An opinionated list of awesome Python frameworks, libraries, software and resources.

The Web framework for perfectionists with deadlines.

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

We have made you a wrapper you can't refuse

Open source UI framework written in Python, running on Windows, Linux, macOS, Android and iOS

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

E-mails, subdomains and names Harvester - OSINT

Generic automation framework for acceptance testing and RPA

Nginx configuration static analyzer

🐍 A toolkit for testing, tweaking and cracking JSON Web Tokens

Open Source Vulnerability Management Platform

"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.

Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email

A pretty sweet vulnerability scanner

Serverless Python

Awesome hacking is an awesome collection of hacking tools.

Generates permutations, alterations and mutations of subdomains and then resolves them

The Offensive Manual Web Application Penetration Testing Framework.

A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.

🐛 A list of writeups from the Google VRP Bug Bounty program

Simple PDF generation for Python

Open-source vulnerability disclosure and bug bounty program database

A tool to link a domain with registered organisation names and emails, to other domains.

A new generation of tool for discovering subdomains( ip , cdn and so on)

Automatic torrents downloader

A library for parsing .DS_Store files and extracting file names

A tool to automate the boring process of APK recon