Take it like a gift

NSBrute
NSBrute

Python utility to takeover domains vulnerable to AWS NS Takeover.

ParamSpider
ParamSpider

Mining parameters from dark corners of Web Archives.

p0f
p0f

Identify the operating system of a target host simply by examining captured packets.

Onex
Onex

Hacking tools installer and package manager for hackers.

OAUTHScan
OAUTHScan

Burp Suite Extension useful to verify OAUTHv2 and OpenID security.

lnkbomb
lnkbomb

Malicious shortcut generator for collecting NTLM hashes from insecure file shares.

Mr.SIP
Mr.SIP

SIP-based audit and attack tool.

Mosint
Mosint

An automated e-mail OSINT tool.

param-miner
param-miner

Identifies hidden, unlinked parameters, useful for finding web cache poisoning vulnerabilities.

msLDAPDump
msLDAPDump

LDAP enumeration tool implemented in Python3.

OrbitalDump
OrbitalDump

A simple multi-threaded distributed SSH brute-forcing tool.

padding-oracle-attacker
padding-oracle-attacker

Execute padding oracle attacks with support for concurrent network requests and an elegant UI.

s3-buckets-finder
s3-buckets-finder

Find AWS S3 buckets and test their permissions.

Pacu
Pacu

The exploitation framework designed for testing the security of AWS environments.

Nishang
Nishang

Offensive PowerShell for red team, penetration testing and offensive security.