Fast and customizable vulnerability scanner based on simple YAML based DSL.
A Burp Suite extension that brings taint analysis to web applications, by tracking all parameters.
Second-order subdomain takeover scanner.
Modular cross-platform Microsoft Graph API enumeration and exploitation toolkit.
This tool for brute discover GET and POST parameters.
A flexible tool for redirecting a given program's TCP traffic to SOCKS5 or HTTP proxy.
Continuous Fuzzing for Open Source Software.
Virtual machine for adversary emulation and threat hunting.
HTTP 403 bypass tool.
Go365 performs user enumeration and password guessing attacks on organizations that use Office365.
A Workflow Engine for Offensive Security
A suite of secret scanners built in Rust for performance.
Code Scanning/SAST/static analysis/linting using many tools/scanners with one report.
A tool for identifying misconfigured CloudFront domains.
Enumerate s3 buckets for a specific target.
