Take it like a gift

angularjs-csti-scanner
angularjs-csti-scanner

Automated client-side template injection detection for AngularJS.

CRLFsuite
CRLFsuite

The most powerful CRLF injection scanner.

Damn Vulnerable Bank
Damn Vulnerable Bank

A vulnerable Android application with an interface to test your mobile hacking skills.

Hack The Box
Hack The Box

Massive hacking playground, and infosec community.

falco
falco

Cloud native runtime security.

Charles
Charles

HTTP proxy / monitor / reverse proxy that allows to view all of the HTTP(S) traffic.

H1 Report Finder
H1 Report Finder

A burpsuite extension to find security reports published on HackerOne based on the selected host.

hakip2host
hakip2host

Takes a list of IP addresses then does a series of checks to return associated domain names.

GitTools
GitTools

A repository with 3 tools for pwn'ing websites with .git repositories available.

ffuf
ffuf

Fast web fuzzer written in Go.

HEKATOMB
HEKATOMB

Connects to LDAP directory to retrieve all computers and users informations.

AWSGoat
AWSGoat

A damn vulnerable AWS infrastructure.

DumpsterDiver
DumpsterDiver

Tool to search secrets in various filetypes.

Agartha
Agartha

Burp Suite extension for dynamic payload generation to detect injection flaws.

certSniff
certSniff

A certificate transparency log keyword sniffer written in Python.