Tools

This is my list of tools.

security

nikto an Open Source server scanner
ffuf Fast web fuzzer written in Go
nmap an open source utility for network discovery and security auditing
sqlmap an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws
wireshark the world's foremost network protocol analyzer
burp suite an integrated platform for performing security testing of web applications
hydra very fast network logon cracker which support many different services
john the ripper a fast password cracker
hashcat an advanced password recovery
mimicatz a little tool to play with Windows security
wpscan a black box WordPress vulnerability scanner
net-creds a pcap sniffer
cewl a password list generator from a webpage
searsploit allow to search for an exploit locally

Turbo Intruder Intruder on steroid
Auth Analyzer Automated request repeating and parameter value extraction on the fly
PwnFox For better authorization testing
Copy-as-JavaScript-Request Copy as JavaScript Request plugin for Burp Suite
JWT-editor For creating and editing JSON Web Tokens
Wsdler "This extension takes a WSDL request, parses out the operations that are associated with the targeted web service, and generates SOAP requests that can then be sent to the SOAP endpoints."