Take it like a gift

c{api}tal
featured
c{api}tal

A built-to-be-vulnerable API application based on the OWASP top 10 API vulnerabilities.

cariddi
cariddi

Crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more.

GoPhish
GoPhish

Open-source phishing toolkit.

Burp NTLM Challenge Decoder
Burp NTLM Challenge Decoder

Burp extension to decode NTLM SSP headers and extract domain/host information.

BurpSmartBuster
BurpSmartBuster

A Burp Suite content discovery plugin that add the smart into the Buster.

Wayback Machine
Wayback Machine

Explore more than 778 billion web pages saved over time.

BruteXSS
BruteXSS

Tool written in Python simply to find XSS vulnerabilities in web application.

avet
avet

AntiVirus Evasion Tool.

NipeJS
NipeJS

Simplify your life with leak detection in JavaScript, NipeJS streamlines the use of regex, making it.

pmd
pmd

An extensible multilanguage static code analyzer.

brute ratel
brute ratel

A customized command and control center for red team and adversary simulation.

Maltego
Maltego

Open source intelligence and forensics application.

Apktool
Apktool

A tool for reverse engineering Android APK files.

msldap
msldap

LDAP library for auditing Microsoft Active Directory.

NahamSec
NahamSec

NahamSec Twitch channel.