Take it like a gift

J2EEScan
J2EEScan

Improve the test coverage during web application penetration tests on J2EE applications.

FestIN
FestIN

The powered S3 bucket finder and content discover.

dumpcreds
dumpcreds

May be used to extract various credentials from running processes.

eos
eos

Enemies Of Symfony - debug mode Symfony looter.

Awesome-CobaltStrike
Awesome-CobaltStrike

List of awesome CobaltStrike resources.

bxss.net
bxss.net

Web service that allows for detection Blind XSS vulnerabilities within web applications.

brutesubs
brutesubs

Automation framework for running multiple open sourced subdomain bruteforcing tools in parallel.

airgeddon
airgeddon

This is a multi-use bash script for Linux systems to audit wireless networks.

MANSPIDER
MANSPIDER

Spider entire networks for juicy files sitting on SMB shares.

EMBA
EMBA

The security analyzer for firmware of embedded devices.

ExifTool
ExifTool

ExifTool meta information reader/writer.

dufflebag
dufflebag

Search exposed EBS volumes for secrets.

msfpc
msfpc

A quick way to generate various basic Meterpreter payloads via MSFvenom.

amap
amap

Identify applications even if they are running on a different port than normal.

Mosint
Mosint

An automated e-mail OSINT tool.