Take it like a gift

shuffleDNS
sponsor
shuffleDNS

Enumerate valid subdomains using active bruteforce and DNS resolution.

Sublist3r
Sublist3r

Fast subdomains enumeration tool for penetration testers.

Tool WPXStrike
Tool WPXStrike

Escalate a Cross-Site Scripting vulnerability to Remote Code Execution in WordPress.

ThievingFox
ThievingFox

Post-exploitation tools to gather credentials from various password managers and Windows utilities.

SecretFinder
SecretFinder

SecretFinder is a script based on LinkFinder, written to find sensitive data in JavaScript files.

Zphisher
Zphisher

An automated phishing tool with 30+ templates.

SubScraper
SubScraper

Perform subdomain enumeration through various techniques and retrieve detailed output.

WifiPass
WifiPass

A simple wireless networks penetration testing toolkit.

ScriptSentry
ScriptSentry

ScriptSentry finds misconfigured and dangerous logon scripts.

vcsmap
vcsmap

Plugin-based tool to scan public version control systems for sensitive information.

shhgit
shhgit

Secrets detection for your GitHub, GitLab and Bitbucket repositories.

Sshimpanzee
Sshimpanzee

Reverse shell based on sshd supporting DNS and ICMP tunnelling as well as HTTP and Socks proxies.

SMBAT
SMBAT

Find secrets in file and secret files among the SMB target shares.

server-side-prototype-pollution
server-side-prototype-pollution

Identifies server-side prototype pollution vulnerabilities.

XSSCon
XSSCon

Simple XSS Scanner tool.