API tools faq
paste
Advertisement
opexxx

info_sec python modules

opexxx
Sep 29th, 2016
246
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 7.45 KB | None | 0 0
raw download clone embed print report
  1. This a collection of Python modules commonly associated with InfoSec.
  2. info_sec python modules
  3.  
  4. Scapy: send, sniff and dissect and forge network packets. Usable interactively or as a library
  5. pypcap, Pcapy and pylibpcap: several different Python bindings for libpcap
  6. libdnet: low-level networking routines, including interface lookup and Ethernet frame transmission
  7. dpkt: fast, simple packet creation/parsing, with definitions for the basic TCP/IP protocols
  8. Impacket: craft and decode network packets. Includes support for higher-level protocols such as NMB and SMB
  9. pynids: libnids wrapper offering sniffing, IP defragmentation, TCP stream reassembly and port scan detection
  10. Dirtbags py-pcap: read pcap files without libpcap
  11. flowgrep: grep through packet payloads using regular expressions
  12. Knock Subdomain Scan, enumerate subdomains on a target domain through a wordlist
  13. Mallory, extensible TCP/UDP man-in-the-middle proxy, supports modifying non-standard protocols on the fly
  14. Pytbull: flexible IDS/IPS testing framework (shipped with more than 300 tests)
  15.  
  16.  
  17. Debugging and reverse engineering
  18. =================================
  19. Paimei: reverse engineering framework, includes PyDBG, PIDA, pGRAPH
  20. Immunity Debugger: scriptable GUI and command line debugger
  21. mona.py: PyCommand for Immunity Debugger that replaces and improves on pvefindaddr
  22. IDAPython: IDA Pro plugin that integrates the Python programming language, allowing scripts to run in IDA Pro
  23. PyEMU: fully scriptable IA-32 emulator, useful for malware analysis
  24. pefile: read and work with Portable Executable (aka PE) files
  25. pydasm: Python interface to the libdasm x86 disassembling library
  26. PyDbgEng: Python wrapper for the Microsoft Windows Debugging Engine
  27. uhooker: intercept calls to API calls inside DLLs, and also arbitrary addresses within the executable file in memory
  28. diStorm: disassembler library for AMD64, licensed under the BSD license
  29. python-ptrace: debugger using ptrace (Linux, BSD and Darwin system call to trace processes) written in Python
  30. vdb / vtrace: vtrace is a cross-platform process debugging API implemented in python, and vdb is a debugger which uses it
  31. Androguard: reverse engineering and analysis of Android applications
  32.  
  33.  
  34. Fuzzing
  35. =======
  36. Sulley: fuzzer development and fuzz testing framework consisting of multiple extensible components
  37. Peach Fuzzing Platform: extensible fuzzing framework for generation and mutation based fuzzing (v2 was written in Python)
  38. antiparser: fuzz testing and fault injection API
  39. TAOF, (The Art of Fuzzing) including ProxyFuzz, a man-in-the-middle non-deterministic network fuzzer
  40. untidy: general purpose XML fuzzer
  41. Powerfuzzer: highly automated and fully customizable web fuzzer (HTTP protocol based application fuzzer)
  42. SMUDGE
  43. Mistress: probe file formats on the fly and protocols with malformed data, based on pre-defined patterns
  44. Fuzzbox: multi-codec media fuzzer
  45. Forensic Fuzzing Tools: generate fuzzed files, fuzzed file systems, and file systems containing fuzzed files in order to test the robustness of forensics tools and examination systems
  46. Windows IPC Fuzzing Tools: tools used to fuzz applications that use Windows Interprocess Communication mechanisms
  47. WSBang: perform automated security testing of SOAP based web services
  48. Construct: library for parsing and building of data structures (binary or textual). Define your data structures in a declarative manner
  49. fuzzer.py (feliam): simple fuzzer by Felipe Andres Manzano
  50. Fusil: Python library used to write fuzzing programs
  51.  
  52.  
  53. Web
  54. ===
  55. Requests: elegant and simple HTTP library, built for human beings
  56. HTTPie: human-friendly cURL-like command line HTTP client
  57. ProxMon: processes proxy logs and reports discovered issues
  58. WSMap: find web service endpoints and discovery files
  59. Twill: browse the Web from a command-line interface. Supports automated Web testing
  60. Ghost.py: webkit web client written in Python
  61. Windmill: web testing tool designed to let you painlessly automate and debug your web application
  62. FunkLoad: functional and load web tester
  63. spynner: Programmatic web browsing module for Python with Javascript/AJAX support
  64. python-spidermonkey: bridge to the Mozilla SpiderMonkey JavaScript engine; allows for the evaluation and calling of Javascript scripts and functions
  65. mitmproxy: SSL-capable, intercepting HTTP proxy. Console interface allows traffic flows to be inspected and edited on the fly
  66. pathod / pathoc: pathological daemon/client for tormenting HTTP clients and servers
  67.  
  68.  
  69. Forensics
  70. =========
  71. Volatility: extract digital artifacts from volatile memory (RAM) samples
  72. LibForensics: library for developing digital forensics applications
  73. TrIDLib, identify file types from their binary signatures. Now includes Python binding
  74. aft: Android forensic toolkit
  75.  
  76.  
  77. Malware analysis
  78. ================
  79. pyew: command line hexadecimal editor and disassembler, mainly to analyze malware
  80. Exefilter: filter file formats in e-mails, web pages or files. Detects many common file formats and can remove active content
  81. pyClamAV: add virus detection capabilities to your Python software
  82. jsunpack-n, generic JavaScript unpacker: emulates browser functionality to detect exploits that target browser and browser plug-in vulnerabilities
  83. yara-python: identify and classify malware samples
  84. phoneyc: pure Python honeyclient implementation
  85.  
  86.  
  87. PDF
  88. ===
  89. Didier Stevens' PDF tools: analyse, identify and create PDF files (includes PDFiD, pdf-parser and make-pdf and mPDF)
  90. Opaf: Open PDF Analysis Framework. Converts PDF to an XML tree that can be analyzed and modified.
  91. Origapy: Python wrapper for the Origami Ruby module which sanitizes PDF files
  92. pyPDF: pure Python PDF toolkit: extract info, spilt, merge, crop, encrypt, decrypt...
  93. PDFMiner: extract text from PDF files
  94. python-poppler-qt4: Python binding for the Poppler PDF library, including Qt4 support
  95.  
  96.  
  97. Misc
  98. ====
  99. InlineEgg: toolbox of classes for writing small assembly programs in Python
  100. Exomind: framework for building decorated graphs and developing open-source intelligence modules and ideas, centered on social network services, search engines and instant messaging
  101. RevHosts: enumerate virtual hosts for a given IP address
  102. simplejson: JSON encoder/decoder, e.g. to use Google's AJAX API
  103. PyMangle: command line tool and a python library used to create word lists for use with other penetration testing tools
  104. Hachoir: view and edit a binary stream field by field
  105. py-mangle: command line tool and a python library used to create word lists for use with other penetration testing tools
  106.  
  107.  
  108. Other useful libraries and tools
  109. ================================
  110. IPython: enhanced interactive Python shell with many features for object introspection, system shell access, and its own special command system
  111. Beautiful Soup: HTML parser optimized for screen-scraping
  112. matplotlib: make 2D plots of arrays
  113. Mayavi: 3D scientific data visualization and plotting
  114. RTGraph3D: create dynamic graphs in 3D
  115. Twisted: event-driven networking engine
  116. Suds: lightweight SOAP client for consuming Web Services
  117. M2Crypto: most complete OpenSSL wrapper
  118. NetworkX: graph library (edges, nodes)
  119. Pandas: library providing high-performance, easy-to-use data structures and data analysis tools
  120. pyparsing: general parsing module
  121. lxml: most feature-rich and easy-to-use library for working with XML and HTML in the Python language
  122. Whoosh: fast, featureful full-text indexing and searching library implemented in pure Python
  123. Pexpect: control and automate other programs, similar to Don Libes `Expect` system
  124. Sikuli, visual technology to search and automate GUIs using screenshots. Scriptable in Jython
  125. PyQt and PySide: Python bindings for the Qt application framework and GUI library
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!