Take it like a gift

Simple tool to look for common Nginx misconfigurations and vulnerabilities.

A Python script for AWS S3 bucket enumeration.

Monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

A cross-version Python bytecode decompiler.

Enumerate users, groups and computers from a Windows domain through LDAP queries.

Automation tool designed to enumerate subdomains and detect bugs using different open-source tools.

Detect, manage and exploit Blind Cross-site scripting (XSS) vulnerabilities.

Tunneling over websocket protocol - Static binary available.

Burp Suite Extension useful to verify OAUTHv2 and OpenID security.

Yet another (simple and lightweight) C2 framework.

An open source tool focused on software supply chain security.

Messy BurpSuite plugin for SQL Truncation vulnerabilities.

Script that dumps employee data from the LinkedIn social networking platform.

Collect a dossier on a person by username from thousands of sites.

Nikto for Windows with some extra features.