Top 17 Python SSL Projects
-
mitmproxy
An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.
Project mention: Extracting TLS keys from an unwilling application | news.ycombinator.com | 2022-05-24Not sure about the non-security expert bit but I've done stuff[0] similar to this for iOS using Frida[1] which supports macOS too. For apps that use unpinned certificates and the builtin networking libraries(NSURLSession et.al.) you can directly use mimtproxy[2] or Charles[3]
0: https://hugotunius.se/2020/08/07/stealing-tls-sessions-keys-...
-
Project mention: Twisted Matrix 22.2.0 has been released | Event-driven networking engine written in Python | reddit.com/r/Python | 2022-03-04
-
SonarLint
Deliver Cleaner and Safer Code - Right in Your IDE of Choice!. SonarLint is a free and open source IDE extension that identifies and catches bugs and vulnerabilities as you code, directly in the IDE. Install from your favorite IDE marketplace today.
-
websockify
Websockify is a WebSocket to TCP proxy/bridge. This allows a browser to connect to any application/server/service.
-
3) If you are technically skilled then there are programs/scripts you can run that will tell you exactly what TLS/SSL settings your router supports by scanning it. I have used https://github.com/nabla-c0d3/sslyze in the past but that was a long time ago so not sure it still works well
-
Project mention: Are there any solutions using a centralized validation server for Let's Encrypt | reddit.com/r/letsencrypt | 2022-05-21
Other commercial options include ManageEngine and DigiCert. One the open source side there is gnarly stuff like https://github.com/aptise/peter_sslers and https://github.com/Netflix/lemur
-
pyOpenSSL -- A Python wrapper around the OpenSSL library
A Python wrapper around the OpenSSL library
-
dnsrobocert
Orchestrate Certbot and Lexicon together to provide Let's Encrypt TLS certificates validated by DNS challenges
Project mention: Let’s Encrypt Receives the Levchin Prize for Real-World Cryptography | news.ycombinator.com | 2022-05-16If you don't feel like switching over this, I do this with dnsrobocert, with Namecheap's default DNS servers: https://github.com/adferrand/dnsrobocert
-
Scout APM
Less time debugging, more time building. Scout APM allows you to find and fix performance issues with no hassle. Now with error monitoring and external services monitoring, Scout is a developer's best friend when it comes to application development.
-
Project mention: New undocumented APIs in Python 3.10: The future of trust stores in Python | reddit.com/r/Python | 2021-11-28
If anyone's in need of a solution to using generated certificates during testing I recommend checking out Trustme. I tweeted a little demo of the library in action some time ago too.
-
MicroWebSrv2
The last Micro Web Server for IoTs (MicroPython) or large servers (CPython), that supports WebSockets, routes, template engine and with really optimized architecture (mem allocations, async I/Os). Ready for ESP32, STM32 on Pyboard, Pycom's chipsets (WiPy, LoPy, ...). Robust, efficient and documented!
Project mention: MicroPython on ESP32 configurable by AP / webserver? | reddit.com/r/esp32 | 2021-09-08This guy has made a more complex webserver that you can use to host an API. It's less plug-and-play but it's way more powerful
-
-
-
MITM_Intercept
A little bit less hackish way to intercept and modify non-HTTP protocols through Burp & others.
Project mention: MITM_Intercept: A little less hackish way to intercept and modify non-HTTP protocols through Burp & others. | reddit.com/r/netsec | 2022-05-15 -
cryptonice
CryptoNice is both a command line tool and library which provides the ability to scan and report on the configuration of SSL/TLS for your internet or internal facing web services. Built using the sslyze API and ssl, http-client and dns libraries, cryptonice collects data on a given domain and performs a series of tests to check TLS configuration and supporting protocols such as HTTP2 and DNS.
-
proxy_web_crawler
Automates the process of repeatedly searching for a website via scraped proxy IP and search keywords
-
Project mention: Need assistance with self-hosted email server setup and config | reddit.com/r/selfhosted | 2022-01-25
There was a post here not long ago about this project. https://github.com/sfindeisen/mkhost I have not yet looked at it but it claimns to be a lean mail server only.
-
Project mention: Made an AWS lambda python function to enable an AWS monitoring system with live flow monitoring, alerting, reporting, graphing etc... | reddit.com/r/Python | 2021-08-01
Check it out on GitHub.
-
CryptoLyzer
Fast and flexible server cryptographic settings analyzer library for Python with an easy-to-use command-line interface with both human-readable (Markdown) and machine-readable (JSON) output. It works with multiple cryptographic protocols (SSL/TLS, opportunistic TLS, SSH) and analyzes additional security mechanisms (web security-related HTTP response header fields, JA3 tag).
Project mention: ssh-audit VS cryptolyzer - a user suggested alternative | libhunt.com/r/jtesta/ssh-audit | 2022-01-24I am the author of the project. On the following link, you can find a blog post about CryptoLyzer with competitor comparison (e.g., SSLyze, testssl.sh). htps://pfeifferszilard.hu/2021/12/27/cryptolyzer-a-comprehensive-cryptographic-settings-analyzer.html
Python SSL related posts
- Are there any solutions using a centralized validation server for Let's Encrypt
- MITM_Intercept: A little less hackish way to intercept and modify non-HTTP protocols through Burp & others.
- ERR_SSL_VERSION_OR_CIPHER_MISMATCH
- the "best" ciphers
-
sslyze VS cryptolyzer - a user suggested alternative
2 projects | 24 Jan 2022
- Certificate Management
- Build a Web-Based Real-Time Computer Vision App with Streamlit
Index
What are some of the best open-source SSL projects in Python? This list will help you:
Project | Stars | |
---|---|---|
1 | mitmproxy | 27,608 |
2 | Twisted | 4,606 |
3 | websockify | 3,060 |
4 | sslyze | 2,725 |
5 | lemur | 1,568 |
6 | pyOpenSSL -- A Python wrapper around the OpenSSL library | 758 |
7 | dnsrobocert | 495 |
8 | trustme | 451 |
9 | MicroWebSrv2 | 444 |
10 | Loki | 431 |
11 | Mocket | 232 |
12 | MITM_Intercept | 120 |
13 | cryptonice | 86 |
14 | proxy_web_crawler | 34 |
15 | mkhost | 19 |
16 | dupi-lambda | 4 |
17 | CryptoLyzer | - |
Are you hiring? Post a new remote job listing for free.