| traitor | ⬆️ ☠️ 🔥 Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock | 7143 ⭐ |
| tfsec | 🌎 Security scanner for your Terraform code. Acquired by Aqua Security in 2021. | 7014 ⭐ |
| darktile | 🌘 Darktile is an experimental/abandoned GPU rendered terminal emulator designed for tiling window managers. | 3082 ⭐ |
| gitjacker | 🔪  Leak git repositories from misconfigured websites | 1606 ⭐ |
| tml | 🌈💻🎨 A tiny markup language for terminal output. Makes formatting output in CLI apps easier! | 743 ⭐ |
| shox | 🍫 A customisable, universally compatible terminal status bar | 729 ⭐ |
| dismember | 🔪 Scan memory for secrets and more. Maybe eventually a full /proc toolkit. | 672 ⭐ |
| furious | 😠 Go IP/port scanner with SYN (stealth) scanning and device manufacturer identification | 600 ⭐ |
| scout | 🔭 Lightweight URL fuzzer and spider: Discover a web server's undisclosed files, directories and VHOSTs | 592 ⭐ |
| memit | 🚫💾 Run binaries straight from memory in Linux | 324 ⭐ |
| grace | 🪛 It's strace, with colours. | 285 ⭐ |
| siphon | ⚗️ Intercept stdin/stdout/stderr for any process | 205 ⭐ |
| bearings | 🧭 A fast, clean, customisable shell prompt for zsh, bash, fish, and more... | 202 ⭐ |
| pax | 💀 🔓 CLI tool for PKCS7 padding oracle attacks | 142 ⭐ |
| comet | ☄️ Command line tool to help you use conventional commit messages (https://www.conventionalcommits.org) | 124 ⭐ |
| memoryfs | 🧠 🗄️ In-memory filesystem implementation of io/fs.FS | 96 ⭐ |
| extrude | 🕵️ Analyse binaries for missing security features, information disclosure and more... | 89 ⭐ |
| gifwrap | 🐙 GIFs in your terminal | 54 ⭐ |