Top 23 Python Hacking Projects

• PayloadsAllTheThings

  10 38,424 9.0 Python

  A list of useful payloads and bypass for Web Application Security and Pentest/CTF

  Project mention: Is there a way to run a single batch file and keep it open but not show the terminal window | reddit.com/r/hacking | 2022-06-14

  I'm trying a reverse shell attack on my windows computer from kali (wsl2) and I'm using the powershell command from Payload All The Things (https://github.com/swisskyrepo/PayloadsAllTheThings) I put the powershell command in a batch file and i want it to run and stay open in the background without showing a terminal window because if the window closes, i lose the connection on my kali terminal, any help would be appreciated

• hackingtool

  8 18,022 2.4 Python

  ALL IN ONE Hacking Tool For Hackers

  Project mention: GitHub - Z4nzu/hackingtool: ALL IN ONE Hacking Tool For Hackers | reddit.com/r/u_Additional-Jello-397 | 2022-06-07

• JetBrains

  surveys.jetbrains.com

  sponsored

  Developer Ecosystem Survey 2022. Take part in the Developer Ecosystem Survey 2022 by JetBrains and get a chance to win a Macbook, a Nvidia graphics card, or other prizes. We’ll create an infographic full of stats, and you’ll get personalized results so you can compare yourself with other developers.

  

• Ciphey

  8 10,071 5.7 Python

  ⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡

  

  Project mention: How do I get Ciphey to use more cores for decryption? | reddit.com/r/hacking | 2022-02-16

  repo: https://github.com/Ciphey/Ciphey

• owasp-mstg

  7 9,063 8.5 Python

  The Mobile Security Testing Guide (MSTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).

  

  Project mention: Moving from Web application pentesting to mobile. | reddit.com/r/AskNetsec | 2022-04-04

  - OWASP is as usual a good resource: https://owasp.org/www-project-mobile-security-testing-guide/

• urh

  9 8,306 7.1 Python

  Universal Radio Hacker: Investigate Wireless Protocols Like A Boss

  Project mention: Reversing 2.4GHz Remote Control | news.ycombinator.com | 2022-04-27

  Wheni first stumbled across https://github.com/jopohl/urh (universal radio hacker) i couldn’t believe my luck.

  I’ve done stuff like this manually before (as in just collecting all the bits and then trying to ascribe meaning, e.g. https://github.com/cleanflight/cleanflight/issues/1125#issue... ) but i used URH to reverse my bbq temperature sensors.

  I have an alexa skill that shows the last 20 readings for both probes on a graph. It is stupidly over the top (a Pi with a cheap sdr dongle listens for packets from the bbq down the garden, it parses out the measurements and fires them into a dynamodb which is absurd but it was quick to do, then the Alexa skill just pulls from there and sends to a chart api that draws my line graphs to show on alex’s screen - totally absurd but great fun to do)

• dirsearch

  2 8,116 9.1 Python

  Web path scanner

  Project mention: Release dirsearch v0.4.2 - Web Path Scanner | reddit.com/r/netsec | 2021-09-12

• spiderfoot

  12 8,065 9.5 Python

  SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

  Project mention: Social media | reddit.com/r/OSINT | 2022-06-10

  Spiderfoot is good https://github.com/smicallef/spiderfoot

• Scout APM

  scoutapm.com

  sponsored

  Less time debugging, more time building. Scout APM allows you to find and fix performance issues with no hassle. Now with error monitoring and external services monitoring, Scout is a developer's best friend when it comes to application development.

  

• trape

  7 7,060 0.0 Python

  People tracker on the Internet: OSINT analysis and research tool by Jose Pino

  Project mention: ILPT Request: How to bypass phishing detection? Google detects my phishing link that I send to shit faces that like to spread rumors and damage reputation. Google detects every link sent to an android phone. | reddit.com/r/IllegalLifeProTips | 2022-03-31

• pyWhat

  3 5,233 8.6 Python

  🐸 Identify anything. pyWhat easily lets you identify emails, IP addresses, and more. Feed it a .pcap file or some text and it'll tell you what it is! 🧙‍♀️

  Project mention: Tips for Making a Popular Open-Source Project in 2021 [Ultimate Guide] | news.ycombinator.com | 2021-11-12

• hacktricks

  0 4,730 9.8 Python

  Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

• Tool-X

  1 4,175 4.4 Python

  Tool-X is a kali linux hacking Tool installer. Tool-X developed for termux and other Linux based systems. using Tool-X you can install almost 370+ hacking tools in termux app and other linux based distributions.

  Project mention: Is there any way to switch to intel hd graphics even if *sudo prime-select intel* doesn't work? | reddit.com/r/linux4noobs | 2021-12-11

  thanks, but i don't think i'll be dual booting and i have already gotten this

• Osintgram

  8 3,870 1.2 Python

  Osintgram is a OSINT tool on Instagram. It offers an interactive shell to perform analysis on Instagram account of any users by its nickname

  Project mention: Can anyone help me to download comments from an instagran account ; | reddit.com/r/OSINT | 2022-05-16

  Check out Osintgram

• caldera

  6 3,536 9.7 Python

  Automated Adversary Emulation Platform

  

  Project mention: How to test our AV/EDR | reddit.com/r/AskNetsec | 2022-03-01

• h8mail

  2 2,518 0.0 Python

  Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email

  Project mention: h8mail VS Hackfb - a user suggested alternative | libhunt.com/r/h8mail | 2021-11-13

• Raccoon

  3 2,496 1.6 Python

  A high performance offensive security tool for reconnaissance and vulnerability scanning

  Project mention: I wrote a blazing fast subdomain enumerator! (100.000 domains checked under 10 minutes!) | reddit.com/r/hacking | 2022-03-16

  This + Raccoon seems like it would be a great first recon scan.

• trackerjacker

  1 2,343 0.0 Python

  Like nmap for mapping wifi networks you're not connected to, plus device tracking

  Project mention: I Hacked My Standing Desk with a Raspberry Pi | news.ycombinator.com | 2021-07-25

  Well, instead of a teensy, the esp32 is sure a good bet.

  But since you've got the Pi, the next logical step is to get an rtc upgrade and run chrony/openntpd and a backup dns cache. Why not? I mean its right there on the desk. Could add a quick binary clock for practicality.

  Since you might now be dependent on the thing, its easy to add snmp for monitoring, hack in some rrdtool or whatever to graph your sit/stand time, maybe a serial connection to monitor your UPS power situation, and you get a free Pi-hole by now! Probably a little overkill to run wireguard on the thing, though.

  Why stop there? Have it control some functional LED lighting[0] (Zack uses an ESP32 instead of the pi--must not care about clock drift. The biometric sensor is also a little expensive and uncomfortable looking.) with suntime[1] for a perfectly and coherently illuminated environment. For the extremely paranoid, yet lazy and obsessive (who does that not describe?) you can grab an extra wifi dongle with raw monitoring mode to have some fun with trackerjacker[2]. Use an innovative static base station running map mode, so when an influx of unknown devices with increasing strength and/or known vehicle SSIDs or PAN beacons are detected, just go full Red Alert (using those very practical leds) and score a quick win by raising the desk and commanding your IoT lighting for a deft escape. Maybe you can use this for the girlfriend too, you've already got rrdtool or cacti or whatever graphing the desk height, so you could also use that capability to gain insight as to when it should reach out and trigger your coffee maker's ESP32, certainly while raising the desk.

  [0] - https://www.youtube.com/watch?v=g6n8XLmZ__I

  [1] - https://github.com/SatAgro/suntime

  [2] - https://github.com/calebmadrigal/trackerjacker https://reconshell.com/trackerjacker-maps-and-tracks-wifi-ne...

• kickthemout

  1 2,043 0.0 Python

  💤 Kick devices off your network by performing an ARP Spoof attack.

  Project mention: How do I turn someone's WiFi back on | reddit.com/r/Hacking_Tutorials | 2021-11-27

  You could invoke use of a script to deauth the devices(i.e kickthemout - https://github.com/k4m4/kickthemout) - [ this will send DEAUTH packets to the wifi devices, and such they will deauth from the wifi on the network ]intermitently, this might make the parents perhaps log into the console themselves to disable this feature.

• github-dorks

  0 1,978 3.5 Python

  Find leaked secrets via github search

• Reconnoitre

  0 1,868 0.0 Python

  A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

• Ghost

  2 1,640 8.6 Python

  Ghost Framework is an Android post-exploitation framework that exploits the Android Debug Bridge to remotely access an Android device. (by EntySec)

  

  Project mention: Some information and advice about DDoS, from someone who was there during #opPayback | reddit.com/r/anonymous | 2022-02-27

• pwn_jenkins

  0 1,494 3.3 Python

  Notes about attacking Jenkins servers

• TorBot

  1 1,397 6.9 Python

  Dark Web OSINT Tool

  

  Project mention: List of resources | reddit.com/r/HackForUkraine | 2022-02-27

• reconspider

  1 1,310 2.5 Python

  🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

  Project mention: ReconSpider Osint Framework | news.ycombinator.com | 2022-01-12

Python Hacking related posts

• Is there a way to run a single batch file and keep it open but not show the terminal window
  1 project | reddit.com/r/hacking | 14 Jun 2022
• GitHub - Z4nzu/hackingtool: ALL IN ONE Hacking Tool For Hackers
  1 project | reddit.com/r/u_Additional-Jello-397 | 7 Jun 2022
• Payloads All The Things: Useful payloads, bypass for web security and pentest
  1 project | news.ycombinator.com | 2 Jun 2022
• Payloads All the things
  1 project | reddit.com/r/cybersecurity | 29 May 2022
• Anyone know how to use The CSMTokenGrabber?
  1 project | reddit.com/r/hacking | 4 May 2022
• Phone number history of owners
  1 project | reddit.com/r/OSINT | 2 May 2022
• DAMN WIFI IS SO SLOW
  1 project | reddit.com/r/teenagers | 20 Apr 2022

Index

Sponsored

Deliver Cleaner and Safer Code - Right in Your IDE of Choice!

SonarLint is a free and open source IDE extension that identifies and catches bugs and vulnerabilities as you code, directly in the IDE. Install from your favorite IDE marketplace today.

www.sonarlint.org

Do not miss the trending Python projects with our weekly report!