Take it like a gift

headi
headi

Customisable and automated HTTP header injection.

Amnesiac
Amnesiac

Post-exploitation framework designed to assist with lateral movement within Active Directory.

nmap-query-xml
nmap-query-xml

A simple program to query nmap XML files in the terminal.

LDAP Password Hunter
LDAP Password Hunter

Password Hunter in active directory.

Hijacker
Hijacker

GUI for the penetration testing tools Aircrack-ng, Airodump-ng, MDK3 and Reaver.

PyShell
PyShell

Multiplatform Python webshell.

HTSHELLS
HTSHELLS

Self contained web shells and other attacks via .htaccess files.

airbash
airbash

Fully automated WPA PSK PMKID and handshake capture script.

waybackurls
waybackurls

Fetch all the URLs that the Wayback Machine knows about for a domain.

Klyda
Klyda

Highly configurable script for dictionary/spray attacks against online web applications.

Caldera
Caldera

Automated adversary emulation platform.

ligolo
ligolo

Reverse tunneling made easy for pentesters.

CDK
CDK

Make security testing of K8s, Docker, and Containerd easier.

Tamper Dev
Tamper Dev

Allows you to intercept and edit HTTP/HTTPS requests and responses.

The Time Machine
The Time Machine

Weaponizing WaybackUrls for recon, bug bounties, OSINT, sensitive endpoints and what not.