This article lists 123 Python penetration testing tools, not just penetration

If you want to get involved in vulnerability research, reverse engineering, and infiltration, I recommend using Python. Python already has many fully available libraries, which I will list here.


Most of the tools in this list are written in Python, and some are Python bindings from existing C libraries that are easy to use in Python.


Some powerful tools (Pentest Frameworks, Bluetooth Smashers, Web Application Vulnerability, war-Dialers, etc.) were excluded, The reason is that some of these tools are a bit controversial under German law — even if the Supreme Court has ruled that they are. The main purpose of this list is to help white hat hackers, so I’ll be a little timid.

Network

  • Scapy, Scapy3k: send, sniff, parse and falsify network packets, can be used for interactive applications or simply as a library
  • Pypcap, Pcapy and Pylibpcap: Several different libpcap libraries are bundled with Python
  • Libdnet: a low-level network router for interface lookup and Ethernet frame forwarding
  • DPKT: fast and lightweight data packet creation and parsing tool, applicable to basic TCP/IP protocols
  • Impacket: Probes and decodes network packets and supports higher-level protocols such as NMB and SMB
  • Pynids: The Libnids package provides sniffing, IP fragmentation, TCP stream reassembly, and port scan detection
  • Dirtbags py-pcap: Reads pCAP files without libpcap
  • Flowgrep: Finds Payloads in packets using regular expressions
  • Knock Subdomain Scan: Enumerates Subdomain names on the target domain through a dictionary
  • SubBrute: Quick subfield enumeration tool
  • Mallory: extensible TCP/UDP intermediate proxy that supports real-time modification of non-standard protocols
  • Pytbull: Flexible IDS/IPS Testing framework with over 300 test cases
  • Spoodle: large quantum domain name +Poodle vulnerability scanner
  • SMBMap: Samba shared drives in the enumeration domain

Debugging and reverse engineering

  • Paimei: Reverse engineering framework, including PyDBG, PIDA, pGRAPH
  • Immunity Debugger: Scriptable GUI and command line debugging tool
  • Mona.py: an extension in Immunity Debugger that replaces pvefindaddr
  • IDAPython: a plugin in DA Pro that integrates with the Python programming language and allows scripts to be executed in IDA Pro
  • PyEMU: Fully scripted Intel 32-bit emulator for malware analysis
  • Pefile: Reads and processes PE files
  • Pydasm: Python interface to the IBdASM x86 disassembly library
  • PyDbgEng: Python debugging engine for Microsoft Windows operating system
  • Uhooker: Intercepts API calls to DLLS or arbitrary address executables in memory
  • DiStorm: disassembler library under AMD64, licensed under BSD
  • Frida: A dynamic tool framework for injecting scripts into running processes
  • Python-ptrace: debugger written in Python that applies ptrace (Linux, BSD, and Darwin system call tracers)
  • VDB/vtrace: Vtrace is a Cross-platform process debugging API implemented by Python. VDB is a debugger that applies the API
  • Androguard: Reverse analysis tool for Android applications
  • Capstone: a lightweight, multi-platform, multi-architecture supported disassembly framework. Support includes ARM,ARM64,MIPS and x86/ X64 platforms
  • Keystone: a lightweight assembly framework with multi-platform and multi-architecture support
  • PyBFD: Python interface to the GNU Binary File Description (BFD) library
  • CHIPSEC: a framework for analyzing the security of PC platforms, such as hardware, BIOS/UEFI, and platform components.

Fuzz testing

  • Afl-python: American Fuzzy lop for pure Python code
  • Sulley: a framework for fuzzier development and fuzzier testing, consisting of multiple extensible components
  • Peach Fuzzing Platform: An extended fuzzy testing framework (version V2 is written in Python)
  • Antiparser: API for fuzzy testing and fault injection
  • TAOF :(The Art of Fuzzing, The Art of Fuzzing) includes ProxyFuzz, a man-in-the-middle network fuzz testing tool
  • Untidy: Fuzzy test tool for XML
  • Powerfuzzer: Highly automated and fully customizable Web fuzzer testing tool
  • SMUDGE
  • Mistress: protocol for detecting real-time file formats and malformed data based on the preset mode
  • Fuzzbox: Fuzzy test for media multiple encoders
  • Forensic Fuzzing Tools: Test the robustness of Forensic Tools by generating Fuzzing test files, file systems, and file systems containing Fuzzing test files
  • Windows IPC Fuzzing Tools: A tool for Fuzzing testing using the Windows interprocess communication mechanism
  • WSBang: Automate SOAP security testing based on Web services
  • Construct: library for parsing and building data formats (binary or text)
  • Fuzzer.py (Feliam) : A simple fuzzer.py test tool written by Felipe Andres Manzano
  • Fusil: Python library for writing fuzzy test programs

Web

  • Requests: Elegant, simple, user-friendly HTTP library
  • LXML: An easy-to-use XML and HTML processing library, similar to Requests
  • HTTPie: humanized HTTP client similar to cURL command line
  • ProxMon: Handles proxy logging and reports discovered problems
  • WSMap: Find Web servers and discover files
  • Twill: Browse web pages from the command line interface. Support for automated network testing
  • Ghost. Py: WebKit Web client written in Python
  • Windmill: Web testing tools help you easily automate debugging Web applications
  • FunkLoad: Web functionality and load testing
  • Spynner: Web browsing modules written in Python support Javascript/AJAX
  • Python-spidermonkey: A python port of the Mozilla JS engine that allows Javascript scripts and functions to be called
  • Mitmproxy: HTTP proxy that supports SSL. You can check and edit network traffic in real time on the console interface
  • Pathod/Pathoc: Sick daemon/client for tormenting HTTP clients and servers
  • Spidy: a simple command line web crawler with page downloads and word scraping

forensics

  • Volatility: Data is extracted from RAM
  • Rekall: Memory analysis framework developed by Google
  • LibForensics: Library of digital forensics applications
  • TrIDLib: A Python implementation that identifies file types from binary signatures
  • Aft: Android Forensics Tool set malware analysis

Malware analysis

  • Pyew: command line hexadecimal editor and disassembly tool, mainly used for malware analysis
  • Exefilter: Filters specific file formats in E-mail, web pages, and files. You can detect many common file formats and remove document content
  • PyClamAV: Increases virus detection in your Python software
  • Jsunpack-n: General-purpose JavaScript interpreter that mimics browser functionality to detect exploits against target browsers and browser plug-ins
  • Yara-python: Identifies and classifies malware samples
  • Phoneyc: A honey pot for pure Python implementations
  • CapTipper: Analyze, study, and replay HTTP malicious traffic in PCAP files

PDF

  • Peepdf: Python PDF file analysis tool to help detect malicious PDF files
  • Didier Stevens’ PDF Tools: Analyze, identify, and create PDF files (including PDFiD, PDF-parser, make-PDF, and mPDF)
  • Opaf: An open PDF analysis framework that converts PDFS into XML trees for analysis and modification
  • Origapy: The Python interface of Origami, a Ruby tool, for reviewing PDF files
  • The pyPDF2: Python PDF toolkit includes information extraction, splitting, merging, authoring, encryption and decryption, and more
  • PDFMiner: Extract text from PDF files
  • Python-poppler-qt4: poppler PDF library written by Python, which supports QT4

miscellaneous

  • InlineEgg: A toolkit written in Python with a series of small features
  • Exomind: A tool designed to deliver targeted attacks through social networks. (Original text: Create a framework for building Decorated Graphs and developing open-source Intelligence centered around social networking services, search engines and instant messaging Modules and Ideas, Centered on Social Network Services, Search Engines and Instant Messaging Found the description on the official website simple and crude 🙂
  • RevHosts: Enumerates virtual hosts at a specified IP address
  • Simplejson: JSON encoding and decoder, for example using Google’ s AJAX API
  • PyMangle: command line tool and a library for creating dictionaries used for penetration testing
  • Hachoir: View and edit binary streams
  • Py-mangle: duplicate entries
  • Wmiexec. py: Execute Powershell commands quickly and easily using WMI
  • Pentestly: Python and Powershell penetrate testing frameworks internally
  • Hacklib: Simple tools like word cracking, password guessing, reverse shells, etc

Other useful libraries or tools

  • IPython: Enhanced interactive Python shell with many features for object introspection, system shell access, and its own special command system
  • Beautiful Soup: An optimized HTML parser for scraping
  • Matplotlib: Make 2d graphics
  • Mayavi: Visualization and mapping of 3D scientific data
  • RTGraph3D: Create dynamic graphs in three dimensions
  • Twisted: an event-driven network engine
  • Suds: Lightweight SOAP client for Web services
  • M2Crypto: The most complete OpenSSL wrapper
  • NetworkX: Image library (edge, node)
  • Pandas: LIBRARY that provides high-performance, easy-to-use data structures and data analysis tools
  • Pyparsing: General parsing module
  • LXML: Python’s most versatile and user-friendly library for working with XML and HTML
  • Whoosh: Fast, featured full-text indexing and searching library implemented in Python
  • Pexpect: Control and automate other programs, similar to Don Libes’ Expect ‘systems
  • Sikuli: Visualization technology that uses screenshots to search and automate guIs, runs in Jython
  • PyQt and PySide: A Qt application framework and GUI library bundled with Ython

books

  • Violent Python by TJ O’Connor. The Cookbook for hackers, forensic analysts, penetration testers and security engineers
  • Grey Hat Python by Justin Seitz. Python programming book for hacking and reverse engineering
  • Black Hat Python by Justin Seitz. Python programming book for hacking and penetration tests
  • Python Penetration Testing Essentials Use Python features for optimal penetration
  • Python for Secret Agents by Steven F. Lott. Analyze, encrypt, and discover intelligent data using Python
  • Python Web Penetration Testing Cookbook More than 60 Python use cases for Web application testing
  • Learning Penetration Testing with Python. Use Python scripts to perform effective and efficient penetration tests
  • Python Forensics By Chet Hosmer. A workbench for inventing and sharing digital forensics technology
  • The Beginner’ S Guide to IDAPython by Alexander Hanel

Speeches, slides and articles

  • Python & Reverse Engineering Software author: Alexander Hanel
  • Python Arsenal for Reverse Engineering by Dmitriy Evdokimov in RUCTF 2016

More and more

  • SecurityTube Python Scripting Expert (SPSE) is a certified online class provided by Vivek Ramachandran
  • SANS offers the course SEC573: Python for Penetration Testers.
  • Python Arsenal for Reverse Engineering is a large collection of Reverse Engineering tools
  • An article from SANS on Python libraries available for forensic analysis (PDF)
  • To find more Python libraries, check out PyPI’s Python package index



———— is finally done, and since I’m basically unfamiliar with the Python security world, it’s a bit of a struggle… If you find any mistakes please point them out…


Follow public accounts

【 Pegasus Club 】



Previous welfare concerns about the pegasus public number, reply to the corresponding keywords package download learning materials; Reply “join the group”, join the Pegasus AI, big data, project manager learning group, and grow together with excellent people!

AI Artificial Intelligence/Big Data /Database/Linear Algebra/Python/ Machine Learning /Hadoop

Reply number “12” small white | Python + + machine learning Matlab neural network theory + practice + + + depth video + courseware + source code, download attached!