Take it like a gift

alterx
sponsor
alterx

Fast and customizable subdomain wordlist generator using DSL.

BitBlinder
BitBlinder

Injects custom XSS payloads on every form/request submitted to detect blind XSS.

git-wild-hunt
git-wild-hunt

A tool to hunt for credentials in GitHub wild AKA git*hunt.

s3cario
s3cario

Performs buckets checks from a given list of subdomains.

NMapify
NMapify

Quickly and accurately create a visual representation of their Nmap output.

droopescan
droopescan

A plugin-based scanner that aids security researchers in identifying issues with several CMSs.

waf-bypass
waf-bypass

Check your WAF before an attacker does.

airbash
airbash

Fully automated WPA PSK PMKID and handshake capture script.

autoSubTakeover
autoSubTakeover

A tool used to check if a CNAME resolves to the scope address.

PCAPdroid
PCAPdroid

No-root network monitor, firewall and PCAP dumper for Android.

moonwalk-back
moonwalk-back

Cover your tracks during Linux exploitation by leaving zero traces on the exploited system.

WitnessMe
WitnessMe

Web Inventory tool, takes screenshots and provides some extra bells&whistles to make life easier.

BugProve
BugProve

Automated firmware analysis tool for composition analysis and vulnerability scanning.

ufonet
ufonet

Denial of Service Toolkit.

B-XSSRF
B-XSSRF

Toolkit to detect and keep track on Blind XSS, XXE & SSRF.