Take it like a gift

webscreenshot
webscreenshot

A simple script to screenshot a list of websites.

Donut
Donut

Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files.

ffuf
ffuf

Fast web fuzzer written in Go.

DNSExfiltrator
DNSExfiltrator

Data exfiltration over DNS request covert channel.

go-secdump
go-secdump

Tool to remotely dump secrets from the Windows registry.

DotDotPwn
DotDotPwn

The Directory Traversal Fuzzer.

csrf-scanner
csrf-scanner

CSRF Scanner Extension for Burp Suite Pro.

Go365
Go365

Go365 performs user enumeration and password guessing attacks on organizations that use Office365.

cloudflare-origin-ip
cloudflare-origin-ip

Try to find the origin IP of a webapp protected by Cloudflare.

kerberoast
kerberoast

Series of tools for attacking MS Kerberos implementations.

exiv2
exiv2

Image metadata library and tools.

fuxploider
fuxploider

File upload vulnerability scanner and exploitation tool.

HasMySecretLeaked
HasMySecretLeaked

Search across 20 million exposed secrets in public GitHub repositories, gists, issues and comments.

FOCA
FOCA

Tool to find metadata and hidden information in the documents.

dnsReaper
dnsReaper

Subdomain takeover tool for attackers, bug bounty hunters and the blue team!