A GPT-empowered penetration testing tool

Quickly discover exposed hosts on the internet using multiple search engines.

An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.

A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.

Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.

Notify is a Go-based assistance package that enables you to stream the output of several tools (or read from a file) and publish it to a variety of supported platforms.

Fast web fuzzer written in Go

Home to the Signal Protocol as well as other cryptographic primitives which make Signal possible.

Web path scanner

An IIS short filename enumeration tool

DNS Enumeration Script

A terminal workspace with batteries included

Extract URLs, paths, secrets, and other interesting bits from JavaScript

Firefox Decrypt is a tool to extract passwords from Mozilla (Firefox™, Waterfox™, Thunderbird®, SeaMonkey®) profiles

Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing

Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan & VirusTotal!

A service that analyzes docker images and scans for vulnerabilities

💧 Find sensitive information for a git repo

A Tool for Domain Flyovers

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

Monitor linux processes without root permissions

A next-generation crawling and spidering framework.

A fast tool to scan client-side prototype pollution vulnerability written in Rust. 🦀

Prototype Pollution Scanner

nodejsscan is a static security code scanner for Node.js applications.

You can find links to data acquisition websites.