Take it like a gift

Pentest Mapper
Pentest Mapper

Burp Suite extension for application pentest to write test cases and map flows and vulnerabilities.

httprobe
httprobe

Take a list of domains and probe for working HTTP and HTTPS servers.

dnswalk
dnswalk

A DNS database debugger.

Hamburglar
Hamburglar

Collect useful information from urls, directories, and files.

b374k
b374k

PHP Webshell with handy features.

Fuzzapi
Fuzzapi

Used for REST API pentesting and provide UI solution for gem.

brakeman
brakeman

Static analysis security vulnerability scanner for Ruby on Rails applications.

HasMySecretLeaked
HasMySecretLeaked

Search across 20 million exposed secrets in public GitHub repositories, gists, issues and comments.

GitFive
GitFive

An OSINT tool to investigate GitHub profiles.

Ground control
Ground control

A collection of scripts mainly for debugging SSRF, blind XSS, and XXE vulnerabilities.

Eagle
Eagle

Vulnerability scanner for mass detection of web-based applications vulnerabilities.

GD-Thief
GD-Thief

Exfiltrate files from a target's Google Drive that you have access to, via Google's API.

github-subdomains
github-subdomains

Find subdomains on GitHub.

autoSSRF
autoSSRF

Smart context-based SSRF vulnerability scanner.

ASNLookup
ASNLookup

Leverage ASN to look up IP addresses owned by a specific organization.