Take it like a gift

SQLi-Hunter
SQLi-Hunter

Simple HTTP(S) proxy server and a SQLMAP API wrapper that makes digging SQLi easy.

gcp_scanner
gcp_scanner

A comprehensive scanner for Google Cloud.

DefaultPassword
DefaultPassword

Default passwords database sorted by manufacturers.

bWAPP
bWAPP

An extremely buggy web application!.

bXSS
bXSS

bXSS is a utility which can be used identify Blind Cross-Site Scripting.

big-list-of-naughty-strings
big-list-of-naughty-strings

A list of strings which have a high probability of causing issues when used as user-input data.

BlackWidow
BlackWidow

Web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

godap
godap

A complete TUI for LDAP.

Floss
Floss

Automatically extract obfuscated strings from malware.

boofuzz
boofuzz

Network protocol fuzzing for humans.

Empire
Empire

Post-exploitation and adversary emulation framework that is used to aid Red Teams and pentesters.

bxss.net
bxss.net

Web service that allows for detection Blind XSS vulnerabilities within web applications.

DVWS
DVWS

Vulnerable application with a web service and an API.

broken-link-hijacking
broken-link-hijacking

Broken Link Hijacking Burp Suite extension.

CertStealer
CertStealer

A .NET tool for exporting and importing certificates without touching disk.