Take it like a gift

ThievingFox
ThievingFox

Post-exploitation tools to gather credentials from various password managers and Windows utilities.

dom-red
dom-red

Small script to check a list of domains against open redirect vulnerability.

FlowMate
FlowMate

A Burp Suite extension that brings taint analysis to web applications, by tracking all parameters.

HBSQLI
HBSQLI

Automated tool for testing header based blind SQL injection.

IntruderPayloads
IntruderPayloads

Payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

httprebind
httprebind

Automatic tool for DNS rebinding-based SSRF attacks.

icmpdoor
icmpdoor

An ICMP reverse shell written in Python3 and scapy.

infoooze
infoooze

User-friendly OSINT tool that allows you to quickly and easily gather informations.

holehe
holehe

Check if the mail is used on different sites and retrieve informations on sites.

ImHex
ImHex

Hex editor for reverse engineers, programmers and people who value their retinas when working at 3am.

hakrawler
hakrawler

Simple, fast web crawler designed for discovery of endpoints and assets within a web application.

kxss
kxss

Adaption of tomnomnom's kxss tool with a different output format.

Kismet
Kismet

Remote capture for all capture types over TCP sockets or websockets.

Leonidas
Leonidas

Automated attack simulation in the cloud, complete with detection use cases.

AutoRepeater
AutoRepeater

Automated HTTP request repeating with Burp Suite.