Take it like a gift

DVWS
DVWS

Vulnerable application with a web service and an API.

bounty-targets-data
bounty-targets-data

Hourly-updated data dumps of bug bounty platform scopes that are eligible for reports.

CDK
CDK

Make security testing of K8s, Docker, and Containerd easier.

Kage
Kage

Graphical user interface for Metasploit Meterpreter and session handler.

BugProve
BugProve

Automated firmware analysis tool for composition analysis and vulnerability scanning.

Bucket Stream
Bucket Stream

Find interesting Amazon S3 Buckets by watching certificate transparency logs.

Supernova
Supernova

Real fucking shellcode encryptor & obfuscator tool.

BurpJSLinkFinder
BurpJSLinkFinder

Burp Extension for a passive scanning JS files for endpoint links.

harpoon
harpoon

CLI tool for open source and threat intelligence.

lazys3
lazys3

Ruby script to bruteforce for AWS s3 buckets using different permutations.

LibAFL
LibAFL

Advanced fuzzing librar. Slot your fuzzers together and extend their features using Rust.

House
House

A runtime mobile application analysis toolkit with a Web GUI.

Starkiller
Starkiller

Starkiller is a frontend for Empire.

tko-subs
tko-subs

A tool that can help detect and takeover subdomains with dead DNS records.

sslscan
sslscan

Tests SSL/TLS enabled services to discover supported cipher suites.