Take it like a gift

Nuclei templates
sponsor
Nuclei templates

Community curated list of templates for the Nuclei engine to find security vulnerabilities.

katana
sponsor
katana

A next-generation crawling and spidering framework.

RDP Scraper
RDP Scraper

Enumerates users based off RDP Screenshots.

s3-buckets-finder
s3-buckets-finder

Find AWS S3 buckets and test their permissions.

jackdaw
jackdaw

Gather gather gather.

MalwareSourceCode
MalwareSourceCode

Collection of malware source code for a variety of platforms in an array of different programming la.

CRYPTOHACK
CRYPTOHACK

A fun, free platform for learning modern cryptography.

Ronin
Ronin

A free and open source Ruby toolkit for security research and development.

DVWS
DVWS

Vulnerable application with a web service and an API.

ratproxy
ratproxy

A semi-automated largely passive web application security audit tool.

WebGoat
WebGoat

Deliberately insecure application.

CRLFsuite
CRLFsuite

The most powerful CRLF injection scanner.

mass-s3-bucket-tester
mass-s3-bucket-tester

Tests a list of s3 buckets to see if they have dir listings enabled or if they are uploadable.

kerberoast
kerberoast

Series of tools for attacking MS Kerberos implementations.

exiv2
exiv2

Image metadata library and tools.