1. SpartanFrontpage and Sharepoint fingerprinting and attack tool.
2. MalletMallet is an intercepting proxy for arbitrary protocols
4. RegeorgThe successor to reDuh, pwn a bastion webserver and create SOCKS proxies through the DMZ. Pivot and pwn.
5. JackDrag and Drop ClickJacking PoC development assistance tool.
6. WiktoNikto for Windows with some extra features.
9. RulerA tool to abuse Exchange services
12. Ms16 098Windows 8.1 x64 Exploit for MS16-098 RNGOBJ_Integer_Overflow
13. LiniaalLiniaal - A communication extension to Ruler
14. NotrulerThe opposite of Ruler, provides blue teams with the ability to detect Ruler usage against Exchange.
15. AnapickleToolset for writing shellcode in Python's Pickle language and for manipulating pickles to inject shellcode.
17. XrdpA rudimentary remote desktop tool for the X11 protocol exploiting unauthenticated x11 sessions
18. Wifi RifleCreating a wireless rifle de-authentication gun, which utilized a yagi antenna and a Raspberry Pi.
19. Mana*DEPRECATED* mana toolkit for wifi rogue AP attacks and MitM
20. Gowitness🔍 gowitness - a golang, web screenshot utility using Chrome Headless
21. SpudSensePost Unified Data API (SPUD) is a wrapper for apps requiring use of the deprecated Google API.
23. MonsoenProxy Server network scanner and tunnelling tool.
24. Det(extensible) Data Exfiltration Toolkit (DET)
25. SnoopySnoopy: A distributed tracking and data interception framework
26. KwetzaPython script to inject existing Android applications with a Meterpreter payload.
28. UsabuseUniversal Serial aBUSe is a project to demonstrate the risks of hardware bypasses of software security by Rogan Dawes at SensePost.
30. Snoopy NgSnoopy v2.0 - modular digital terrestrial tracking framework
34. ReduhCreate a TCP circuit through validly formed HTTP requests
36. 6thSenseA while back antirez, in a post to Bugtraq, detailed a new Tcp portscan method.
37. autoresponderQuick python script to automatically load NTLM hashes from Responder logs and fires up Hashcat to crack them
39. common-substrSimple tool to extract the most common substrings from an input text. Built for password cracking.
41. dwnd(ockerp)wn - a docker pwn tool manager
44. berate apScript for orchestrating mana rogue WiFi Access Points.
47. SuruSuru is one of the original Man In The Middle (MITM) proxies that sits between the user's browser and the web application.