Take it like a gift

Wayback Machine
Wayback Machine

Explore more than 778 billion web pages saved over time.

ipsourcebypass
ipsourcebypass

Bypass IP source restrictions using HTTP headers.

AWSGoat
AWSGoat

A damn vulnerable AWS infrastructure.

Apidor
Apidor

Tool for automating the search for IDOR vulnerabilities in web applications and APIs.

brutesubs
brutesubs

Automation framework for running multiple open sourced subdomain bruteforcing tools in parallel.

Burp Suite
Burp Suite

The class-leading vulnerability scanning, penetration testing, and web app security platform.

dnscan
dnscan

Python wordlist-based DNS subdomain scanner.

Hash Buster
Hash Buster

Crack hashes in seconds.

Infection Monkey
Infection Monkey

Test a data center's resiliency to perimeter breaches and internal server infection.

ADReaper
ADReaper

Enumerate an Active Directory environment with LDAP queries.

hakip2host
hakip2host

Takes a list of IP addresses then does a series of checks to return associated domain names.

API fuzzer
API fuzzer

Fuzz request attributes using common pentesting techniques and lists vulnerabilities.

Hollows Hunter
Hollows Hunter

Scans processes to detect and dump potentially malicious implants.

Hijacker
Hijacker

GUI for the penetration testing tools Aircrack-ng, Airodump-ng, MDK3 and Reaver.

cero
cero

Scrape domain names from SSL certificates of arbitrary hosts.