Take it like a gift

zarp
zarp

Network attack tool.

WPSpider
WPSpider

A centralized dashboard for running and scheduling WordPress scans powered by WPScan utility.

SysReptor
SysReptor

Easy and customisable pentest report creator based on simple web technologies.

sqli-labs
sqli-labs

SQLI labs to test error based, blind boolean based, time based.

sshLooter
sshLooter

Script to steal passwords from ssh.

tun2socks
tun2socks

Handle all network traffic of any internet programs sent by the device through a proxy.

Sshimpanzee
Sshimpanzee

Reverse shell based on sshd supporting DNS and ICMP tunnelling as well as HTTP and Socks proxies.

subjs
subjs

Fetches javascript file from a list of URLS or subdomains.

SSRF Detector
SSRF Detector

Server-side request forgery detector.

XVWA
XVWA

A badly coded web application that helps security enthusiasts to learn application security.

trackerjacker
trackerjacker

Like nmap for mapping wifi networks you're not connected to, plus device tracking.

van-gonography
van-gonography

Hide any type of files inside a image of your choice using steganography.

Injectify
Injectify

Perform advanced MiTM attacks on websites with ease.

Extended SSRF search
Extended SSRF search

Smart SSRF scanner using different methods like parameter brute forcing in POST and GET.

VBad
VBad

VBA obfuscation tools combined with an MS Office document generator .