Take it like a gift

lynis
lynis

Security auditing tool for Linux, macOS, and UNIX-based systems.

ACLight
ACLight

Advanced discovery of Privileged Accounts, includes Shadow Admins.

endoflife.date
endoflife.date

Informative site with EoL dates of everything.

graphql-voyager
graphql-voyager

Represent any GraphQL API as an interactive graph.

graftcp
graftcp

A flexible tool for redirecting a given program's TCP traffic to SOCKS5 or HTTP proxy.

Kubestroyer
Kubestroyer

Exploit Kubernetes clusters misconfigurations and be the swiss army knife of your pentests.

AWSloot
AWSloot

Pull secrets from an AWS environment.

httpscreenshot
httpscreenshot

Grabs screenshots and HTML of large numbers of websites.

Altdns
Altdns

Generates permutations, alterations and mutations of subdomains and then resolves them.

4-ZERO-3
4-ZERO-3

403/401 Bypass Methods.

ActiveScan++
ActiveScan++

Extends Burp Suite's active and passive scanning capabilities.

403-bypasser
403-bypasser

A Burp Suite extension made to automate the process of bypassing 403 pages.

google-authenticator-exporter
google-authenticator-exporter

Get the TOTP secrets exported by Google Authenticator.

fuxploider
fuxploider

File upload vulnerability scanner and exploitation tool.

DalFox
DalFox

Powerful open source XSS scanning tool and parameter analyzer.