Top 23 Python security-tool Projects

security-tools

• Add a project

1. spiderfoot

   1 22 18,137 0.0 Python

   SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

   

   Project mention: Show HN: Customizable OSINT dashboard to monitor the situation | news.ycombinator.com | 2026-01-12

2. SaaSHub

   www.saashub.com featured

   SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

   

3. Fail2Ban

   2 59 17,971 8.0 Python

   Daemon to ban hosts that cause multiple authentication errors

   

   Project mention: UFW, fail2ban, and Banning Repeat Offenders | dev.to | 2026-03-23

   UFW blocks ports. fail2ban blocks behavior. Together they form your server's intrusion response layer — UFW narrows the attack surface, fail2ban watches the traffic that gets through and bans the IPs that misbehave.

4. prowler

   3 30 13,991 9.9 Python

   Prowler is the world’s most widely used open-source cloud security platform that automates security and compliance across any cloud environment.

   

   Project mention: CIS AWS v3.0 in 60 Seconds: Automate Compliance with Terraform | dev.to | 2026-03-27

   And you're probably guessing that I'm not the first person to have the idea - we need to automate this. AWS Security Hub maps 37 controls. Prowler all of them. However, none of them answer the question of how to fix them (at least not by copy-pasting).

5. scapy

   4 29 12,352 8.9 Python

   Scapy: the Python-based interactive packet manipulation program & library.

   

   Project mention: Network Scanning with Python: ARP, Port, and DNS Scanner | dev.to | 2025-10-18

   Network security and reconnaissance are essential skills for cybersecurity professionals. In this blog post, we will build a Python-based network scanner that performs ARP scanning, port scanning, and DNS resolution using the scapy, socket, dns.resolver, and threading libraries. We will also use rich for better console output.

6. bandit

   5 29 8,087 8.1 Python

   Bandit is a tool designed to find common security issues in Python code.

   

   Project mention: AI Is Breaking Two Vulnerability Cultures — And Vibe Coders Are About to Get Caught in the Middle | dev.to | 2026-05-08

   # .pre-commit-config.yaml - repo: https://github.com/zricethezav/gitleaks rev: v8.18.0 hooks: - id: gitleaks # catches accidental secret commits - repo: https://github.com/PyCQA/bandit rev: 1.7.5 hooks: - id: bandit # catches common Python security antipatterns

7. monkey

   6 5 6,998 9.1 Python

   Infection Monkey - An open-source adversary emulation platform

   

8. NetExec

   7 2 5,598 9.8 Python

   The Network Execution Tool

   

9. AutoSploit

   8 1 5,240 0.0 Python

   Automated Mass Exploiter

   

10. Nettacker

    9 1 5,229 8.6 Python

    Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

    

11. IntelOwl

    10 14 4,596 9.2 Python

    IntelOwl: manage your Threat Intelligence at scale

    

    Project mention: All Data and AI Weekly #224-12 Jan 2026 | dev.to | 2026-01-12

    GitHub Repo

12. TorBot

    11 1 4,113 6.3 Python

    Dark Web OSINT Tool

    

13. pocsuite3

    12 2 3,845 5.2 Python

    pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.

    

14. chipsec

    13 16 3,261 9.0 Python

    Platform Security Assessment Framework

    

15. llm-guard

    14 4 3,062 6.5 Python

    The Security Toolkit for LLM Interactions

    

16. opencve

    15 21 2,737 9.1 Python

    Vulnerability Intelligence Platform

    

17. Reconnoitre

    16 2 2,189 0.0 Python

    A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

    

18. rapidscan

    17 1 2,059 4.1 Python

    :new: The Multi-Tool Web Vulnerability Scanner.

    

19. evillimiter

    18 11 1,981 0.0 Python

    Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access

    

20. dronesploit

    19 8 1,945 2.0 Python

    Drone pentesting framework console

    

21. cve-bin-tool

    20 13 1,701 9.7 Python

    The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 350 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with an SBOM or a list of components and versions.

    

22. requests-ip-rotator

    21 6 1,658 2.4 Python

    A Python library to utilize AWS API Gateway's large IP pool as a proxy to generate pseudo-infinite IPs for web scraping and brute forcing.

    

23. extract_otp_secrets

    22 12 1,621 8.9 Python

    Extract one time password (OTP) secrets from QR codes exported by two-factor authentication (2FA) apps such as "Google Authenticator". The exported QR codes from authentication apps can be captured by camera, read from images, or read from text files. The secrets can be exported to JSON or CSV, or printed as QR codes to console.

    

    Project mention: De-Googling TOTP Authenticator Codes | news.ycombinator.com | 2025-09-01

    - that opened a new need for "safe TOTP replication with offline access", and that's how I ended-up running my own vaultwarden instance and using the bitwarden clients across devices.

    I'm glad I did, and I can't recommend it more. IIRC, this¹ helped tremendously along the way.

    ¹: https://github.com/scito/extract_otp_secrets

24. pygod

    23 3 1,492 8.2 Python

    A Python Library for Graph Outlier Detection (Anomaly Detection)

    

Python security-tools related posts

• Show HN: AI-native red-team for penetration testing and vulnerability research

  1 project | news.ycombinator.com | 9 Jun 2026

• Show HN: Z3r0 – Multi-agent red team collaboration platform

  1 project | news.ycombinator.com | 8 Jun 2026

• How to Stop Leaking AWS Keys to GitHub (And What to Do When You Already Did)

  2 projects | dev.to | 20 May 2026

• AI Is Breaking Two Vulnerability Cultures — And Vibe Coders Are About to Get Caught in the Middle

  2 projects | dev.to | 8 May 2026

• Sourcery vs mypy: Type Checking vs AI Refactoring (2026)

  1 project | dev.to | 9 Apr 2026

• Show HN: I built a Python-based app for Windows security diagnostics

  1 project | news.ycombinator.com | 2 Apr 2026

• Show HN: I built a Python-based app for Windows security diagnostics

  1 project | news.ycombinator.com | 2 Apr 2026
• A note from our sponsor - SaaSHub
  www.saashub.com | 15 Jun 2026

  SaaSHub helps you find the best software and product alternatives Learn more →

Index

Sponsored

SaaSHub - Software Alternatives and Reviews

SaaSHub helps you find the best software and product alternatives

www.saashub.com

Do not miss the trending Python projects with our weekly report!