Take it like a gift

vaf
vaf

Cross-platform very advanced and fast web fuzzer written in nim.

kiterunner
kiterunner

Contextual content discovery tool.

403JUMP
403JUMP

HTTP 403 bypass tool.

bettercap
bettercap

The Swiss Army knife for WiFi, BLE, IPv4 and IPv6 networks reconnaissance and MITM attacks.

Astra
Astra

Automated Security Testing For REST API's.

codeql
codeql

Power security researchers around the world as well as code scanning.

cookie_crimes
cookie_crimes

Read local Chrome cookies without root or decrypting.

CMSmap
CMSmap

CMS scanner that automates the process of detecting security flaws of the most popular CMSs.

crawley
crawley

The unix-way web crawler.

chipsec
chipsec

Platform security assessment framework.

CertStealer
CertStealer

A .NET tool for exporting and importing certificates without touching disk.

dsieve
dsieve

Filter and enrich a list of subdomains by level.

DOM XSS Scanner
DOM XSS Scanner

A tool to scan source code for DOM based XSS vulnerabilities.

bbradar.io
bbradar.io

Fetches latest bug bounty programs from many platforms and consolidates them in one place.

BurpJSLinkFinder
BurpJSLinkFinder

Burp Extension for a passive scanning JS files for endpoint links.