General enumeration

• Google
• Whois
• Dmit­ry
• Spar­ta
• autorecon.py
• the­har­vester
• fin­ger
• nmap-chronos / nmap ‑O
• mal­tego
• osint­frame­work

See also this blog post

Network/port scanning

• nmap
• mass­can
• dnmap (dis­trib­uted nmap)
• net­dis­cov­er
• prips

Fingerprinting

• p0f
• Blind­Ele­phant
• WhatWeb
• fin­ger­print­js
• amap

System scanning

• Win­dows
  • pspy

Sniffing / Man in the middle

• Etter­cap
• PSnuf­fle

Password cracking

See blog post

• hash­cat
• hydra
• medusa
• ncrack
• John the ripper 
  • ssh2john

Hash iden­ti­fi­ca­tion

• hash-iden­ti­fi­er
• hashid

Wordlist cre­ation

• crunch
• cewl

File formats

• ZIP
  • Pata­tor (brute force)
• PDF
  • pdfin­fo
• ZIP

File systems

• ext*
  • extun­delete
• ntfs
  • streams.exe
• smbfs / cifs 
  • Alter­nate data streams

Databases

• SQL
  • sqlmap
  • com­mix
  • Blog post about SQL injections
• Mon­go
  • NoSQLMap
• SQLite
• Microsoft SQL
  • sqsh

Mul­ti­ple:

• Intel­liJ
• dbeaver

Browser

• Beef

Mail clients

• Out­look / Exchange
  • Mail­Sniper
  • ruler

Virtualization

• Dock­er

Fuzzing

• sfuzz

Various

• Com­pi­la­tion
  • distc­cd (Remote compilation)
  • gcc-mul­ti­lib (Cross compilation)

Mac OS

• osx­col­lec­tor

Unix

• unix-privsec-check

Windows

• SAM | Blog post
  • samdump2
• Reg­istry (NTUSER.DAT) | Blog post
  • reg­grip­per
  • regtree