Take it like a gift

See-SURF
See-SURF

Detect Vulnerable SSRF parameters.

Go365
Go365

Go365 performs user enumeration and password guessing attacks on organizations that use Office365.

DOMPurify
DOMPurify

A DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG.

ActiveScan++
ActiveScan++

Extends Burp Suite's active and passive scanning capabilities.

Async DNS Brute
Async DNS Brute

DNS asynchronous brute force utility.

Atomic Red Team
Atomic Red Team

Small and highly portable detection tests based on MITRE's ATT&CK.

FireBounty
FireBounty

The ultimate Vulnerability Disclosure Policy and Bug Bounty list!

gef
gef

A modern experience for GDB with advanced debugging capabilities.

ACLight
ACLight

Advanced discovery of Privileged Accounts, includes Shadow Admins.

DNSExfiltrator
DNSExfiltrator

Data exfiltration over DNS request covert channel.

Angry IP Scanner
Angry IP Scanner

Fast and simple-to-use open-source/cross-platform network scanner.

LEAKEY
LEAKEY

Bash script which checks and validates for leaked credentials.

AzureADLateralMovement
AzureADLateralMovement

Lateral movement graph for Azure Active Directory.

Kraken
Kraken

A modular multi-language webshell.

Coerced potato
Coerced potato

A Windows potato to privesc.