Take it like a gift

TIDoS
TIDoS

The offensive manual web application penetration testing framework.

Gopherus
Gopherus

Generates gopher link for exploiting SSRF and gaining RCE in various servers.

crawley
crawley

The unix-way web crawler.

Comperio
Comperio

OSINT tool to find usernames across 80+ social media and social networking sites.

cve
cve

Gather and update all available and newest CVEs with their PoC.

headi
headi

Customisable and automated HTTP header injection.

Haylxon
Haylxon

Blazing-fast tool to grab screenshots of your domain list right from terminal.

Hades
Hades

Go shellcode loader that combines multiple evasion techniques.

Altdns
Altdns

Generates permutations, alterations and mutations of subdomains and then resolves them.

a2sv
a2sv

Auto Scanning to SSL Vulnerability.

hardCIDR
hardCIDR

Discover the netblocks or ranges (in CIDR notation) owned by the target organization.

qsfuzz
qsfuzz

qsfuzz is a tool that allows to write simple rules in YAML that define what value to inject

phpsploit
phpsploit

Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor.

archerysec
archerysec

Automate your application security orchestration and correlation (ASOC).

HasMySecretLeaked
HasMySecretLeaked

Search across 20 million exposed secrets in public GitHub repositories, gists, issues and comments.