A bash-based framework for discovering and extracting exposed .git repositories from web servers during penetration testing and bug bounty activities.

A Burp Suite plugin that performs intelligent content discovery by analyzing current requests to identify directories, files, and variations based on the application's structure.

A web application security testing platform that combines manual and automated testing tools for conducting comprehensive security assessments and penetration testing.

BloodHound is a Javascript web application that uses graph theory to analyze Active Directory and Azure environments, revealing hidden relationships and potential attack paths through visual mapping.

SecLists is a comprehensive repository of security testing lists including usernames, passwords, URLs, fuzzing payloads, and web shells used during penetration testing and security assessments.