A tool for exploring each layer in a docker image

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the …

ZincSearch . A lightweight alternative to elasticsearch that requires minimal resources, written in Go.

A fast TCP/UDP tunnel over HTTP

ZITADEL - Identity infrastructure, simplified for you.

Like cURL, but for gRPC: Command-line tool for interacting with gRPC servers

CrowdSec - the open-source and participative security solution offering crowdsourced protection against malicious IPs and access to the most advanced real-world CTI.

The Havoc Framework

Monitor linux processes without root permissions

An interactive web UI for gRPC, along the lines of postman

Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.

Fetch all the URLs that the Wayback Machine knows about for a domain

Find domains and subdomains related to a given domain

iOS/macOS Research Swiss Army Knife

Contextual Content Discovery Tool

Send emails from your terminal 📬

Extract URLs, paths, secrets, and other interesting bits from JavaScript

Small, fast tool for performing reverse DNS lookups en masse.

Fuzz testing for go.

A CLI written in Go language that writes git commit messages or do a code review brief for you using ChatGPT AI (gpt-4.1, gpt-4o model) and automatically installs a git prepare-commit-msg hook.

Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods

Peirates - Kubernetes Penetration Testing tool

A suite of gRPC debugging tools. Like Fiddler/Charles but for gRPC.

A simple HTTP proxy that fogs over naughty URLs

Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hackmanit.de/).

A toolkit to attack Office365

fuzzuli is a url fuzzing tool that aims to find critical backup files by creating a dynamic wordlist based on the domain.

Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by utilizing programmatical access in the VBA object environmen…

A small reverse shell for Linux & Windows

A password guessing tool that targets the Kerberos and LDAP services within the Windows Active Directory environment.