Python SSL

Open-source Python projects categorized as SSL | Edit details

An SSL is security technology. It's a protocol for servers and web browsers that makes sure that data passed between the two are private. It was first developed by Netscape in 1995 for the purpose of ensuring privacy, authentication, and data integrity in Internet communications. SSL is the predecessor to the modern TLS encryption used today.

Related topics: #TLS #Python #HTTP #Security #DNS

Top 17 Python SSL Projects

  • mitmproxy

    An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.

    Project mention: Extracting TLS keys from an unwilling application | news.ycombinator.com | 2022-05-24

    Not sure about the non-security expert bit but I've done stuff[0] similar to this for iOS using Frida[1] which supports macOS too. For apps that use unpinned certificates and the builtin networking libraries(NSURLSession et.al.) you can directly use mimtproxy[2] or Charles[3]

    0: https://hugotunius.se/2020/08/07/stealing-tls-sessions-keys-...

    1: https://frida.re/

    2: https://mitmproxy.org/

    3: https://www.charlesproxy.com/

  • Twisted

    Event-driven networking engine written in Python.

    Project mention: Twisted Matrix 22.2.0 has been released | Event-driven networking engine written in Python | reddit.com/r/Python | 2022-03-04

  • SonarLint

    Deliver Cleaner and Safer Code - Right in Your IDE of Choice!. SonarLint is a free and open source IDE extension that identifies and catches bugs and vulnerabilities as you code, directly in the IDE. Install from your favorite IDE marketplace today.

  • websockify

    Websockify is a WebSocket to TCP proxy/bridge. This allows a browser to connect to any application/server/service.

    Project mention: How to set up websockify? | reddit.com/r/AskProgramming | 2022-04-01

  • sslyze

    Fast and powerful SSL/TLS scanning library.

    Project mention: ERR_SSL_VERSION_OR_CIPHER_MISMATCH | reddit.com/r/techsupport | 2022-04-16

    3) If you are technically skilled then there are programs/scripts you can run that will tell you exactly what TLS/SSL settings your router supports by scanning it. I have used https://github.com/nabla-c0d3/sslyze in the past but that was a long time ago so not sure it still works well

  • lemur

    Repository for the Lemur Certificate Manager

    Project mention: Are there any solutions using a centralized validation server for Let's Encrypt | reddit.com/r/letsencrypt | 2022-05-21

    Other commercial options include ManageEngine and DigiCert. One the open source side there is gnarly stuff like https://github.com/aptise/peter_sslers and https://github.com/Netflix/lemur

  • pyOpenSSL -- A Python wrapper around the OpenSSL library

    A Python wrapper around the OpenSSL library

  • dnsrobocert

    Orchestrate Certbot and Lexicon together to provide Let's Encrypt TLS certificates validated by DNS challenges

    Project mention: Let’s Encrypt Receives the Levchin Prize for Real-World Cryptography | news.ycombinator.com | 2022-05-16

    If you don't feel like switching over this, I do this with dnsrobocert, with Namecheap's default DNS servers: https://github.com/adferrand/dnsrobocert

  • Scout APM

    Less time debugging, more time building. Scout APM allows you to find and fix performance issues with no hassle. Now with error monitoring and external services monitoring, Scout is a developer's best friend when it comes to application development.

  • trustme

    #1 quality TLS certs while you wait, for the discerning tester

    Project mention: New undocumented APIs in Python 3.10: The future of trust stores in Python | reddit.com/r/Python | 2021-11-28

    If anyone's in need of a solution to using generated certificates during testing I recommend checking out Trustme. I tweeted a little demo of the library in action some time ago too.

  • MicroWebSrv2

    The last Micro Web Server for IoTs (MicroPython) or large servers (CPython), that supports WebSockets, routes, template engine and with really optimized architecture (mem allocations, async I/Os). Ready for ESP32, STM32 on Pyboard, Pycom's chipsets (WiPy, LoPy, ...). Robust, efficient and documented!

    Project mention: MicroPython on ESP32 configurable by AP / webserver? | reddit.com/r/esp32 | 2021-09-08

    This guy has made a more complex webserver that you can use to host an API. It's less plug-and-play but it's way more powerful

  • Loki

    Remote Access Tool (by Bitwise-01)

  • Mocket

    a socket mock framework - for all kinds of socket animals, web-clients included

  • MITM_Intercept

    A little bit less hackish way to intercept and modify non-HTTP protocols through Burp & others.

    Project mention: MITM_Intercept: A little less hackish way to intercept and modify non-HTTP protocols through Burp & others. | reddit.com/r/netsec | 2022-05-15

  • cryptonice

    CryptoNice is both a command line tool and library which provides the ability to scan and report on the configuration of SSL/TLS for your internet or internal facing web services. Built using the sslyze API and ssl, http-client and dns libraries, cryptonice collects data on a given domain and performs a series of tests to check TLS configuration and supporting protocols such as HTTP2 and DNS.

  • proxy_web_crawler

    Automates the process of repeatedly searching for a website via scraped proxy IP and search keywords

    Project mention: Selenium using rotating proxy? | reddit.com/r/learnpython | 2021-07-06

  • mkhost

    create your own mail server in just a couple of lines

    Project mention: Need assistance with self-hosted email server setup and config | reddit.com/r/selfhosted | 2022-01-25

    There was a post here not long ago about this project. https://github.com/sfindeisen/mkhost I have not yet looked at it but it claimns to be a lean mail server only.

  • dupi-lambda

    DUPI Streaming AWS Flow Log Monitor

    Project mention: Made an AWS lambda python function to enable an AWS monitoring system with live flow monitoring, alerting, reporting, graphing etc... | reddit.com/r/Python | 2021-08-01

    Check it out on GitHub.

  • CryptoLyzer

    Fast and flexible server cryptographic settings analyzer library for Python with an easy-to-use command-line interface with both human-readable (Markdown) and machine-readable (JSON) output. It works with multiple cryptographic protocols (SSL/TLS, opportunistic TLS, SSH) and analyzes additional security mechanisms (web security-related HTTP response header fields, JA3 tag).

    Project mention: ssh-audit VS cryptolyzer - a user suggested alternative | libhunt.com/r/jtesta/ssh-audit | 2022-01-24

    I am the author of the project. On the following link, you can find a blog post about CryptoLyzer with competitor comparison (e.g., SSLyze, testssl.sh). htps://pfeifferszilard.hu/2021/12/27/cryptolyzer-a-comprehensive-cryptographic-settings-analyzer.html

NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020). The latest post mention was on 2022-05-24.

Python SSL related posts

Index

What are some of the best open-source SSL projects in Python? This list will help you:

Project Stars
1 mitmproxy 27,608
2 Twisted 4,606
3 websockify 3,060
4 sslyze 2,725
5 lemur 1,568
6 pyOpenSSL -- A Python wrapper around the OpenSSL library 758
7 dnsrobocert 495
8 trustme 451
9 MicroWebSrv2 444
10 Loki 431
11 Mocket 232
12 MITM_Intercept 120
13 cryptonice 86
14 proxy_web_crawler 34
15 mkhost 19
16 dupi-lambda 4
17 CryptoLyzer -
Find remote jobs at our new job board 99remotejobs.com. There are 7 new remote jobs listed recently.
Are you hiring? Post a new remote job listing for free.

Sponsored
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com