Fast web fuzzer written in Go

REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applications

Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.

Fleex allows you to create multiple VPS on cloud providers and use them to distribute your workload.

A dynamic infrastructure toolkit for red teamers and bug bounty hunters!

HTTP parameter discovery suite.

Scope gathering tool for HackerOne, Bugcrowd, and Intigriti!

Community curated list of template files for the nuclei engine to find security vulnerability and fingerprinting the targets.

Screenshot as a service: take screenshot of the given URL

Adds a customizable "Send to..."-context-menu to your BurpSuite.

Fully automated offensive security framework for reconnaissance and vulnerability scanning

Automatically Commit changed Files back to Github in Github Actions

Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.

Pentest/BugBounty progress control with scanning modules

A Github Action That Launches an NMap Scan Vulners Scan & Opens A Github Issue With The Findings

Website screenshot service powered by Node.js, SlimerJS and PhantomJS

A webinterface combining different recon tools.

Discover your attack surface!

Metasploit Framework