Fast and customizable vulnerability scanner based on simple YAML based DSL.

Protect and discover secrets using Gitleaks 🔑

Information gathering framework for phone numbers

Fast web fuzzer written in Go

In-depth attack surface mapping and asset discovery

Open-Source Phishing Toolkit

The API traffic analyzer for Kubernetes providing real-time K8s protocol-level visibility, capturing and monitoring all traffic and payloads going in, out and across containers, pods, nodes and clu…

Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication

Fast passive subdomain enumeration tool.

Directory/File, DNS and VHost busting tool written in Go

Adversary Emulation Framework

httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.

A Workflow Engine for Offensive Security

Monitor linux processes without root permissions

An automated e-mail OSINT tool

A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests

OnionScan is a free and open source tool for investigating the Dark Web.

A tool to perform Kerberos pre-auth bruteforcing

Navigate the CVE jungle with ease.

HULK DoS tool ported to Go with some additional features.

crawls the website and finds broken social media links that can be hijacked

HTTP 403 bypass tool

ExifLooter finds geolocation on all image urls and directories also integrates with OpenStreetMap

PassDetective is a command-line tool that scans shell command history to detect mistakenly written passwords, API keys, and secrets. Using regular expressions, it helps prevent accidental exposure …

Docker for Twint

Script hecho en bash para realizar un ataque de fuerza bruta a un usuario de un sistema Linux.