Take it like a gift

Filebuster
Filebuster

An extremely fast and flexible web fuzzer.

OpenBuckets
OpenBuckets

Online platform for finding open buckets in cloud storage systems effortlessly.

Mimicry
Mimicry

A dynamic deception tool that actively deceives an attacker.

mass-s3-bucket-tester
mass-s3-bucket-tester

Tests a list of s3 buckets to see if they have dir listings enabled or if they are uploadable.

postleaks
postleaks

Search for sensitive data in Postman public library.

mssqlproxy
mssqlproxy

Perform lateral movement in restricted environments through a compromised MSSQL Server.

PhoneSploit-Pro
PhoneSploit-Pro

Remotely exploit Android devices using ADB and Metasploit.

LinkedInDumper
LinkedInDumper

Script that dumps employee data from the LinkedIn social networking platform.

MANSPIDER
MANSPIDER

Spider entire networks for juicy files sitting on SMB shares.

Payloads All The Things
Payloads All The Things

A list of useful payloads and bypass for Web Application Security.

s3-buckets-finder
s3-buckets-finder

Find AWS S3 buckets and test their permissions.

PayGen
PayGen

Tool to generate stable undetected payload.

PortSwigger WebSecurity Academy
PortSwigger WebSecurity Academy

Free, online web security training from the creators of Burp Suite.

pivotnacci
pivotnacci

A tool to make socks connections through HTTP agents.

SSRFTest
SSRFTest

SSRF testing tool.