Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality. Learn more →
Top 20 Python pentesting-tool Projects
-
hoaxshell
A Windows reverse shell payload generator and handler that abuses the http(s) protocol to establish a beacon-like reverse shell.
-
malicious-pdf
💀 Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
Lockdoor-Framework
🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
webstor
WebStor efficiently enumerates all websites across your organization’s networks and those in your DNS records - including cloud-hosted servers via zone transfer data - stores their responses, and lets you query for known web technologies, including those with zero-day vulnerabilities.
-
ParaForge
A BurpSuite extension to create a custom word-list of endpoint and parameters for enumeration and fuzzing
-
mediator
An extensible, end-to-end encrypted reverse shell that works across networks without port forwarding. (by lawndoc)
-
Subcert
Subcert is a subdomain enumeration tool, that finds all the subdomains from certificate transparency logs.
-
MobSecco
Cloning apk for bypassing code tampering detection, Google Safety Net and scanning vulnerable plugins
-
RedDrop
RedDrop is a quick and easy web server for capturing and processing encoded and encrypted payloads and tar archives.
-
Crowbar
A windows post exploitation tool that contains a lot of features for information gathering and more. (by 0x1CA3)
-
NotesToCommands
NotesToCommands is a powerful command template experience, allowing users to instantly execute terminal commands, with varying arguments, grouped into sections in a note or file. It was originally created for pentesting uses, to avoid the needed remembrance and retyping of sets of commands for various attacks.
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
Wrote a tool two years ago that does some of the PDF-tests. But more could be added: https://github.com/jonaslejon/malicious-pdf
o365Spray is a python script that can be used to password spray attack Microsoft 365 email accounts very efficiently. Here is the link to the script: https://github.com/0xZDH/o365spray
Project mention: Pmkidcracker - A WiFi password cracking tool without needing clients to be connected (With Explanations) | /r/Hacking_Tutorials | 2023-07-12
Project mention: ParaForge: A BurpSuite extension to create a custom word list of endpoints and parameters for enumeration and fuzzing | /r/cybersecurity | 2023-06-30
Project mention: MobSecco: A tool for Cloning apk for bypassing code tampering detection, Google Safety Net and scanning vulnerable plugins | /r/cybersecurity | 2023-07-02
Python pentesting-tools related posts
- ExploitToolFinder
- Securing PDF Generators Against SSRF Vulnerabilities
- HoaxShell Beta - Integrated with RevShells.com
- Is MSF Venom - Metasploit a good investment for the long run in terms of RATs?
- Does anyone know how those YouTubers locate Indian scam call centers?
- In need of frontend contributors for Open Source
- Looking for collaborators for Open Source Project
-
A note from our sponsor - InfluxDB
www.influxdata.com | 25 Apr 2024
Index
What are some of the best open-source pentesting-tool projects in Python? This list will help you:
Project | Stars | |
---|---|---|
1 | hoaxshell | 2,880 |
2 | malicious-pdf | 2,585 |
3 | Lockdoor-Framework | 1,294 |
4 | APTRS | 770 |
5 | o365spray | 670 |
6 | SSTImap | 644 |
7 | jwtXploiter | 257 |
8 | crimson | 212 |
9 | pmkidcracker | 151 |
10 | webstor | 149 |
11 | ParaForge | 134 |
12 | mediator | 97 |
13 | Simple-Async-Port-Scanner | 85 |
14 | Subcert | 77 |
15 | MobSecco | 59 |
16 | xira | 59 |
17 | RedDrop | 55 |
18 | Crowbar | 36 |
19 | MIXON | 15 |
20 | NotesToCommands | 5 |
Sponsored