Take it like a gift

A free and open source Ruby toolkit for security research and development.

A mini webserver with FTP support for XXE payloads.

Dynamic instrumentation toolkit for developers, reverse-engineers, and security researchers.

Distribute the workload of many different scanning tools with ease.

CLI & library to search for default credentials among thousands of products/vendors.

A powerful and flexible HTTP reverse proxy.

Automated security reporting from markdown templates.

Exploit Kubernetes clusters misconfigurations and be the swiss army knife of your pentests.

A static-code-analysis tool for performing security-focused code reviews.

A Firefox/Burp Suite extension that provide usefull tools for your security audit.

A network sniffer that logs all DNS server replies for use in a passive DNS setup.

Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.

A self-hosted fuzzing-as-a-service platform.

Vulnerable application with a web service and an API.

A proxy aware C2 framework used to aid with post-exploitation and lateral movement.