Take it like a gift

reDuh
reDuh

Create a TCP circuit through validly formed HTTP requests.

bxss.net
bxss.net

Web service that allows for detection Blind XSS vulnerabilities within web applications.

hoaxshell
hoaxshell

Windows reverse shell payload generator and handler that abuses the http(s) protocol.

commit-stream
commit-stream

OSINT tool for finding Github repositories by extracting commit logs in real time.

AuthMatrix
AuthMatrix

Provides a simple way to test authorization in web applications and web services.

autochrome
autochrome

A shiny new copy of Chromium that will bring colors in your hunt.

ACLight
ACLight

Advanced discovery of Privileged Accounts, includes Shadow Admins.

Findsploit
Findsploit

Find exploits in local and online databases instantly.

Floss
Floss

Automatically extract obfuscated strings from malware.

AndroSet
AndroSet

Manage Burp Suite certificate in Android to redirect all traffic to Burp Suite.

403-bypasser
403-bypasser

A Burp Suite extension made to automate the process of bypassing 403 pages.

additional-scanner-checks
additional-scanner-checks

Collection of scanner checks missing in Burp.

gateway-finder-imp
gateway-finder-imp

Identify routers on the local LAN and paths to the Internet.

apkurlgrep
apkurlgrep

Extract endpoints from APK files.

autopwn
autopwn

Specify targets and run sets of tools against them.