Take it like a gift

mfoc
mfoc

Mifare classic offline cracker.

VBad
VBad

VBA obfuscation tools combined with an MS Office document generator .

CMSmap
CMSmap

CMS scanner that automates the process of detecting security flaws of the most popular CMSs.

Dirstalk
Dirstalk

Multi threaded application designed to brute force paths on web servers.

CSRFT
CSRFT

A lightweight CSRF Toolkit for easy Proof of Concept.

jwt-hack
jwt-hack

JWT encoding/decoding, generates payloads for JWT attack and very fast cracking.

Scout
Scout

Discover a web server's undisclosed files, directories and VHOSTs.

Burp-Wordlist-Generator
Burp-Wordlist-Generator

Generates wordlists from the Burp sitemap.

Infoga
Infoga

Email OSINT.

DVRF
DVRF

The Damn Vulnerable Router Firmware project.

CUPP
CUPP

Common User Passwords Profiler.

s3cXSSer
s3cXSSer

This extension will help you to detect GET/POST based XSS vulnerability in any website easily.

CloudJack
CloudJack

Route53/CloudFront Vulnerability assessment utility.

Nmap-API
Nmap-API

Create a Nmap API that can do scans with a good speed online and is easy to deploy.

gateway-finder
gateway-finder

Identify routers on the local LAN and paths to the Internet.