Take it like a gift

Th3inspector
Th3inspector

All in one tool for Information Gathering.

HBSQLI
HBSQLI

Automated tool for testing header based blind SQL injection.

barq
barq

The AWS Cloud Post Exploitation framework!

exfilkit
exfilkit

Data exfiltration utility for testing detection capabilities.

FavFreak
FavFreak

Making favicon.ico based recon great again.

EAPHammer
EAPHammer

Targeted attacks against WPA2-Enterprise networks, wireless pivots using hostile portal attacks.

dvcs-ripper
dvcs-ripper

Rip web accessible version control systems: svn, git...

ADenum
ADenum

Find misconfiguration through LDAP to exploit weaknesses with Kerberos.

Auth Analyzer
Auth Analyzer

The Burp extension helps you to find authorization bugs.

InsiderPhD
InsiderPhD

InsiderPhD Youtube channel.

CeWLeR
CeWLeR

Custom word list generator redefined, based on the Scrapy framework.

API fuzzer
API fuzzer

Fuzz request attributes using common pentesting techniques and lists vulnerabilities.

fprobe
fprobe

Take a list of domains/subdomains and probe for working http/https server.

django-DefectDojo
django-DefectDojo

DevSecOps, ASPM, Vulnerability Management.

Hawkeye
Hawkeye

Filesystem analysis tool/directory looking for interesting stuff.