Top 23 Python Exploit Projects

• pwntools

  3 9,042 8.3 Python

  CTF framework and exploit development library

  

  Project mention: Awesome CTF : Top Learning Resource Labs | reddit.com/r/TutorialBoy | 2021-11-13

  Pwntools - CTF Framework for writing exploits.

• gef

  4 4,578 9.2 Python

  GEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging features for exploit developers & reverse engineers

  Project mention: Debugging with GDB | news.ycombinator.com | 2022-03-21

  I still struggle with GDB but my excuse is that I seldom use it.

  When I was studying reverse engineering though, I came across a really cool kit (which I've yet to find an alternative for lldb, which would be nice given: rust)

  I'd recommend checking it out, if for no other reason than it makes a lot of things really obvious (like watching what value lives in which register).

  https://github.com/hugsy/gef

  LLDB's closest alternative to this is called Venom, but it's not the same at all. https://github.com/ovh/venom

• SonarLint

  www.sonarlint.org

  sponsored

  Deliver Cleaner and Safer Code - Right in Your IDE of Choice!. SonarLint is a free and open source IDE extension that identifies and catches bugs and vulnerabilities as you code, directly in the IDE. Install from your favorite IDE marketplace today.

  

• AutoSploit

  1 4,540 0.0 Python

  Automated Mass Exploiter

  Project mention: Awesome Penetration Testing | dev.to | 2021-10-06

  AutoSploit - Automated mass exploiter, which collects target by employing the Shodan.io API and programmatically chooses Metasploit exploit modules based on the Shodan query.

• wesng

  0 2,893 7.5 Python

  Windows Exploit Suggester - Next Generation

• Ghost

  2 1,611 8.8 Python

  Ghost Framework is an Android post-exploitation framework that exploits the Android Debug Bridge to remotely access an Android device. (by EntySec)

  

  Project mention: Some information and advice about DDoS, from someone who was there during #opPayback | reddit.com/r/anonymous | 2022-02-27

• pwn_jenkins

  0 1,453 3.7 Python

  Notes about attacking Jenkins servers

• featherduster

  1 970 1.4 Python

  An automated, modular cryptanalysis tool; i.e., a Weapon of Math Destruction

  

  Project mention: Awesome CTF : Top Learning Resource Labs | reddit.com/r/TutorialBoy | 2021-11-13

  FeatherDuster - An automated, modular cryptanalysis tool.

• Scout APM

  scoutapm.com

  sponsored

  Less time debugging, more time building. Scout APM allows you to find and fix performance issues with no hassle. Now with error monitoring and external services monitoring, Scout is a developer's best friend when it comes to application development.

  

• SIET

  1 510 2.4 Python

  Smart Install Exploitation Tool

  

  Project mention: Awesome Penetration Testing | dev.to | 2021-10-06

  Smart Install Exploitation Tool (SIET) - Scripts for identifying Cisco Smart Install-enabled switches on a network and then manipulating them.

• Firmware_Slap

  0 441 0.0 Python

  Discovering vulnerabilities in firmware through concolic analysis and function clustering.

• Telegram-Trilateration

  8 408 0.0 Python

  Proof of concept for abusing Telegram's "People Near Me" feature and tracking people's location

  Project mention: Telegram Trilateration | reddit.com/r/CyberArmyOfUkraine | 2022-03-13

• PocOrExp_in_Github

  1 403 10.0 Python

  聚合Github上已有的Poc或者Exp，CVE信息来自CVE官网。Auto Collect Poc Or Exp from Github by CVE ID.

  Project mention: List of public collections of PoCs on github to learn from 🍻🇺🇸❤ | reddit.com/r/hacking | 2021-12-16

• ActiveReign

  1 229 0.0 Python

  A Network Enumeration and Attack Toolset for Windows Active Directory Environments.

  Project mention: m8r0wn/ActiveReign - A Network Enumeration and Attack Toolset for Windows Active Directory Environments. | reddit.com/r/GithubSecurityTools | 2021-05-31

• DDOS-RootSec

  1 226 7.8 Python

  DDOS Archive by RootSec (Scanners, BotNets (Mirai and QBot Premium & Normal and more), Exploits, Methods, Sniffers)

  Project mention: Any ideas on a good Malware Archives | reddit.com/r/Malware | 2022-03-31

• RomBuster

  1 190 6.6 Python

  RomBuster is a router exploitation tool that allows to disclosure network router admin password.

  

  Project mention: RomBuster is a router exploitation tool that allows to disclosure network router admin password - Exploits vulnerabilities in most popular routers such as D-Link, Zyxel, TP-Link and Huawei. | reddit.com/r/blueteamsec | 2021-07-07

• stuff

  0 187 2.1 Python

  Unsorted, raw, ugly & probably poorly usable tools for reversing, exploit and pentest (by hugsy)

• Exploit-Discord-Cache-System-PoC

  0 159 0.0 Python

  🗄️ Exploit Discord's cache system to remote upload payloads to Discord users machines (possible malware dropper for e.g. targeting specific victims)

• cve_searchsploit

  1 124 0.0 Python

  Search an exploit in the local exploitdb database by its CVE

  Project mention: How to find information about any type of CVE and use it to exploit against other machines? | reddit.com/r/HowToHack | 2022-03-17

• CamRaptor

  1 105 6.3 Python

  CamRaptor is a tool that exploits several vulnerabilities in popular DVR cameras to obtain network camera credentials.

  

  Project mention: CamRaptor: Herramienta que aprovecha varias vulnerabilidades de las cámaras DVR 🤯 | reddit.com/r/u_esgeeks | 2021-12-31

• badblood

  1 68 2.4 Python

  SonicWall SMA-100 Unauth RCE Exploit (CVE-2021-20038) (by jbaines-r7)

  Project mention: SonicWall SMA-100 Unauth RCE Exploit (CVE-2021-20038) - full exploit - brace brace brace | reddit.com/r/blueteamsec | 2022-01-11

• CVE-2021-41773

  1 51 2.7 Python

  Apache2 2.4.49 - LFI & RCE Exploit - CVE-2021-41773 (by thehackersbrain)

  Project mention: Oh My WebServer TryHackMe Machine Writeup and Walkthrough | dev.to | 2022-04-07

  After studing, what was the flaw a written a custom exploit for this specific CVE which will give us RCE on the server, you can find that exploit here.

• Win7Blue

  1 43 7.6 Python

  Scan/Exploit - EternalBlue MS17-010 - Windows 7 x86/x64

  Project mention: Win7Blue: Scan & #Exploit - #EternalBlue MS17-010 - Windows 7 x86 & x64 🐞 | reddit.com/r/u_esgeeks | 2021-10-21

• breaking-telegram

  16 42 1.4 Python

  Simple PoC script that allows you to exploit telegram's "send with timer" feature by saving any media sent with this functionality.

  Project mention: A Simple Script to Break Telegram Send with Timer Feature | news.ycombinator.com | 2021-11-24

• Backdoorcreator

  1 34 0.8 Python

  Exploit toolkit

  Project mention: Backdoorcreator: Esta herramienta creará una puerta trasera y escuchará las conexiones entrantes 🟣 | reddit.com/r/u_esgeeks | 2021-08-08

Python Exploit related posts

• Does anyone has a clue on how to install GDB GEF on windows? any help is appreciated.
  1 project | reddit.com/r/ReverseEngineering | 28 Jan 2022
• CVE-2021-41951 ResourceSpace reflective XSS
  1 project | reddit.com/r/netsec | 30 Nov 2021
• CVE-2021-41277 MetaBase Arbitrary File Read
  1 project | reddit.com/r/netsec | 20 Nov 2021
• Hadoop Yarn RPC RCE
  1 project | reddit.com/r/netsec | 19 Nov 2021
• CVE-2021-37580 Apache ShenYu 2.3.0/2.4.0 authentication bypass
  1 project | reddit.com/r/netsec | 18 Nov 2021
• Win7Blue: Scan & #Exploit - #EternalBlue MS17-010 - Windows 7 x86 & x64 🐞
  1 project | reddit.com/r/u_esgeeks | 21 Oct 2021
• tegal1337/NekoBotV1 - NekoBot | Auto Exploiter With 500+ Exploit 2000+ Shell
  1 project | reddit.com/r/GithubSecurityTools | 10 Sep 2021

Index

Sponsored

SaaSHub - Software Alternatives and Reviews

SaaSHub helps you find the best software and product alternatives

www.saashub.com

Get the trending Python projects
with our weekly report!
» Subscribe «