Take it like a gift

ruler
ruler

A tool to abuse Exchange services.

MultiDump
MultiDump

Post-exploitation tool for dumping and extracting LSASS memory discreetly.

X8
X8

Hidden parameters discovery suite.

TLDHunt
TLDHunt

Domain availability checker.

Swagger Jacker
Swagger Jacker

Designed to assist with auditing of exposed Swagger/OpenAPI) definition files.

Sleepy Puppy
Sleepy Puppy

Sleepy Puppy XSS Payload Management Framework.

sonarqube
sonarqube

Continuous inspection.

ratproxy
ratproxy

A semi-automated largely passive web application security audit tool.

NetworkMiner
NetworkMiner

Network forensic analysis tool for Windows.

skipfish
skipfish

Active web application security reconnaissance tool.

SQLTruncSanner
SQLTruncSanner

Messy BurpSuite plugin for SQL Truncation vulnerabilities.

qsfuzz
qsfuzz

qsfuzz is a tool that allows to write simple rules in YAML that define what value to inject

Unforce
Unforce

Salesforce lightning recon and exploitation tool.

Aranea
Aranea

OSINT tool used for web crawling or examining JavaScript files for likely useful data.

mitmproxy
mitmproxy

An interactive TLS-capable intercepting HTTP proxy.