PyRank

Pentesting Python Packages

Python packages with the GitHub topic pentesting. Sorted by relevance, with stars and monthly downloads.
androguard
androguard

Reverse engineering and pentesting for Android applications

1.7M 6K 1K
MichaelTatarski
fake-http-header

A python package to generate random request fields for a http header.

639K 44 2
soxoj
maigret

🕵️‍♂️ Collect a dossier on a person by username from 3000+ sites

108K 29K 2K
sqlmapproject
sqlmap

Automatic SQL injection and database takeover tool

107K 37K 6K
sherlock-project
sherlock-project

Hunt down social media accounts by username across social networks

86K 83K 10K
blacklanternsecurity
bbot

The recursive internet scanner for hackers. 🧡

76K 10K 803
Paradoxis
flask-unsign

Command line tool to fetch, decode, brute-force and craft session cookies of a Flask application by guessing secret keys.

62K 644 47
mBouamama
myjwt

A cli for cracking, testing vulnerabilities on Json Web Token(JWT)

60K 135 19
Ciphey
ciphey

⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡

56K 21K 1K
blacklanternsecurity
radixtarget

RadixTarget is a performant radix implementation designed for quick lookups of IP addresses/networks and DNS hostnames.

48K 10 2
maurosoria
dirsearch

Web path scanner

24K 14K 2K
Paradoxis
flask-unsign-wordlist

The following package is the standalone wordlist-only component to flask-unsign.

14K 44 13
dalisecurity
fray

Open-source WAF Security Testing Platform — 7,200+ attack payloads, 98 WAF/CDN fingerprints, AI-powered bypass engine, recon pipeline, beautiful CLI output

11K 50 4
stanislav-web
opendoor

OWASP Web Recon & Directory Discovery Platform

11K 967 187
qeeqbox
social-analyzer

API, CLI, and Web App for analyzing and finding a person's profile in 1000 social media \ websites

8K 23K 2K
1minds3t
filelock-lts

Filelock LTS: Security patches for CVEs and long-term support for unsupported Python versions (3.7-3.9).

7K 3 0
ThePorgs
exegol

Fully featured and community-driven hacking environment

7K 3K 276
0xSteph
ptai

Offensive-security MCP server with 205 wrapped tools, 17 specialist agents, and 60 SPA-aware probes for OWASP Top 10. CLI + MCP, BYO LLM. No API key needed on MCP path.

7K 255 52
freelabz
secator

secator - the pentester's swiss knife

6K 1K 129
ADscanPro
adscan

Free Active Directory pentesting tool and Linux CLI for AD enumeration, BloodHound, Kerberoasting, ADCS, DCSync, and attack paths.

5K 299 36
cytopia
netcat

pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)

4K 2K 216
Grunny
zapcli

A simple tool for interacting with OWASP ZAP from the commandline.

4K 258 70
infobyte
faradaysec

Open Source Vulnerability Management Platform

4K 6K 1K
gkbrk
slowloris

Low bandwidth DoS tool. Slowloris rewrite in Python.

3K 3K 736