Top 23 Python Vulnerability Projects

Vulnerability

• Add a project

1. PayloadsAllTheThings

   1 37 78,311 8.6 Python

   A list of useful payloads and bypass for Web Application Security and Pentest/CTF

   

   Project mention: Irish-Name-Repo 2 - picoCTF '19 (web) | dev.to | 2025-09-06

   if you've never worked on SQL injection that's fine there is a PWNSOME REPOSITORY(get it? pwn + awesome) called[ Payload All The Things (https://github.com/swisskyrepo/PayloadsAllTheThings) it has different payloads for different web vulnerabilities.

2. SaaSHub

   www.saashub.com featured

   SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

   

3. faraday

   2 8 6,518 8.0 Python

   Open Source Vulnerability Management Platform (by infobyte)

   

4. malwoverview

   3 3 3,864 6.2 Python

   Malwoverview is a first response tool for threat hunting across VirusTotal, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, ThreatFox, Triage, IPInfo, Shodan, AbuseIPDB, GreyNoise, URLScan.io, Whois/RDAP, NIST, and VulnCheck. Supports LLM enrichment, IOC extraction, YARA scanning, and Android analysis.

   

5. cve-bin-tool

   4 13 1,701 9.7 Python

   The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 350 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with an SBOM or a list of components and versions.

   

6. quark-engine

   5 1 1,684 8.8 Python

   Quark Agent - Your AI-powered Android APK Analyst

   

7. VulnWhisperer

   6 1 1,396 0.0 Python

   Create actionable data from your Vulnerability Scans

   

8. vulnix

   7 4 787 6.7 Python

   Vulnerability (CVE) scanner for Nix/NixOS [maintainer=@henrirosten]

   

9. packj

   8 41 686 7.2 Python

   Packj stops :zap: Solarwinds-, ESLint-, and PyTorch-like attacks by flagging malicious/vulnerable open-source dependencies ("weak links") in your software supply-chain

   

   Project mention: Packj flags malicious/risky open-source packages | news.ycombinator.com | 2026-05-22

10. vulnerablecode

    9 2 667 9.6 Python

    A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/

    

11. puncia

    10 3 662 6.2 Python

    Panthera(P.)uncia - Official CLI utility for Osprey Vision, Subdomain Center & Exploit Observer.

    

12. SIET

    11 2 594 2.6 Python

    Smart Install Exploitation Tool

    

13. Telegram-Trilateration

    12 9 590 0.0 Python

    Proof of concept for abusing Telegram's "People Near Me" feature and tracking people's location

    

14. Egyscan

    13 1 299 2.5 Python

    Egyscan The Best web vulnerability scanner; it's a multifaceted security powerhouse designed to fortify your web applications against malicious threats. Let's delve into the tasks and functions that make Egyscan an indispensable tool in your security arsenal:

    

15. cyberowl

    14 14 258 6.3 Python

    Aggregates security advisories from 10 international CERTs daily and provides an AI skill that cross-references alerts against your project's tech stack.

    

16. RVD

    15 1 221 0.0 Python

    Robot Vulnerability Database. An archive of robot vulnerabilities and bugs. (by aliasrobotics)

    

17. gvm-tools

    16 2 198 9.1 Python

    Remote control your Greenbone Community Edition or Greenbone Enterprise Appliance

    

18. SSVC

    17 1 182 9.7 Python

    Stakeholder-Specific Vulnerability Categorization

    

19. PoC-CVE-2022-30190

    18 1 157 2.6 Python

    POC CVE-2022-30190 : CVE 0-day MS Offic RCE aka msdt follina

    

20. kitsec-core

    19 6 149 0.0 Python

    Pentesting, made easy.

    

21. CVE-2024-9264

    20 1 130 6.9 Python

    Exploit for Grafana arbitrary file-read and RCE (CVE-2024-9264)

    

22. ShellShockHunter

    21 1 123 1.8 Python

    It's a simple tool for test vulnerability shellshock

    

23. vunnel

    22 1 121 9.5 Python

    Tool for collecting vulnerability data from various sources (used to build the grype database)

    

24. nvdlib

    23 1 114 6.7 Python

    A simple wrapper for the National Vulnerability CVE/CPE API

    

Python Vulnerability related posts

• Anthropic's open-source framework for AI-powered vulnerability discovery

  7 projects | news.ycombinator.com | 4 Jun 2026

• How to Check If Your Dependencies Are Vulnerable (30 Lines of Python)

  3 projects | dev.to | 25 Mar 2026

• We Let an AI Attack Our Security Pipeline. Here's What 412 Attacks Taught Us.

  1 project | dev.to | 18 Mar 2026

• I ran npm audit and DepGra on the same project — here's what each one caught

  2 projects | dev.to | 15 Mar 2026

• 39 CVEs in WebGoat. Only 36 Were Reachable.

  2 projects | dev.to | 9 Mar 2026

• GitHub's Ubuntu Runners Have 1,681 Packages and 9 High Vulns

  1 project | news.ycombinator.com | 13 Oct 2025

• Panic at the CVE-o-theque [video]

  1 project | news.ycombinator.com | 22 Apr 2025
• A note from our sponsor - SaaSHub
  www.saashub.com | 13 Jun 2026

  SaaSHub helps you find the best software and product alternatives Learn more →

Index

Sponsored

SaaSHub - Software Alternatives and Reviews

SaaSHub helps you find the best software and product alternatives

www.saashub.com

Do not miss the trending Python projects with our weekly report!