Take it like a gift

WPScan
WPScan

WPScan WordPress Security Scanner

egressbuster
egressbuster

Check egress filtering and identify if ports are allowed to automatically spawn a shell.

ClassyShark
ClassyShark

Android and Java bytecode viewer.

cstc
cstc

Burp Suite extension that allows request/response modification using a GUI.

changeme
changeme

A default credential scanner.

cnames
cnames

Take a list of resolved subdomains and output any corresponding CNAMES en masse.

changedetection.io
changedetection.io

Page change monitoring with alerts a breezem, the best way to monitor website changes.

CrossC2
CrossC2

Generate CobaltStrike's cross-platform payload.

CrackMapExec
CrackMapExec

A swiss army knife for pentesting networks.

Cloudfox
Cloudfox

Automating situational awareness for cloud penetration tests.

cvecrowd.com
cvecrowd.com

Lists CVEs that are currently being discussed on the social network Mastodon.

CloudFail
CloudFail

Utilize misconfigured DNS and old database records to find hidden IPs behind CloudFlare network.

csprecon
csprecon

Discover new target domains using Content Security Policy.

crowbar
crowbar

Brute forcing tool that support several uncommon protocols.

Commix
Commix

Automated All-in-One OS Command Injection Exploitation Tool.