A blazing fast & feature rich Amazon S3 bucket enumerator.

An automated e-mail OSINT tool

A tool to abuse Exchange services

A Tool for Domain Flyovers

A toolkit to attack Office365

DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it

🔓 🔓 Find secrets and passwords in container images and file systems 🔓 🔓

operative framework is a OSINT investigation framework, you can interact with multiple targets, execute multiple modules, create links with target, export rapport to PDF file, add note to target or…

a drop-in replacement for Nmap powered by shodan.io

User enumeration and password bruteforce on Azure, ADFS, OWA, O365 and gather emails on Linkedin

Intelligence tool but without API key

Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods

An automated tool which can simultaneously crawl, fill forms, trigger error/debug pages and "loot" secrets out of the client-facing code of sites.

🌘🦊 DalFox(Finder Of XSS) / Parameter Analysis and XSS Scanning tool based on golang

Quickly discover exposed hosts on the internet using multiple search engine.

☁️ ⚡ Granular, Actionable Adversary Emulation for the Cloud.

Ah shhgit! Find GitHub secrets in real time

In-depth Attack Surface Mapping and Asset Discovery_AI_Experimentation_by_SaintDruG

Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication

A Workflow Engine for Offensive Security

crawls the website and finds broken social media links that can be hijacked

A modern tool for the Windows kernel exploration and tracing

Boomerang is a tool to expose multiple internal servers to web/cloud. Agent & Server are pretty stable and can be used in Red Team for Multiple levels of Pivoting and exposing multiple internal ser…

Your MitM sidekick for relaying attacks featuring DHCPv6 DNS takeover as well as mDNS, LLMNR and NetBIOS-NS spoofing.

Gospider - Fast web spider written in Go

Nuclei is a fast tool for configurable targeted scanning based on templates offering massive extensibility and ease of use.

ScareCrow - Payload creation framework designed around EDR bypass.

Subdomain takeover vulnerability checker

Accept URLs on stdin, replace all query string values with a user-supplied value

a recon tool that allows searching on URLs that are exposed via shortener services