Take it like a gift

IntelOwl
IntelOwl

Manage your threat intelligence at scale.

subzy
subzy

Subdomain takeover vulnerability checker.

SecretScanner
SecretScanner

Find secrets and passwords in container images and file systems.

LinEnum
LinEnum

Scripted Local Linux Enumeration & Privilege Escalation Checks.

GraphQL Beautifier
GraphQL Beautifier

Burp Suite extension to help make Graphql request more readable.

Smuggler
Smuggler

An HTTP Request Smuggling / Desync testing tool.

Slack Watchman
Slack Watchman

Monitoring your Slack workspaces for sensitive informations.

Quasar
Quasar

Remote administration tool for Windows.

FlowMate
FlowMate

A Burp Suite extension that brings taint analysis to web applications, by tracking all parameters.

SMBetray
SMBetray

Attack clients through file content swapping and compromise any data passed in cleartext.

domain_hunter
domain_hunter

Try to find all subdomains, similar-domains and related-domains of an organization.

lnkbomb
lnkbomb

Malicious shortcut generator for collecting NTLM hashes from insecure file shares.

Aquatone
Aquatone

A Tool for Domain Flyovers.

JSONBee
JSONBee

A ready to use JSONP endpoints/payloads to help bypass Content Security Policy.

Burp-to-SQLMap
Burp-to-SQLMap

Performing SQLInjection test on Burp Suite Bulk Requests using SQLMap.