Take it like a gift

Kubesploit
Kubesploit

Cross-platform command & control server and agent focused on containerized environments.

PwnFox
PwnFox

A Firefox/Burp Suite extension that provide usefull tools for your security audit.

BucketLoot
BucketLoot

An automated S3-compatible bucket inspector.

Corsy
Corsy

CORS Misconfiguration Scanner.

cadaver
cadaver

Command-line WebDAV client.

Burp-AnonymousCloud
Burp-AnonymousCloud

Performs passive scan to identify buckets and test them for publicly accessible vulnerabilities.

BurpSuiteHTTPSmuggler
BurpSuiteHTTPSmuggler

A Burp Suite extension to bypass WAFs or test their effectiveness using a number of techniques.

Burp NTLM Challenge Decoder
Burp NTLM Challenge Decoder

Burp extension to decode NTLM SSP headers and extract domain/host information.

bypasswaf
bypasswaf

Add headers to all Burp requests to bypass some WAF products.

Astra
Astra

Automated Security Testing For REST API's.

CDN Proxy
CDN Proxy

Create a copy of a targeted website with CDN and WAF restrictions disabled.

Amnesiac
Amnesiac

Post-exploitation framework designed to assist with lateral movement within Active Directory.

Can I take over XYZ?
Can I take over XYZ?

A list of services and how to claim (sub)domains with dangling DNS records.

assetfinder
assetfinder

Find domains and subdomains related to a given domain.

Apktool
Apktool

A tool for reverse engineering Android APK files.