Take it like a gift

GD-Thief
GD-Thief

Exfiltrate files from a target's Google Drive that you have access to, via Google's API.

king-phisher
king-phisher

Phishing Campaign Toolkit.

Awesome-CobaltStrike
Awesome-CobaltStrike

List of awesome CobaltStrike resources.

talisman
talisman

Validate the outgoing changeset for things that look suspicious such as tokens, passwords and keys.

DOM based XSS finder
DOM based XSS finder

Chrome extension that finds DOM based XSS vulnerabilities.

IntruderPayloads
IntruderPayloads

Payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

Burp Extender API
Burp Extender API

Burp Extender API.

bbscope
bbscope

Scope gathering tool for multiple Bug Bounty platforms.

ja3
ja3

Create SSL client fingerprints in an easy to produce and shareable way.

docker-bench-security
docker-bench-security

Check for dozens of common best-practices around deploying Docker containers in production.

AWSloot
AWSloot

Pull secrets from an AWS environment.

binwalk
binwalk

Fast, easy to use tool for analyzing, reverse engineering, and extracting firmware images.

GET-ACQ
GET-ACQ

Gather all companies acquired by a given company domain name.

checkov
checkov

Prevent cloud misconfigurations and find vulnerabilities during build-time.

brute ratel
brute ratel

A customized command and control center for red team and adversary simulation.