Take it like a gift

Chaos
sponsor
Chaos

Collect and maintain internet-wide assets data for public Bug Bounty programs.

gittyleaks
gittyleaks

Find sensitive information for a git repo.

LOOBins
LOOBins

Living Off the Orchard: macOS Binaries.

grafana-ssrf
grafana-ssrf

Authenticated SSRF in Grafana.

HTTP-traceroute
HTTP-traceroute

HTTP-traceroute in Go.

burp-exporter
burp-exporter

Copy a Burp Suite request to a file or the clipboard as multiple programming languages functions.

Legitify
Legitify

Detect misconfigurations and security risks across GitHub and GitLab assets.

boofuzz
boofuzz

Network protocol fuzzing for humans.

Dastardly Scan Action
Dastardly Scan Action

Runs a scan using Dastardly by Burp Suite against a target site and generates a report.

clair
clair

Vulnerability static analysis for containers.

clairvoyance
clairvoyance

Obtain GraphQL API Schema even if the introspection is not enabled.

CRLFuzz
CRLFuzz

A fast tool to scan CRLF vulnerability written in Go.

authz
authz

Burp Suite plugin to test for authorization flaws.

adPEAS
adPEAS

Powershell tool to automate Active Directory enumeration.

CLZero
CLZero

A project for fuzzing HTTP/1.1 CL.0 Request Smuggling attack vectors.