Exploitation Framework for Embedded Devices

Web path scanner

A recursive internet scanner for hackers.

Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation

w3af: web application attack and audit framework, the open source web vulnerability scanner.

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能

Loki - Simple IOC and YARA Scanner

一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具，可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如：Title、Domain、CDN、指纹信息、状态信息等。

An advanced web directory & file scanning tool that will be more powerful than DirBuster, Dirsearch, cansina, and Yu Jian.一个高级web目录、文件扫描工具，功能将会强于DirBuster、Dirsearch、cansina、御剑。

A high performance offensive security tool for reconnaissance and vulnerability scanning

Snoop — инструмент разведки на основе открытых данных (OSINT world)

Automated NoSQL database enumeration and web application exploitation tool.

💀 Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh

Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack.

Scan, index, and archive all of your paper documents (acquired by Mayan EDMS)

Personal document manager (Linux/Windows) -- Moved to Gnome's Gitlab

Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.