Tool of the day

MassBleed is a SSL Vulnerability Scanner that checks for TLS/SSL related vulnerabilities like Drown, POODLE, Heart Bleed, Winshock.

FridaLoader is an Android app to setup frida and launch in quick way.

Uniscan is a simple Remote File Include, Local File Include and Remote Command Execution vulnerability scanner.

Auto Scanning SSL Vulnerability which does auto Scanning to SSL Vulnerability. (HeartBleed, CCS Injection, SSLv3 POODLE, FREAK...etc).

Android application vulnerability analysis and Android pentest tool which has following functions such as App info check,  Baksmaling android app, etc,.

FinalRecon is a fast and simple python script for web reconnaissance. It follows a modular structure so in future new modules can be added with ease.

OSRFramework is a GNU AGPLv3+ set of libraries developed by i3visio to perform Open Source Intelligence collection tasks.

Parth is a Heuristic Vulnerable Parameter Scanner. Some HTTP parameter names are commonly associated with one functionality.

GoSpider is a Fast web spider written in Go. It has lot of features to find the subdomains, JS files, AWS details, etc. 

xsssniper is an handy xss discovery tool with mass scanning functionalities. 

Lynis is a security auditing tool for systems based on UNIX like Linux, macOS, BSD, and others.

Simple script to test if a page is vulnerable to clickjacking.

Runtime Mobile Security (RMS), powered by FRIDA, is a powerful web interface that helps you to manipulate Android and iOS Apps at Runtime.

SSLyze is a fast and powerful SSL/TLS scanning library.It allows you to analyze the SSL/TLS configuration of a server by connecting to it.

Sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers.

Grapefruit is a runtime Application Instruments for iOS application and previously it was known by passionfruit. It is used in runtime analysis.

h8mail is an email OSINT and breach hunting tool using different breach and reconnaissance , or local breaches such as Troy Hunt's "Collection1" and the infamous "Breach Compilation" torrent.

Scans That You Can Perform Using RED HAWK are Basic Scan ,Site Title NEW ,IP Address ,Web Server Detection IMPROVED ,CMS Detection ,Cloudflare Detection .

This tool is designed to look for several security related Android application vulnerabilities, either in source code or packaged APKs.

Blazy is a modern login page bruteforcer. It has  Easy target selections  Smart form and error detection.

Vulscan tool can be used for scanning internal servers/machines connected to your systems. This tool scans all the applications even the contents present in your virtual box .