Take it like a gift

Certipy
Certipy

Active Directory Certificate Services enumeration and abuse.

OneForAll
OneForAll

A powerful subdomain integration tool.

bbrf
bbrf

Help you coordinate your reconnaissance workflows across multiple devices.

As3nt
As3nt

Another Subdomain ENumeration Tool.

AndroSet
AndroSet

Manage Burp Suite certificate in Android to redirect all traffic to Burp Suite.

andor
andor

Blind SQL Injection Tool with Golang.

API fuzzer
API fuzzer

Fuzz request attributes using common pentesting techniques and lists vulnerabilities.

Apidor
Apidor

Tool for automating the search for IDOR vulnerabilities in web applications and APIs.

AhMyth Android RAT
AhMyth Android RAT

Android remote administration tool.

D3m0n1z3dShell
D3m0n1z3dShell

An advanced tool for persistence in Linux.

Core Impact
Core Impact

Designed to enable security teams to conduct advanced penetration tests with ease.

dnstwist_
dnstwist_

A tool to monitor for potential spear phishing domains and send to Slack.

AdvancedKeyHacks
AdvancedKeyHacks

API key/token exploitation made easy.

dnscan
dnscan

Python wordlist-based DNS subdomain scanner.

dontgo403
dontgo403

Tool to bypass 40X response codes.