Top 23 Python Hacking Projects
-
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Project mention: Is there a way to run a single batch file and keep it open but not show the terminal window | reddit.com/r/hacking | 2022-06-14I'm trying a reverse shell attack on my windows computer from kali (wsl2) and I'm using the powershell command from Payload All The Things (https://github.com/swisskyrepo/PayloadsAllTheThings) I put the powershell command in a batch file and i want it to run and stay open in the background without showing a terminal window because if the window closes, i lose the connection on my kali terminal, any help would be appreciated
-
Project mention: GitHub - Z4nzu/hackingtool: ALL IN ONE Hacking Tool For Hackers | reddit.com/r/u_Additional-Jello-397 | 2022-06-07
-
JetBrains
Developer Ecosystem Survey 2022. Take part in the Developer Ecosystem Survey 2022 by JetBrains and get a chance to win a Macbook, a Nvidia graphics card, or other prizes. We’ll create an infographic full of stats, and you’ll get personalized results so you can compare yourself with other developers.
-
Ciphey
⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡
Project mention: How do I get Ciphey to use more cores for decryption? | reddit.com/r/hacking | 2022-02-16repo: https://github.com/Ciphey/Ciphey
-
owasp-mstg
The Mobile Security Testing Guide (MSTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).
Project mention: Moving from Web application pentesting to mobile. | reddit.com/r/AskNetsec | 2022-04-04- OWASP is as usual a good resource: https://owasp.org/www-project-mobile-security-testing-guide/
-
Wheni first stumbled across https://github.com/jopohl/urh (universal radio hacker) i couldn’t believe my luck.
I’ve done stuff like this manually before (as in just collecting all the bits and then trying to ascribe meaning, e.g. https://github.com/cleanflight/cleanflight/issues/1125#issue... ) but i used URH to reverse my bbq temperature sensors.
I have an alexa skill that shows the last 20 readings for both probes on a graph. It is stupidly over the top (a Pi with a cheap sdr dongle listens for packets from the bbq down the garden, it parses out the measurements and fires them into a dynamodb which is absurd but it was quick to do, then the Alexa skill just pulls from there and sends to a chart api that draws my line graphs to show on alex’s screen - totally absurd but great fun to do)
-
-
Spiderfoot is good https://github.com/smicallef/spiderfoot
-
Scout APM
Less time debugging, more time building. Scout APM allows you to find and fix performance issues with no hassle. Now with error monitoring and external services monitoring, Scout is a developer's best friend when it comes to application development.
-
Project mention: ILPT Request: How to bypass phishing detection? Google detects my phishing link that I send to shit faces that like to spread rumors and damage reputation. Google detects every link sent to an android phone. | reddit.com/r/IllegalLifeProTips | 2022-03-31
-
pyWhat
🐸 Identify anything. pyWhat easily lets you identify emails, IP addresses, and more. Feed it a .pcap file or some text and it'll tell you what it is! 🧙♀️
Project mention: Tips for Making a Popular Open-Source Project in 2021 [Ultimate Guide] | news.ycombinator.com | 2021-11-12 -
hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
-
Tool-X
Tool-X is a kali linux hacking Tool installer. Tool-X developed for termux and other Linux based systems. using Tool-X you can install almost 370+ hacking tools in termux app and other linux based distributions.
Project mention: Is there any way to switch to intel hd graphics even if *sudo prime-select intel* doesn't work? | reddit.com/r/linux4noobs | 2021-12-11thanks, but i don't think i'll be dual booting and i have already gotten this
-
Osintgram
Osintgram is a OSINT tool on Instagram. It offers an interactive shell to perform analysis on Instagram account of any users by its nickname
Project mention: Can anyone help me to download comments from an instagran account ; | reddit.com/r/OSINT | 2022-05-16Check out Osintgram
-
-
h8mail
Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email
Project mention: h8mail VS Hackfb - a user suggested alternative | libhunt.com/r/h8mail | 2021-11-13 -
Project mention: I wrote a blazing fast subdomain enumerator! (100.000 domains checked under 10 minutes!) | reddit.com/r/hacking | 2022-03-16
This + Raccoon seems like it would be a great first recon scan.
-
Well, instead of a teensy, the esp32 is sure a good bet.
But since you've got the Pi, the next logical step is to get an rtc upgrade and run chrony/openntpd and a backup dns cache. Why not? I mean its right there on the desk. Could add a quick binary clock for practicality.
Since you might now be dependent on the thing, its easy to add snmp for monitoring, hack in some rrdtool or whatever to graph your sit/stand time, maybe a serial connection to monitor your UPS power situation, and you get a free Pi-hole by now! Probably a little overkill to run wireguard on the thing, though.
Why stop there? Have it control some functional LED lighting[0] (Zack uses an ESP32 instead of the pi--must not care about clock drift. The biometric sensor is also a little expensive and uncomfortable looking.) with suntime[1] for a perfectly and coherently illuminated environment. For the extremely paranoid, yet lazy and obsessive (who does that not describe?) you can grab an extra wifi dongle with raw monitoring mode to have some fun with trackerjacker[2]. Use an innovative static base station running map mode, so when an influx of unknown devices with increasing strength and/or known vehicle SSIDs or PAN beacons are detected, just go full Red Alert (using those very practical leds) and score a quick win by raising the desk and commanding your IoT lighting for a deft escape. Maybe you can use this for the girlfriend too, you've already got rrdtool or cacti or whatever graphing the desk height, so you could also use that capability to gain insight as to when it should reach out and trigger your coffee maker's ESP32, certainly while raising the desk.
[0] - https://www.youtube.com/watch?v=g6n8XLmZ__I
[1] - https://github.com/SatAgro/suntime
[2] - https://github.com/calebmadrigal/trackerjacker https://reconshell.com/trackerjacker-maps-and-tracks-wifi-ne...
-
You could invoke use of a script to deauth the devices(i.e kickthemout - https://github.com/k4m4/kickthemout) - [ this will send DEAUTH packets to the wifi devices, and such they will deauth from the wifi on the network ]intermitently, this might make the parents perhaps log into the console themselves to disable this feature.
-
-
Reconnoitre
A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
-
Ghost
Ghost Framework is an Android post-exploitation framework that exploits the Android Debug Bridge to remotely access an Android device. (by EntySec)
Project mention: Some information and advice about DDoS, from someone who was there during #opPayback | reddit.com/r/anonymous | 2022-02-27 -
-
-
reconspider
🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.
Python Hacking related posts
- Is there a way to run a single batch file and keep it open but not show the terminal window
- GitHub - Z4nzu/hackingtool: ALL IN ONE Hacking Tool For Hackers
- Payloads All The Things: Useful payloads, bypass for web security and pentest
- Payloads All the things
- Anyone know how to use The CSMTokenGrabber?
- Phone number history of owners
- DAMN WIFI IS SO SLOW
Index
What are some of the best open-source Hacking projects in Python? This list will help you:
Project | Stars | |
---|---|---|
1 | PayloadsAllTheThings | 38,424 |
2 | hackingtool | 18,022 |
3 | Ciphey | 10,071 |
4 | owasp-mstg | 9,063 |
5 | urh | 8,306 |
6 | dirsearch | 8,116 |
7 | spiderfoot | 8,065 |
8 | trape | 7,060 |
9 | pyWhat | 5,233 |
10 | hacktricks | 4,730 |
11 | Tool-X | 4,175 |
12 | Osintgram | 3,870 |
13 | caldera | 3,536 |
14 | h8mail | 2,518 |
15 | Raccoon | 2,496 |
16 | trackerjacker | 2,343 |
17 | kickthemout | 2,043 |
18 | github-dorks | 1,978 |
19 | Reconnoitre | 1,868 |
20 | Ghost | 1,640 |
21 | pwn_jenkins | 1,494 |
22 | TorBot | 1,397 |
23 | reconspider | 1,310 |
Are you hiring? Post a new remote job listing for free.