Take it like a gift

Extension of sublister tool to check for subdomain takeovers.

Sharing knowledge that makes your life as bug hunters and pentesters easier.

Find potential software vulnerabilities from git commit messages.

A runtime mobile application analysis toolkit with a Web GUI.

A small library of powershell scripts for post exploitation that you may need or use!

Infect an existing Android application with a Meterpreter payload.

Scanning APK file for URIs, endpoints & secrets.

The rogue access point framework.

A Windows/Samba enumeration tool with additional features like JSON/YAML export.

Makes web screenshots and mobile emulations from the command line.

Continuous inspection.

JWT Support for Burp Suite.

Find origin servers of websites behind Cloudflare by using Internet-wide scan data from Censys.

JSON Beautifier for Burp written in Java.

Making favicon.ico based recon great again.