Top 23 Python Infosec Projects

Infosec

• Add a project

1. sherlock

   1 116 84,944 9.3 Python

   Hunt down social media accounts by username across social networks

   

   Project mention: Free software scares normal people | news.ycombinator.com | 2025-10-30

   Wow, it's actually real.

   https://old.reddit.com/r/github/comments/1at9br4/i_am_new_to...

   https://github.com/sherlock-project/sherlock/issues/2011

2. SaaSHub

   www.saashub.com featured

   SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

   

3. maigret

   2 27 31,804 8.6 Python

   🕵️‍♂️ Collect a dossier on a person by username from 3000+ sites

   

   Project mention: Should you leave red herrings about yourself online? | news.ycombinator.com | 2026-05-11

   This article reminded me of seeing this in GH trending repositories last month: https://github.com/soxoj/maigret

   "For educational and lawful purposes only"

4. spiderfoot

   3 22 18,137 0.0 Python

   SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

   

   Project mention: Show HN: Customizable OSINT dashboard to monitor the situation | news.ycombinator.com | 2026-01-12

5. Anthropic-Cybersecurity-Skills

   4 5 15,458 7.0 Python

   754 structured cybersecurity skills for AI agents · Mapped to 5 frameworks: MITRE ATT&CK, NIST CSF 2.0, MITRE ATLAS, D3FEND & NIST AI RMF · agentskills.io standard · Works with Claude Code, GitHub Copilot, Codex CLI, Cursor, Gemini CLI & 20+ platforms · 26 security domains · Apache 2.0

   

   Project mention: Claude for Small Business: 382K Day-One Buyer's Guide | dev.to | 2026-05-25

   The GitHub Trending board today corroborates this. Of the top fifteen repos, at least four are explicitly Skills-targeted: multica-ai/andrej-karpathy-skills (154K stars), affaan-m/ECC (192K stars), mukul975/Anthropic-Cybersecurity-Skills (9K), and the broader multica-ai/multica managed-agents platform.

6. dirsearch

   5 12 14,381 7.5 Python

   Web path scanner

   

7. routersploit

   6 11 13,149 3.4 Python

   Exploitation Framework for Embedded Devices

   

8. Awesome-WAF

   7 5 7,501 3.3 Python

   Everything about Web Application Firewalls (WAFs) from Security Standpoint! 🔥

   

9. DefaultCreds-cheat-sheet

   8 2 6,600 5.7 Python

   One place for all the default credentials to assist the Blue/Red teamers identifying devices with default password 🛡️

   

10. faraday

    9 8 6,518 8.0 Python

    Open Source Vulnerability Management Platform (by infobyte)

    

11. can-i-take-over-xyz

    10 14 5,645 6.1 Python

    "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.

    

12. NetExec

    11 2 5,598 9.8 Python

    The Network Execution Tool

    

13. LinkFinder

    12 2 4,322 1.0 Python

    A python script that finds endpoints in JavaScript files

    

14. snoop

    13 8 3,944 8.0 Python

    Snoop — инструмент разведки на основе открытых данных (OSINT world)

    

    Project mention: Snoop Project Update (search for usernames on 5k websites) | news.ycombinator.com | 2026-01-01

15. opencve

    14 21 2,737 9.1 Python

    Vulnerability Intelligence Platform

    

16. CTF

    15 1 2,503 4.4 Python

    CTF challenge (mostly pwn) files, scripts etc (by Crypto-Cat)

    

17. Malcolm

    16 4 2,435 9.9 Python

    Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.

    

18. cicd-goat

    17 17 2,219 5.2 Python

    A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple challenges.

    

19. yeti

    18 2 1,997 4.5 Python

    Your Everyday Threat Intelligence

    

20. Bashfuscator

    19 1 1,965 0.0 Python

    A fully configurable and extendable Bash obfuscation framework. This tool is intended to help both red team and blue team.

    

21. Hunting-Queries-Detection-Rules

    20 7 1,708 8.6 Python

    KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.

    

22. Name-That-Hash

    21 10 1,655 0.0 Python

    🔗 Don't know what type of hash it is? Name That Hash will name that hash type! 🤖 Identify MD5, SHA256 and 300+ other hashes ☄ Comes with a neat web app 🔥

    

23. passphrase-wordlist

    22 1 1,432 4.2 Python

    Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

    

24. Search-That-Hash

    23 12 1,403 3.4 Python

    🔎Searches Hash APIs to crack your hash quickly🔎 If hash is not found, automatically pipes into HashCat⚡

    

Python Infosec related posts

• Show HN: Accurate LLM-based password guesser

  1 project | news.ycombinator.com | 29 Jan 2026

• Show HN: Accurate Password Guessing with AI

  1 project | news.ycombinator.com | 25 Jan 2026

• An accurate AI password guesser based on personal information

  1 project | news.ycombinator.com | 22 Jan 2026

• Show HN: Customizable OSINT dashboard to monitor the situation

  1 project | news.ycombinator.com | 12 Jan 2026

• SpiderFoot automates OSINT for threat intelligence

  2 projects | news.ycombinator.com | 3 Jul 2024

• Show HN: Automatic security lookups from your clipboard

  1 project | news.ycombinator.com | 3 Jan 2024

• How to add a man page to your Ruby project, using kramdown-man and markdown

  2 projects | /r/ruby | 6 Dec 2023
• A note from our sponsor - SaaSHub
  www.saashub.com | 15 Jun 2026

  SaaSHub helps you find the best software and product alternatives Learn more →

Index

Sponsored

SaaSHub - Software Alternatives and Reviews

SaaSHub helps you find the best software and product alternatives

www.saashub.com

Do not miss the trending Python projects with our weekly report!