Exploitation Framework for Embedded Devices

Web path scanner

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation

w3af: web application attack and audit framework, the open source web vulnerability scanner.

A recursive internet scanner for hackers.

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能

Loki - Simple IOC and YARA Scanner

An advanced web directory & file scanning tool that will be more powerful than DirBuster, Dirsearch, cansina, and Yu Jian.一个高级web目录、文件扫描工具，功能将会强于DirBuster、Dirsearch、cansina、御剑。

A high performance offensive security tool for reconnaissance and vulnerability scanning

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具，可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如：Title、Domain、CDN、指纹信息、状态信息等。

Automated NoSQL database enumeration and web application exploitation tool.

Snoop — инструмент разведки на основе открытых данных (OSINT world)

💀 Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh

Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack.

Scan, index, and archive all of your paper documents (acquired by Mayan EDMS)

Personal document manager (Linux/Windows) -- Moved to Gnome's Gitlab

Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network