Take it like a gift

xxeserv
xxeserv

A mini webserver with FTP support for XXE payloads.

SecretMagpie
SecretMagpie

Secret Detection Tool.

oxml_xxe
oxml_xxe

Embeds XXE/XML exploits into different filetypes.

Masscan
Masscan

TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.

MSSQLand
MSSQLand

Navigate and conquer Microsoft SQL Server servers and their linked instances.

OpenAPI
OpenAPI

Parse OpenAPI specifications into the BurpSuite for automating RESTful API testing.

snallygaster
snallygaster

Tool to scan for secret files on HTTP servers.

TugaRecon
TugaRecon

Subdomains enumeration tool for penetration testers.

timesketch
timesketch

Collaborative forensic timeline analysis.

Nimbostratus
Nimbostratus

Tool for fingerprinting and exploiting Amazon cloud infrastructures.

lnkbomb
lnkbomb

Malicious shortcut generator for collecting NTLM hashes from insecure file shares.

See-SURF
See-SURF

Detect Vulnerable SSRF parameters.

Spoofy
Spoofy

Checks if a list of domains can be spoofed based on SPF and DMARC records.

SQLiDetector
SQLiDetector

Helps you to detect SQL injection "Error based" by sending multiple requests.

testssl.sh
testssl.sh

Testing TLS/SSL encryption anywhere on any port.