mRemoteNG is the next generation of mRemote, open source, tabbed, multi-protocol, remote connections manager.

Metasploit Framework

Jupyter Interactive Notebook

JupyterLab computational environment.

CeWL is a Custom Word List Generator

An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

"rsync for cloud storage" - Google Drive, S3, Dropbox, Backblaze B2, One Drive, Swift, Hubic, Wasabi, Google Cloud Storage, Azure Blob, Azure Files, Yandex Files

pysap is an open source Python library that provides modules for crafting and sending packets using SAP's NI, Diag, Enqueue, Router, MS, SNC, IGS, RFC and HDB protocols.

A feature-rich command-line audio/video downloader

Small tool to capture packets from wlan devices.

A small set of tools to convert packets from capture files to hash files for use with Hashcat or John the Ripper.

John the Ripper jumbo - advanced offline password cracker, which supports hundreds of hash and cipher types, and runs on many operating systems, CPUs, GPUs, and even some FPGAs

World's fastest and most advanced password recovery utility

Modified hostapd to facilitate AP impersonation attacks

Script for orchestrating mana rogue WiFi Access Points.

An offline Wi-Fi Protected Setup brute-force utility

In-depth attack surface mapping and asset discovery

bettercap's web UI

The ZAP core project

An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.

Empire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.

Mallet is an intercepting proxy for arbitrary protocols

Python code demonstrating the how-to part of L7 Application DDoS Attack called SlowLoris

Tool to analyze and test security in IPv4 and IPv6 data networks

A tool for automated MITM attacks on SSL connections.

Frankencert - Adversarial Testing of Certificate Validation in SSL/TLS Implementations

Transparent SSL/TLS proxy for decrypting and diverting network traffic to other programs, such as UTM services, for deep SSL inspection

Powerful framework for rogue access point attack.

Hackish way to intercept and modify non-HTTP protocols through Burp & others.

Uses Empire's (https://github.com/BC-SECURITY/Empire) RESTful API to automate gaining Domain and/or Enterprise Admin rights in Active Directory environments using some of the most common offensive …