Burp Suite extension to discover assets from HTTP response.
Custom Maltego scripts for various reconnaissance relates tasks.
OSINT Framework - Supported by RedHunt Labs
Confluence pre-auth ONGL injection remote code execution scanner (CVE-2022-26134).
Hunt4Spring helps with identifying as well as exploiting URLs which are potentially vulnerable to CVE-2022-22965 aka Spring4Shell.
An automated, reliable scanner for the Log4Shell CVE-2021-44228 vulnerability.
KubeStalk is a tool to discover Kubernetes and related infrastructure based attack surface from a black-box perspective.
Burp Suite extension to discover assets from HTTP response.
An automated tool which can simultaneously crawl, fill forms, trigger error/debug pages and "loot" secrets out of the client-facing code of sites.
Virtual Machine for Adversary Emulation and Threat Hunting
A Custom Google Search Engine that helps finding sensitive information in. Online IDEs, Paste(s) sites, Code Sharing Platforms.
List of Awesome Asset Discovery Resources