slake

java-stack

mimikatz

A little tool to play with Windows security

machinae

Machinae Security Intelligence Collector

wfuzz

Web application fuzzer

WhatWeb

Next generation web scanner

wfuzz

Fork of original wfuzz in order to keep it in Git

volatility

An advanced memory forensics framework

svn-extractor

simple script to extract all web resources by means of .SVN folder exposed over network.

sqlmap

Automatic SQL injection and database takeover tool

pipal

Pipal, THE password analyser

patator

Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.

jimmix

From http://www.synacktiv.com/ressources/jimmix-0.3.tar.gz

dnsenum

dnsenum is a perl script that enumerates DNS information

wpscan

WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites. Contact us via contact@wpscan.com

SecLists

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

HQLmap

(Deprecated) HQLmap, Automatic tool to exploit HQL injections

SPIPScan

SPIP (CMS) Scanner for penetration testing purpose written in Python

Linux_Exploit_Suggester

Linux Exploit Suggester; based on operating system release number

nmap

Nmap - the Network Mapper. Github mirror of official SVN repository.

metasploit-framework

Metasploit Framework

DPScan

A modules enumerator for Drupal

class-dump

Generate Objective-C headers from Mach-O files.

libformatstr

Simplify format string exploitation.

Behat

BDD in PHP

xortool

A tool to analyze multi-byte xor cipher