Take it like a gift

endext
endext

A tool for extracting all the possible endpoints from the JS files.

Go365
Go365

Go365 performs user enumeration and password guessing attacks on organizations that use Office365.

Hackvertor
Hackvertor

Tag based conversion tool written in Java implemented as a Burp Suite extension.

fuzzagotchi
fuzzagotchi

A fuzzing tool written in Go. It helps your pentesting journey.

GoLinkFinder
GoLinkFinder

A fast and minimal JS endpoint extractor.

bountyplz
bountyplz

Automated security reporting from markdown templates.

John Hammond
John Hammond

John Hammond YouTube channel.

Gorsair
Gorsair

Gives root access on remote docker containers that expose their APIs.

bounty-targets
bounty-targets

Crawls bug bounty platform scopes.

Bug Bounty Guide
Bug Bounty Guide

Launchpad for bug bounty programs and bug bounty hunters.

DeepSecrets
DeepSecrets

Secrets scanner that understands code.

adPEAS
adPEAS

Powershell tool to automate Active Directory enumeration.

lynis
lynis

Security auditing tool for Linux, macOS, and UNIX-based systems.

BlackWidow
BlackWidow

Web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

GoAltdns
GoAltdns

A permutation generation tool written in golang.