Top 23 Python security-tool Projects

• spiderfoot

  19 11,723 6.6 Python

  SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

• Fail2Ban

  49 10,423 8.8 Python

  Daemon to ban hosts that cause multiple authentication errors

  

Project mention: Looking for a way to remote in to K's of raspberry pi's... | /r/sysadmin | 2023-12-10

now some things you need to think about: - cloud init - this will need to be secure so lock it down hard anything not needed an alternative OS to look at if you have the ability's is https://www.alpinelinux.org/ also as these devices are not that powerfull every extra agent / abstaction layer you add impacts performance need to look at low over head security https://www.crowdsec.net/ and https://github.com/fail2ban/fail2ban (if you call fail2ban security) - using certificates to authenticate ssh login

• WorkOS

  workos.com sponsored

  The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

  

• scapy

  26 10,028 9.3 Python

  Scapy: the Python-based interactive packet manipulation program & library. Supports Python 2 & Python 3.

  

Project mention: Seven Python Projects to Elevate Your Coding Skills | dev.to | 2024-02-15

Example Network Scanner Scapy

• prowler

  24 9,547 9.8 Python

  Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more

  

Project mention: Ask HN: Cloud security auditing for indie-grade projects? | news.ycombinator.com | 2023-12-04

Which cloud provider?

https://github.com/prowler-cloud/prowler is easy to get going with, and gives decent results. It's much stronger at AWS than GCP or Azure.

Steampipe can be a little harder to wrap your head around, but scales really well and has broader support: https://hub.steampipe.io/mods?objectives=security

• rengine

  4 6,685 9.6 Python

  reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.

Project mention: Any self-host FOSS suites for running phishing testing campaigns? | /r/selfhosted | 2023-05-21

I couldn't find anything named reEngine, but I found reNgine ( https://yogeshojha.github.io/rengine/ ) which I think is what you meant.

• monkey

  5 6,483 10.0 Python

  Infection Monkey - An open-source adversary emulation platform

  

Project mention: Security Audit Scan | /r/msp | 2023-06-14

• bandit

  21 5,989 8.2 Python

  Bandit is a tool designed to find common security issues in Python code.

  

Project mention: Enhance Your Project Quality with These Top Python Libraries | dev.to | 2024-03-18

Bandit is a tool designed to find common security issues in Python code. It was developed by the OpenStack Security Project and is a great addition to any serious Python project.

• InfluxDB

  www.influxdata.com sponsored

  Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

  

• AutoSploit

  1 4,918 0.0 Python

  Automated Mass Exploiter

• bbot

  5 3,506 9.9 Python

  A recursive internet scanner for hackers.

  

Project mention: [GitHub Action]: Wrappers for sqlmap, bbot and nikto | /r/cybersecurity | 2023-05-29

Its not that much of a tool than wrappers of few awesome tools that most of you probably know and use today - sqlmap, bbot and nikto.

• pocsuite3

  2 3,496 8.4 Python

  pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.

  

• IntelOwl

  13 3,103 9.6 Python

  IntelOwl: manage your Threat Intelligence at scale

  

Project mention: Monthly Security Checklist | /r/msp | 2023-06-25

• consoleme

  10 3,065 0.0 Python

  A Central Control Plane for AWS Permissions and Access

  

Project mention: Launch HN: Slauth (YC S22) – auto-generate secure IAM policies for AWS and GCP | news.ycombinator.com | 2023-12-04

Why are you using (very expensive) GPT, or any LLM for that matter, when this was already a solved problem using rulesets? Netflix for example has open source that does this already: https://github.com/Netflix/consoleme

Instead of analyzing your code, you just run your code with no permissions and it automatically detects permission failures and thens open those permissions, with a UI showing you what it did so you can remove any permissions you don't want.

That actually seems much more secure than trying to divine the rules from reading the code.

What value is the LLM adding here?

• chipsec

  16 2,827 9.3 Python

  Platform Security Assessment Framework

  

Project mention: Chipsec: Platform Security Assessment Framework | news.ycombinator.com | 2023-12-01

• TorBot

  1 2,599 8.7 Python

  Dark Web OSINT Tool

  

• Reconnoitre

  2 2,065 0.0 Python

  A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

• rapidscan

  1 1,650 4.1 Python

  :new: The Multi-Tool Web Vulnerability Scanner.

  

• opencve

  21 1,618 4.4 Python

  CVE Alerting Platform

  

Project mention: Auth0 increases price by 300% | /r/webdev | 2023-12-07

• evillimiter

  11 1,478 0.0 Python

  Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

• inql

  3 1,460 5.9 Python

  InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.

  

• osv.dev

  19 1,403 9.7 Python

  Open source vulnerability DB and triage service.

  

Project mention: Magika: AI powered fast and efficient file type identification | news.ycombinator.com | 2024-02-15

Is it safe to assume that hashing (1) every file on disk, or (2) any given file on disk at random, will yield random bits with uniform probability; and (3) why Argon2 instead of e.g. only two rounds of SHA256?

https://github.com/google/osv.dev/blob/master/README.md#usin... :

> We provide a Go based tool that will scan your dependencies, and check them against the OSV database for known vulnerabilities via the OSV API. ... With package metadata, not (a file hash, package) database that could be generated from OSV and the actual package files instead of their manifest of already-calculated checksums.

Might as well be heating a pool on the roof with all of this waste heat from hashing binaries build from code of unknown static and dynamic quality.

Add'l useful formats:

> Currently it is able to scan various lockfiles, debian docker containers, SPDX and CycloneDB SBOMs, and git repositories

• dronesploit

  8 1,353 5.3 Python

  Drone pentesting framework console

• requests-ip-rotator

  5 1,227 2.6 Python

  A Python library to utilize AWS API Gateway's large IP pool as a proxy to generate pseudo-infinite IPs for web scraping and brute forcing.

• ssh-mitm

  42 1,219 8.8 Python

  SSH-MITM - ssh audits made simple (by ssh-mitm)

  

Project mention: Terrapin Attack for prefix injection in SSH | news.ycombinator.com | 2023-12-19

There is now an issue ticket in ssh-mitm to discuss the similarities between ssh-mitm and terrapin attack: https://github.com/ssh-mitm/ssh-mitm/issues/165

• SaaSHub

  www.saashub.com sponsored

  SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

  

Python security-tools related posts

• Horus: An OSINT / digital forensics tool built in Python (formerly 'Sentinel')
  1 project | news.ycombinator.com | 22 Apr 2024
• Show HN: Horus – An OSINT / digital forensics tool built in Python
  1 project | news.ycombinator.com | 17 Apr 2024
• Tracking Snoop Dogg's $4M Crypto Wallet with My New Open Source Tool!
  1 project | dev.to | 13 Apr 2024
• New host intrusion detection system Impulse
  1 project | news.ycombinator.com | 1 Apr 2024
• The easiest way to setup security monitoring for your VPS server or cloud VMs
  1 project | news.ycombinator.com | 28 Mar 2024
• Randcrack – predict Python's random module random generated values
  1 project | news.ycombinator.com | 16 Mar 2024
• Enhance your python code security using bandit
  1 project | dev.to | 29 Feb 2024
• A note from our sponsor - WorkOS
  workos.com | 26 Apr 2024

  The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning. Learn more →

Index

Sponsored

SaaSHub - Software Alternatives and Reviews

SaaSHub helps you find the best software and product alternatives

www.saashub.com

Do not miss the trending Python projects with our weekly report!