Take it like a gift

SubOver
SubOver

A Powerful Subdomain Takeover Tool.

CloudRecon
CloudRecon

Finding assets and subdomains from certificates! Scan the web!

fcrackzip
fcrackzip

Zip password cracker.

CloudFlair
CloudFlair

Find origin servers of websites behind Cloudflare by using Internet-wide scan data from Censys.

GitHarvester
GitHarvester

Tool used for harvesting information from GitHub.

RedTeam_toolkit
RedTeam_toolkit

Open source Django offensive webapp which is keeping the best tools used in the redteaming.

Awesome Bug Bounty
Awesome Bug Bounty

A comprehensive curated list of available Bug Bounty & disclosure programs and writeups.

InQL
InQL

Burp Extension for GraphQL Security Testing.

Mosint
Mosint

An automated e-mail OSINT tool.

drek
drek

A static-code-analysis tool for performing security-focused code reviews.

lynis
lynis

Security auditing tool for Linux, macOS, and UNIX-based systems.

pass-station
pass-station

CLI & library to search for default credentials among thousands of products/vendors.

graphql-introspection-analyzer
graphql-introspection-analyzer

Graphql introspection query analyzer.

PCredz
PCredz

This tool extracts secrets from a pcap file or from a live interface.

linuxprivchecker
linuxprivchecker

A Linux privilege escalation check script.