TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.

CORS Misconfiguration Scanner

Transparent proxy through Tor for Kali Linux OS

Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hackmanit.de/).

🐍 A toolkit for testing, tweaking and cracking JSON Web Tokens

World's fastest and most advanced password recovery utility

A collection of hacks and one-off scripts

CeWL is a Custom Word List Generator

Vulnerability scanner written in Go which uses the data provided by https://osv.dev

Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.

Find, verify, and analyze leaked credentials

Find secrets with Gitleaks 🔑

The Go programming language

🚫 Advanced tool for security researchers to bypass 403/40X restrictions through smart techniques and adaptive request manipulation. Fast. Precise. Effective.

declutters url lists for crawling/pentesting

Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.

Check your WAF before an attacker does

GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep

A wrapper around grep, to help you grep for things

uBlock Origin - An efficient blocker for Chromium and Firefox. Fast and lean.

HTTP parameter discovery suite.

A curated list of various bug bounty tools

Nikto web server scanner

The most exhaustive list of reliable DNS resolvers.

Modern CLI for exploring vulnerability data with powerful search, filtering, and analysis capabilities.

dnsx is a fast and multi-purpose DNS toolkit allow to run multiple DNS queries of your choice with a list of user-supplied resolvers.

Fast passive subdomain enumeration tool.

Fast and customizable subdomain wordlist generator using DSL

Community curated list of templates for the nuclei engine to find security vulnerabilities.