Take it like a gift

EndPointer
featured
EndPointer

An extension that auto extracts URLs from the current webpage and JS files.

ADReaper
ADReaper

Enumerate an Active Directory environment with LDAP queries.

github-subdomains
github-subdomains

Find subdomains on GitHub.

FOCA
FOCA

Tool to find metadata and hidden information in the documents.

EyeWitness
EyeWitness

Take screenshots of websites, provide server header info and identify default credentials.

DVCA
DVCA

Damn vulnerable cloud application.

Kage
Kage

Graphical user interface for Metasploit Meterpreter and session handler.

Eagle
Eagle

Vulnerability scanner for mass detection of web-based applications vulnerabilities.

Burp NTLM Challenge Decoder
Burp NTLM Challenge Decoder

Burp extension to decode NTLM SSP headers and extract domain/host information.

CVEMap
CVEMap

Navigate the CVE jungle with ease using CLI tool designed to provide a structured interface.

EarlyBird
EarlyBird

Sensitive data detection tool capable of scanning source code repositories.

ffuf
ffuf

Fast web fuzzer written in Go.

hakfindinternaldomains
hakfindinternaldomains

Feed it a list of subdomains, it will resolve them and tell you which ones are internal.

IntelSpy
IntelSpy

Perform automated network reconnaissance scans to gather network intelligence.

CloudGoat
CloudGoat

Vulnerable by design AWS deployment tool.