Take it like a gift

httpx
sponsor
httpx

HTTP toolkit that allows running multiple probes using the retryablehttp library.

DependencyCheck
DependencyCheck

Utility that detects publicly disclosed vulnerabilities in application dependencies.

DVCA
DVCA

Damn vulnerable cloud application.

bundler-audit
bundler-audit

Patch-level verification for Bundler.

Blacklist3r
Blacklist3r

Identify usage of pre-shared Machine Keys in a application for encryption and decryption.

Pymeta
Pymeta

Search the web for files on a domain to download and extract metadata.

Starkiller
Starkiller

Starkiller is a frontend for Empire.

Mosint
Mosint

An automated e-mail OSINT tool.

Luyten
Luyten

An Open Source Java Decompiler GUI for Procyon.

qsreplace
qsreplace

Accept URLs on stdin, replace all query string values with a user-supplied value.

merlin
merlin

Cross-platform post-exploitation HTTP/2 Command & Control server and agent.

NahamSec
NahamSec

NahamSec Twitch channel.

pphack
pphack

The most advanced client-side prototype pollution scanner.

scan-check-builder
scan-check-builder

Burp Suite extension which helps to improve the active and passive scanner by yourself.

MSSQLi-DUET
MSSQLi-DUET

SQL injection script for Microsoft SQL Server.