Take it like a gift

jwt-heartbreaker
jwt-heartbreaker

Burp Suite extension to check JWT for using keys from known from public sources.

Linpmem
Linpmem

The Linux memory acquisition tool.

JNDI-Injection-Exploit
JNDI-Injection-Exploit

Generates JNDI links can start several servers to exploit JNDI Injection vulnerabilities.

co2
co2

A collection of enhancements for Portswigger's popular Burp Suite web penetration testing tool.

CertStealer
CertStealer

A .NET tool for exporting and importing certificates without touching disk.

codeql
codeql

Power security researchers around the world as well as code scanning.

ADenum
ADenum

Find misconfiguration through LDAP to exploit weaknesses with Kerberos.

keyhacks.sh
keyhacks.sh

Automation of tokens/api keys testing.

DNSExfiltrator
DNSExfiltrator

Data exfiltration over DNS request covert channel.

kerberoast
kerberoast

Series of tools for attacking MS Kerberos implementations.

archerysec
archerysec

Automate your application security orchestration and correlation (ASOC).

Kraken
Kraken

A modular multi-language webshell.

httpscreenshot
httpscreenshot

Grabs screenshots and HTML of large numbers of websites.

Scout
Scout

Discover a web server's undisclosed files, directories and VHOSTs.

haktrails
haktrails

Golang client for querying SecurityTrails API data.