Python TLS

Open-source Python projects categorized as TLS

Transport Layer Security (TLS), the successor of the now-deprecated Secure Sockets Layer (SSL), is a cryptographic protocol designed to provide communications security over a computer network.

Top 19 Python TLS Projects

  • mitmproxy

    An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.

    Project mention: Help with random values in query string | reddit.com/r/scrapy | 2022-12-01

    MITM proxy or ZAP are good at those kinds of tricks

  • Twisted

    Event-driven networking engine written in Python.

    Project mention: Using a src directory for a Python package | reddit.com/r/learnpython | 2022-08-16
  • Scout APM

    Truly a developer’s best friend. Scout APM is great for developers who want to find and fix performance issues in their applications. With Scout, we'll take care of the bugs so you can focus on building great things 🚀.

  • sslyze

    Fast and powerful SSL/TLS scanning library.

    Project mention: SSL Diag Tool | reddit.com/r/sysadmin | 2022-11-16
  • lemur

    Repository for the Lemur Certificate Manager

    Project mention: A Completely Open-Source Implementation of Apple Code Signing and Notarization | news.ycombinator.com | 2022-08-08

    this feels like a job for lemur and smallstep

    https://smallstep.com/docs/step-ca

    https://github.com/Netflix/lemur

  • aioquic

    QUIC and HTTP/3 implementation in Python

    Project mention: Caddyhttp: Enable HTTP/3 by Default | news.ycombinator.com | 2022-09-08
  • pyOpenSSL -- A Python wrapper around the OpenSSL library

    A Python wrapper around the OpenSSL library

  • trustme

    #1 quality TLS certs while you wait, for the discerning tester

    Project mention: Sanic v22.6 Released - Includes HTTP/3 | reddit.com/r/Python | 2022-06-30

    To get a localhost certificate, you will need mkcert or trustme installed.

  • InfluxDB

    Build time-series-based applications quickly and at scale.. InfluxDB is the Time Series Data Platform where developers build real-time applications for analytics, IoT and cloud-native services in less time with less code.

  • ssl-checker

    Python script that collects SSL/TLS information from hosts

    Project mention: When it's not DNS... | reddit.com/r/sysadmin | 2022-07-19

    I use this with a cron job to email me status every few days. https://github.com/narbehaj/ssl-checker

  • MITM_Intercept

    A little bit less hackish way to intercept and modify non-HTTP protocols through Burp & others.

    Project mention: MITM_Intercept: A little less hackish way to intercept and modify non-HTTP protocols through Burp & others. | reddit.com/r/netsec | 2022-05-15
  • dheater

    D(HE)ater is a proof of concept implementation of the D(HE)at attack (CVE-2002-20001) through which denial-of-service can be performed by enforcing the Diffie-Hellman key exchange.

  • Internet.nl

    Internet standards compliance test suite

    Project mention: Check Ipv6/IPv4 connectivity to entire world, and remote browser screnshots of your favorite website from 25 global locations https://geo-peek.com | reddit.com/r/linuxadmin | 2022-04-13

    No problem I think people have been asking for something like this on the GitHub project of InternetNL https://github.com/internetstandards/Internet.nl so maybe it could even be incorporated there.

  • cryptonice

    CryptoNice is both a command line tool and library which provides the ability to scan and report on the configuration of SSL/TLS for your internet or internal facing web services. Built using the sslyze API and ssl, http-client and dns libraries, cryptonice collects data on a given domain and performs a series of tests to check TLS configuration and supporting protocols such as HTTP2 and DNS.

  • truststore

    Verify certificates using OS trust stores (by sethmlarson)

    Project mention: Bringing Modern Authentication APIs (FIDO2 WebAuthn, Passkeys) to Linux Desktop | news.ycombinator.com | 2022-10-22
  • tlsassistant

    Fully-featured tool that combines state-of-the-art TLS analyzers with a report system that suggests appropriate mitigations and shows the full set of viable attacks.

    Project mention: TLSAssistant – Modern TLS analyzers with mitigations | news.ycombinator.com | 2021-12-09
  • showcert

    simple CLI tool to fetch/validate/show/save local/remote SSL certificates and warn about soon expiration

    Project mention: showcert: human-friendly openssl | dev.to | 2022-10-27

    showcert is simple CLI tool with clean output to show/verify local (.pem) and remote SSL certificates with simple and intuitive syntax.

  • tls-python-object

    tlspyo - secure transfer of python objects over network

    Project mention: TLSPYO: A small library for easy and safe transfer of python objects over network | reddit.com/r/Python | 2022-11-14

    We have just released tlspyo, a small open-source library that I believe some of you may find useful.

  • tls_client_handshake_pure_python

    TLS Client Handshake Pure Python implementation

  • testssl.sh-web

    testssl web frontend

    Project mention: Introducing Elmasy - A wannabe Open Source Attack Surface Management | reddit.com/r/selfhosted | 2022-05-29

    testssl.sh-web

  • CryptoLyzer

    Fast and flexible server cryptographic settings analyzer library for Python with an easy-to-use command-line interface with both human-readable (Markdown) and machine-readable (JSON) output. It works with multiple cryptographic protocols (SSL/TLS, opportunistic TLS, SSH) and analyzes additional security mechanisms (web security-related HTTP response header fields, JA3 tag).

    Project mention: DHEat Attack | news.ycombinator.com | 2022-10-13

    You can also use CryptoLyzer[1] to audit your TLS (not just HTTPS, but SMTP, IMAP, ...) and SSH servers if you do not want to use SaaS solutions.

    There are another tools (open source and SaaS) on OWASP Transport Layer Protection Cheat Sheet page[2].

    [1] https://gitlab.com/coroner/cryptolyzer

  • Zigi

    Workflow assistant built for devs & their teams. Automate the mundane part of your day, with live actionable messages for your GitHub & Jira tasks.

NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020). The latest post mention was on 2022-12-01.

Python TLS related posts

Index

What are some of the best open-source TLS projects in Python? This list will help you:

Project Stars
1 mitmproxy 29,423
2 Twisted 4,850
3 sslyze 2,820
4 lemur 1,599
5 aioquic 1,134
6 pyOpenSSL -- A Python wrapper around the OpenSSL library 792
7 trustme 475
8 ssl-checker 206
9 MITM_Intercept 171
10 dheater 133
11 Internet.nl 98
12 cryptonice 89
13 truststore 72
14 tlsassistant 22
15 showcert 16
16 tls-python-object 11
17 tls_client_handshake_pure_python 9
18 testssl.sh-web 0
19 CryptoLyzer -
Write Clean Python Code. Always.
Sonar helps you commit clean code every time. With over 225 unique rules to find Python bugs, code smells & vulnerabilities, Sonar finds the issues while you focus on the work.
www.sonarsource.com