Python pentest-tool

Open-source Python projects categorized as pentest-tool
Edit details
Topics: Pentesting Pentest Python Hacking Penetration Testing
Power Real-Time Data Analytics at Scale
Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
www.influxdata.com
Sponsored

Top 23 Python pentest-tool Projects

  • dirsearch

    Web path scanner

    • Project mention: Looking for some help with this Python package | /r/learnpython | 2023-08-19

    I am new to Python. With the help of several users (thanks u/Diapolo10 and u/shiftybyte)I've been able to install Python and the dirsearch package. Dirsearch (https://github.com/maurosoria/dirsearch) allows for checking website paths with a wordlist. For example, I have a wordlist file with words like "dog", "cat", "bird", etc and I want to check the validity of those words as extensions on a website. Something like "example.com/bird", "example.com/cat", etc. I have a test wordlist in the same directory as dirsearch, but I am confused on how to proceed with the commands. I want to have it check my wordlist as extensions on the example.com website and then save output on if the webpath is valid or not. Just need a little bit of help.

  • OneForAll

    OneForAll是一款功能强大的子域收集工具

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

    InfluxDB logo

  • PhoneSploit-Pro

    An all-in-one hacking tool to remotely exploit Android devices using ADB and Metasploit-Framework to get a Meterpreter session.

  • kb

    A minimalist command line knowledge base manager

  • Raccoon

    A high performance offensive security tool for reconnaissance and vulnerability scanning

  • CloudFlair

    🔎 Find origin servers of websites behind CloudFlare by using Internet-wide scan data from Censys.

  • odat

    ODAT: Oracle Database Attacking Tool

  • WorkOS

    The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

    WorkOS logo

  • evillimiter

    Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

  • Lockdoor-Framework

    🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

  • CrossLinked

    LinkedIn enumeration tool to extract valid employee names from an organization through search engine scraping

  • BlackMamba

    C2/post-exploitation framework

  • DumpsterFire

    "Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

  • Pompem

    Find exploit tool

  • habu

    Hacking Toolkit

  • msdat

    MSDAT: Microsoft SQL Database Attacking Tool

  • subscraper

    Subdomain and target enumeration tool built for offensive security testing

  • SSTImap

    Automatic SSTI detection and exploitation tool with interactive interface

  • overlord

    Overlord - Red Teaming Infrastructure Automation (by qsecure-labs)

  • CRLFsuite

    The most powerful CRLF injection (HTTP Response Splitting) scanner.

  • pymeta

    Utility to download and extract document metadata from an organization. This technique can be used to identify: domains, usernames, software/version numbers and naming conventions.

    • Project mention: How to download all files from a google search? | /r/OSINT | 2023-06-05

    PyMeta has worked wonders for me!

  • PivotSuite

    Network Pivoting Toolkit

  • SBSCAN

    SBSCAN是一款专注于spring框架的渗透测试工具,可以对指定站点进行springboot未授权扫描/敏感信息扫描以及进行spring框架漏洞扫描与验证的综合利用工具。 [SBSCAN is a penetration testing tool focused on the spring framework that can scan springboot sensitive information/unauthorized for specified sites and scan and validate spring related vulnerabilities]

    • Project mention: A penetration testing tool for the spring framework | /r/cybersecurity | 2023-10-27

    $ git clone https://github.com/sule01u/SBSCAN.git $ cd SBSCAN $ pip3 install -r requirements.txt $ python3 sbscan.py --help

  • userefuzz

    User-Agent , X-Forwarded-For and Referer SQLI Fuzzer

    • Project mention: Help | /r/programminghorror | 2023-05-09

  • SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo
NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020). The latest post mention was on 2023-10-27.

Python pentest-tool related posts

Index

What are some of the best open-source pentest-tool projects in Python? This list will help you:

Project Stars
1 dirsearch 11,179
2 OneForAll 7,643
3 PhoneSploit-Pro 4,165
4 kb 3,090
5 Raccoon 2,993
6 CloudFlair 2,375
7 odat 1,551
8 evillimiter 1,478
9 Lockdoor-Framework 1,291
10 CrossLinked 1,140
11 BlackMamba 973
12 DumpsterFire 959
13 Pompem 939
14 habu 855
15 msdat 802
16 subscraper 734
17 SSTImap 637
18 overlord 606
19 CRLFsuite 498
20 pymeta 447
21 PivotSuite 419
22 SBSCAN 391
23 userefuzz 367

Sponsored
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com