Take it like a gift

katana
sponsor
katana

A next-generation crawling and spidering framework.

Onex
Onex

Hacking tools installer and package manager for hackers.

403-bypasser
403-bypasser

A Burp Suite extension made to automate the process of bypassing 403 pages.

afrog
afrog

A vulnerability scanning tools for penetration testing.

DTD Finder
DTD Finder

List DTDs and generate XXE payloads using those local DTDs.

domain_hunter
domain_hunter

Try to find all subdomains, similar-domains and related-domains of an organization.

exiv2
exiv2

Image metadata library and tools.

certmon
certmon

A simple certificate expiration monitor script.

cloud_enum
cloud_enum

Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.

CloudFrunt
CloudFrunt

A tool for identifying misconfigured CloudFront domains.

evil SSDP
evil SSDP

Spoof SSDP replies to phish for credentials and NetNTLM challenge/response.

FavFreak
FavFreak

Making favicon.ico based recon great again.

Async DNS Brute
Async DNS Brute

DNS asynchronous brute force utility.

GTFOArgs
GTFOArgs

Unix binaries that can be manipulated for argument injection.

dvcs-ripper
dvcs-ripper

Rip web accessible version control systems: svn, git...