
Pop

Send emails from your terminal.

RADAR
RADAR

Identify technologies and services used by domains through their DNS footprints.

ScareCrow
ScareCrow

Payload creation framework designed around EDR bypass.

s3tk
s3tk

A security toolkit for Amazon S3.