Python Hacking

Open-source Python projects categorized as Hacking Edit details

Top 23 Python Hacking Projects

  • PayloadsAllTheThings

    A list of useful payloads and bypass for Web Application Security and Pentest/CTF

    Project mention: Is there a way to run a single batch file and keep it open but not show the terminal window | | 2022-06-14

    I'm trying a reverse shell attack on my windows computer from kali (wsl2) and I'm using the powershell command from Payload All The Things ( I put the powershell command in a batch file and i want it to run and stay open in the background without showing a terminal window because if the window closes, i lose the connection on my kali terminal, any help would be appreciated

  • hackingtool

    ALL IN ONE Hacking Tool For Hackers

    Project mention: GitHub - Z4nzu/hackingtool: ALL IN ONE Hacking Tool For Hackers | | 2022-06-07
  • JetBrains

    Developer Ecosystem Survey 2022. Take part in the Developer Ecosystem Survey 2022 by JetBrains and get a chance to win a Macbook, a Nvidia graphics card, or other prizes. We’ll create an infographic full of stats, and you’ll get personalized results so you can compare yourself with other developers.

  • Ciphey

    ⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡

    Project mention: How do I get Ciphey to use more cores for decryption? | | 2022-02-16


  • owasp-mstg

    The Mobile Security Testing Guide (MSTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).

    Project mention: Moving from Web application pentesting to mobile. | | 2022-04-04

    - OWASP is as usual a good resource:

  • urh

    Universal Radio Hacker: Investigate Wireless Protocols Like A Boss

    Project mention: Reversing 2.4GHz Remote Control | | 2022-04-27

    Wheni first stumbled across (universal radio hacker) i couldn’t believe my luck.

    I’ve done stuff like this manually before (as in just collecting all the bits and then trying to ascribe meaning, e.g. ) but i used URH to reverse my bbq temperature sensors.

    I have an alexa skill that shows the last 20 readings for both probes on a graph. It is stupidly over the top (a Pi with a cheap sdr dongle listens for packets from the bbq down the garden, it parses out the measurements and fires them into a dynamodb which is absurd but it was quick to do, then the Alexa skill just pulls from there and sends to a chart api that draws my line graphs to show on alex’s screen - totally absurd but great fun to do)

  • dirsearch

    Web path scanner

    Project mention: Release dirsearch v0.4.2 - Web Path Scanner | | 2021-09-12
  • spiderfoot

    SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

    Project mention: Social media | | 2022-06-10

    Spiderfoot is good

  • Scout APM

    Less time debugging, more time building. Scout APM allows you to find and fix performance issues with no hassle. Now with error monitoring and external services monitoring, Scout is a developer's best friend when it comes to application development.

  • trape

    People tracker on the Internet: OSINT analysis and research tool by Jose Pino

    Project mention: ILPT Request: How to bypass phishing detection? Google detects my phishing link that I send to shit faces that like to spread rumors and damage reputation. Google detects every link sent to an android phone. | | 2022-03-31
  • pyWhat

    🐸 Identify anything. pyWhat easily lets you identify emails, IP addresses, and more. Feed it a .pcap file or some text and it'll tell you what it is! 🧙‍♀️

    Project mention: Tips for Making a Popular Open-Source Project in 2021 [Ultimate Guide] | | 2021-11-12
  • hacktricks

    Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

  • Tool-X

    Tool-X is a kali linux hacking Tool installer. Tool-X developed for termux and other Linux based systems. using Tool-X you can install almost 370+ hacking tools in termux app and other linux based distributions.

    Project mention: Is there any way to switch to intel hd graphics even if *sudo prime-select intel* doesn't work? | | 2021-12-11

    thanks, but i don't think i'll be dual booting and i have already gotten this

  • Osintgram

    Osintgram is a OSINT tool on Instagram. It offers an interactive shell to perform analysis on Instagram account of any users by its nickname

    Project mention: Can anyone help me to download comments from an instagran account ; | | 2022-05-16

    Check out Osintgram

  • caldera

    Automated Adversary Emulation Platform

    Project mention: How to test our AV/EDR | | 2022-03-01
  • h8mail

    Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email

    Project mention: h8mail VS Hackfb - a user suggested alternative | | 2021-11-13
  • Raccoon

    A high performance offensive security tool for reconnaissance and vulnerability scanning

    Project mention: I wrote a blazing fast subdomain enumerator! (100.000 domains checked under 10 minutes!) | | 2022-03-16

    This + Raccoon seems like it would be a great first recon scan.

  • trackerjacker

    Like nmap for mapping wifi networks you're not connected to, plus device tracking

    Project mention: I Hacked My Standing Desk with a Raspberry Pi | | 2021-07-25

    Well, instead of a teensy, the esp32 is sure a good bet.

    But since you've got the Pi, the next logical step is to get an rtc upgrade and run chrony/openntpd and a backup dns cache. Why not? I mean its right there on the desk. Could add a quick binary clock for practicality.

    Since you might now be dependent on the thing, its easy to add snmp for monitoring, hack in some rrdtool or whatever to graph your sit/stand time, maybe a serial connection to monitor your UPS power situation, and you get a free Pi-hole by now! Probably a little overkill to run wireguard on the thing, though.

    Why stop there? Have it control some functional LED lighting[0] (Zack uses an ESP32 instead of the pi--must not care about clock drift. The biometric sensor is also a little expensive and uncomfortable looking.) with suntime[1] for a perfectly and coherently illuminated environment. For the extremely paranoid, yet lazy and obsessive (who does that not describe?) you can grab an extra wifi dongle with raw monitoring mode to have some fun with trackerjacker[2]. Use an innovative static base station running map mode, so when an influx of unknown devices with increasing strength and/or known vehicle SSIDs or PAN beacons are detected, just go full Red Alert (using those very practical leds) and score a quick win by raising the desk and commanding your IoT lighting for a deft escape. Maybe you can use this for the girlfriend too, you've already got rrdtool or cacti or whatever graphing the desk height, so you could also use that capability to gain insight as to when it should reach out and trigger your coffee maker's ESP32, certainly while raising the desk.

    [0] -

    [1] -

    [2] -

  • kickthemout

    💤 Kick devices off your network by performing an ARP Spoof attack.

    Project mention: How do I turn someone's WiFi back on | | 2021-11-27

    You could invoke use of a script to deauth the devices(i.e kickthemout - - [ this will send DEAUTH packets to the wifi devices, and such they will deauth from the wifi on the network ]intermitently, this might make the parents perhaps log into the console themselves to disable this feature.

  • github-dorks

    Find leaked secrets via github search

  • Reconnoitre

    A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

  • Ghost

    Ghost Framework is an Android post-exploitation framework that exploits the Android Debug Bridge to remotely access an Android device. (by EntySec)

    Project mention: Some information and advice about DDoS, from someone who was there during #opPayback | | 2022-02-27
  • pwn_jenkins

    Notes about attacking Jenkins servers

  • TorBot

    Dark Web OSINT Tool

    Project mention: List of resources | | 2022-02-27
  • reconspider

    🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

    Project mention: ReconSpider Osint Framework | | 2022-01-12
NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020). The latest post mention was on 2022-06-14.

Python Hacking related posts


What are some of the best open-source Hacking projects in Python? This list will help you:

Project Stars
1 PayloadsAllTheThings 38,424
2 hackingtool 18,022
3 Ciphey 10,071
4 owasp-mstg 9,063
5 urh 8,306
6 dirsearch 8,116
7 spiderfoot 8,065
8 trape 7,060
9 pyWhat 5,233
10 hacktricks 4,730
11 Tool-X 4,175
12 Osintgram 3,870
13 caldera 3,536
14 h8mail 2,518
15 Raccoon 2,496
16 trackerjacker 2,343
17 kickthemout 2,043
18 github-dorks 1,978
19 Reconnoitre 1,868
20 Ghost 1,640
21 pwn_jenkins 1,494
22 TorBot 1,397
23 reconspider 1,310
Find remote jobs at our new job board There are 4 new remote jobs listed recently.
Are you hiring? Post a new remote job listing for free.
Deliver Cleaner and Safer Code - Right in Your IDE of Choice!
SonarLint is a free and open source IDE extension that identifies and catches bugs and vulnerabilities as you code, directly in the IDE. Install from your favorite IDE marketplace today.