Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, build your taylor-made EASM tool, co…

HTTP parameter discovery suite.

Argus is used to test for Blind XSS and SSRF vulnerbilities or any sort of OOB detection

SubOwner - A Simple tool check for subdomain takeovers.

All-in-One Toolkit for BruteForce Attacks

Advanced CORS Header Checker Tool with Vulnerability Detection and Bypass Attempts

AI-powered ffuf wrapper

AttackGen is a cybersecurity incident response testing tool that leverages the power of large language models and the comprehensive MITRE ATT&CK framework. The tool generates tailored incident resp…

A heavily armed customizable phishing tool for educational purpose only

A small set of tools to convert packets from capture files to hash files for use with Hashcat or John the Ripper.

Web vulnerability scanner written in Python3

Small tool to capture packets from wlan devices.

Hunting Pro is a powerful subdomain enumeration and URL extraction tool designed for security professionals.

A static analysis security vulnerability scanner for Ruby on Rails applications

RSA attack tool (mainly for ctf) - retrieve private key from weak public key and/or uncipher data

Database documentation built easy

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static a…

A security focused static analysis tool for Android and Java applications.

Android security insights in full spectrum.

World's first Artificial Intelligence (XSS) Cross Site Scripting powered by Machine Learning with extreme fine-tuning designed to detect Reflected, Stored, DOM, and Blind (XSS) vulnerabilities in s…

PHP_CodeSniffer tokenizes PHP files and detects violations of a defined set of coding standards.

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

Scapy: the Python-based interactive packet manipulation program & library.

Burp-Suite Professional v1.7.37 Cracked

An Intelligent wordlist generator based on user profiling, permutations, and statistics. (Named after the same tool in Mr.Robot series S01E01)

VULNRΞPO - Free vulnerability report generator and repository, end-to-end encrypted! Templates of issues, CWE, CVE, MITRE ATT&CK, PCI DSS, import Nmap/Nessus/Burp/OpenVAS/Bugcrowd/Trivy, Jira expor…

It's a Docker Environment for Pentesting which having all the required tool for VAPT.

♾ Infisical is the open-source secret management platform: Sync secrets across your team/infrastructure, prevent secret leaks, and manage internal PKI