Black-Hat-Python

Contact With Me:

💰 You can help me by Donating

Note

This repository contains tools and scripts sourced from various GitHub repositories and other open-source platforms. All original works are credited to their respective authors. If you are the owner of any content and wish to have it removed, please contact the repository author directly. This project is intended for educational and ethical purposes only. Unauthorized use, distribution, or modification of these tools without proper consent is prohibited. By using this repository, you agree to comply with all applicable laws and ethical guidelines. The author is not responsible for any misuse or damage caused by the tools provided herein.

Source

• blackhat-python3
• Mastering Python Scripting for System Administrators
• python-pentest-tools

---

Table of Content

🔴 1. Password Attacks & Credential Attacks

• Password Hash Cracking (hashlib / hashcat integration)
• LDAP Brute Force
• SSH Brute Force with Paramiko
• FTP Brute Force
• SMB Brute Force (impacket)

🌐 2. Python Networking

Basic Network Clients & Servers

• TCP Client
• UDP Client
• TCP Server
• Netcat Client & Server for Remote code execution
• TCP Proxy

SSH Tools

• SSH with Paramiko
• Basic SSH server using the paramiko
• SSH reverse tunneling
• Simple SSH server

Packet Sniffers & Network Analysis

• Packet Sniffer Using raw sockets
• Packet Sniffer Decoding Header
• Packet Sniffer Decoding ICMP
• Python Subnet Scanner with ICMP Packet Analysis
• Email Credential Sniffer in Python

Scapy-Based Attacks

• ARP Cache Poisoning with Scapy
• PCAP Image Extractor & Face Detector

Port Scanning & Host Discovery

• Check Open and Closed Ports on a Remote Host
• Multithreaded TCP Port Scanning
• Scanning a Range of Ports on a Remote Host
• Test a Socket Connection to a Remote Host
• Resolve Host Name from an IP Address

Advanced Scapy Usage

• TCP SYN Scan with Scapy
• OS Fingerprinting
• Custom Protocol Crafting
• Network Traceroute with Scapy

🔥 3. Network Attacks

• DNS Spoofing / DNS Poisoning
• DHCP Starvation Attack
• SYN Flood / DoS Scripts
• VLAN Hopping
• ICMP Tunneling
• SSL/TLS Stripping
• 802.11 Wi-Fi Deauth Attack (Scapy)
• WPA Handshake Capture

🕷️ 4. Web Application Hacking

Web Path Discovery & Crawling

• Web Path Scanner (Joomla Site Crawler)
• Directory & File Bruteforcer

Brute Force Attacks

• Brute-force HTTP authentication scan
• Multi-threaded Brute-Force Login Script
• multi-threaded brute-force attack on a WordPress login page

Web Vulnerability Testing

• SQL Injection Detection & Exploitation
• XSS Payload Injection Tester (Reflected / Stored / DOM)
• CSRF Token Bypass
• XXE Injection Tester
• SSRF Detection Script
• LFI / RFI Scanner
• JWT Token Manipulation
• CORS Misconfiguration Scanner
• GraphQL Enumeration & Fuzzing
• Cookie Manipulation / Session Hijacking
• HTTP Request Smuggling
• OAuth Attack Scripts

Web Scraping & Reconnaissance

• Web Scraper / Crawler for Recon (BeautifulSoup / Selenium)
• REST API Fuzzer

🔧 5. Burp Suite Extensions & Fuzzing

Burp Fuzzing Tools

• Burp Suite Intruder Payload Generator (Python Extension)
• Burp Suite Extension: BHP Wordlist (Bing Search Integration)
• Burp Suite Extension: BHP Wordlist Generator

🎯 6. Reconnaissance & OSINT

• WHOIS Lookup Automation
• DNS Enumeration (Subdomains)
• Google Dorking Automation
• Shodan API Integration
• Email Harvesting (theHarvester-style)
• Banner Grabbing
• SNMP Enumeration
• SMB Enumeration (impacket)
• NetBIOS / LLMNR Poisoning
• EXIF Metadata Extraction from Images/Docs
• Username / Social Media Enumeration

🦠 7. Trojaning & Malware Development

GitHub Command and Control

• GitHub-based trojan

Trojaning Tasks on Windows

• keylogger
• Captures a screenshot of the entire desktop on a Windows system
• Execute shellcode from a web server
• Sandbox Detection
• Monitor processes on a Windows system
• Monitor specific directories
• Code Injection

🌐 8. Browser Attacks

• Browser Hijacking and Login Redirect
• Simple HTTP Server for Capturing Credentials
• Document Exfiltration Using Tumblr
• Generates a new RSA key pair with a 2048-bit key length
• Decrypts and decompresses the encrypted data

🚀 9. Post-Exploitation & Privilege Escalation

Shells & Backdoors

• Reverse Shell Generator (TCP / HTTP / HTTPS)
• Bind Shell
• Meterpreter-Style Python Backdoor

Windows Post-Exploitation

• Windows Registry Manipulation
• Token Impersonation (Windows)
• Password Dumping from Memory
• Pass-the-Hash Attack (impacket)
• Mimikatz Integration / Credential Dumping

Linux Post-Exploitation

• Linux SUID / GUID Enumeration
• Cron Job Abuse Detection

Persistence & Exfiltration

• Persistence via Startup Scripts / Cron / Registry
• Data Exfiltration over DNS / ICMP / Covert Channels

🏰 10. Active Directory Attacks

• Kerberoasting
• Pass-the-Ticket
• LDAP Enumeration (ldap3)
• BloodHound Data Collection (BloodHound.py)
• SMB Share Enumeration (SMBMap)

🥷 11. Evasion & Anti-Forensics

• Payload Obfuscation
• Process Hollowing
• DLL Injection (Windows)
• Log Clearing / Tampering
• File Timestomping
• Polymorphic Shellcode
• Base64 / XOR Payload Encoding

🎮 12. C2 (Command & Control)

• DNS-Based C2 Channel
• HTTP / HTTPS C2 Beacon
• Slack / Discord C2
• Encrypted C2 with AES
• Heartbeat / Persistence Mechanism

🔍 13. Vulnerability Scanning & Exploitation

Scanning & Fingerprinting

• CVE Scanner / Vulnerability Checker
• Service Version Fingerprinting
• Nmap Python Wrapper (python-nmap)

Exploit Development

• Exploit Development — Buffer Overflow
• Format String Vulnerability Tester
• Custom Fuzzing Framework (TCP / UDP / File / API)
• ROP Chain Generation
• Buffer Overflow Pattern Generator (like pattern_create)
• Shellcode Encoder / Decoder
• Bad Character Finder

🔐 14. Cryptography Attacks

• Padding Oracle Attack
• ECB Mode Detection
• Frequency Analysis (Classic Ciphers)
• Weak TLS / SSL Detection
• S/MIME & PGP Key Extraction
• Password Hash Identifier
• AES / XOR Custom Encryption & Decryption

🎣 15. Phishing Tools

• Phishing Email Generator
• Clone Website for Credential Harvesting
• URL Obfuscation Techniques

🔬 16. Forensics & Memory Analysis

• Extract password hashes from a Windows memory dump using Volatility 3
• Redirect execution to the injected shellcode
• Immunity Debugger

☁️ 17. Container & Cloud Security

• Docker Escape Techniques
• AWS / Azure / GCP Misconfiguration Scanners
• S3 Bucket Enumeration

⚙️ 18. Automating Administrative Tasks

Input & Output Handling

• Accept input from a file
• Accept input from a pipe
• Capture and process command output
• Redirect input/output streams

System Commands & Execution

• Execute external system commands
• Run scripts without user prompts
• Run scripts with user prompts

File & Directory Operations

• List directory contents
• Example of using os module for directory operations
• Create backups of files or directories

Configuration Management

• Read and parse configuration files
• Read and process multiple configuration files

Security & Authentication

• Handle password input securely
• Example of using getpass for secure password input
• Reprompt for password input

Logging & Monitoring

• Generate and handle warning messages
• Example of using Python's logging module
• Log warnings and error codes

Resource Management

• Set CPU usage limits for processes

Web Operations

• Open a web page or URL

---

📚 Resources

Books

• Violent Python
• Grey Hat Python
• Black Hat Python
• Python Penetration Testing Essentials
• Python for Secret Agents
• Python Web Penetration Testing Cookbook
• Learning Penetration Testing with Python
• Python Forensics
• The Beginner's Guide to IDAPython
• Python for Offensive PenTest: A Practical Guide to Ethical Hacking and Penetration Testing Using Python

---

🛠️ Python Tools for Penetration Testing

🌐 Network Tools

Core Network Libraries

• Scapy: Send, sniff, dissect and forge network packets
• Impacket: Craft and decode network packets with support for NMB and SMB
• dpkt: Fast, simple packet creation/parsing with TCP/IP protocol definitions
• pypcap, Pcapy, Pcapy-NG, libpcap: Python bindings for libpcap
• libdnet: Low-level networking routines

Network Reconnaissance & Enumeration

• SMBMap: Enumerate Samba share drives across an entire domain
• AutoRecon: Multi-threaded network reconnaissance tool
• Habu: Python network hacking toolkit
• Knock Subdomain Scan: Enumerate subdomains through wordlist
• SubBrute: Fast subdomain enumeration tool
• Spoodle: Mass subdomain + poodle vulnerability scanner

Network Attacks & MITM

• Mitm6: IPv6-based MITM tool
• Mallory: Extensible TCP/UDP man-in-the-middle proxy
• Pytbull-NG: Flexible IDS/IPS testing framework

🔍 Debugging & Reverse Engineering

Disassemblers & Decompilers

• Capstone: Lightweight multi-platform disassembly framework
• Keystone: Lightweight multi-platform assembler framework
• diStorm: Disassembler library for AMD64
• pydasm: Python interface to libdasm x86 disassembling library

Dynamic Analysis & Instrumentation

• Frida: Dynamic instrumentation framework
• Unicorn Engine: CPU emulator framework
• PyEMU: Fully scriptable IA-32 emulator

Platform-Specific Tools

• Androguard: Reverse engineering and analysis of Android applications
• IDAPython: IDA Pro Python integration plugin
• Ghidrathon: Python 3 scripting extension for Ghidra
• CHIPSEC: Platform security analysis framework

Debugging Frameworks

• Paimei: Reverse engineering framework with PyDBG, PIDA, pGRAPH
• python-ptrace: Debugger using ptrace
• PyDbgEng: Python wrapper for Microsoft Windows Debugging Engine

Binary Analysis

• pefile: Read and work with Portable Executable files
• PyBFD: Python interface to GNU Binary File Descriptor library

🎲 Fuzzing Tools

• afl-python: American fuzzy lop support for pure-Python code
• Sulley: Fuzzer development and fuzz testing framework
• Peach Fuzzing Platform: Extensible fuzzing framework
• untidy: General purpose XML fuzzer
• Powerfuzzer: Highly automated web fuzzer
• Construct: Library for parsing and building data structures
• Fusil: Python library for writing fuzzing programs

🌐 Web Application Testing

HTTP Clients & Testing

• XSStrike: Advanced XSS detection suite
• Requests: Elegant and simple HTTP library
• lxml: Easy-to-use library for processing XML and HTML
• HTTPie: Human-friendly cURL-like command line HTTP client
• Twill: Command-line web browsing with automated testing support

Web Testing & Automation

• FunkLoad: Functional and load web tester
• spynner: Programmatic web browsing with Javascript/AJAX support
• mitmproxy: SSL-capable intercepting HTTP proxy
• spidy: Simple command-line web crawler
• Waymap: Web vulnerability scanner for penetration testers

🔬 Forensics & Memory Analysis

• Volatility: Extract digital artifacts from volatile memory (RAM)
• Rekall: Memory analysis framework by Google
• TrIDLib: Identify file types from binary signatures

🦠 Malware Analysis

• pyew: Hexadecimal editor and disassembler for malware analysis
• Exefilter: Filter file formats and detect/remove active content
• jsunpack-n: Generic JavaScript unpacker
• yara-python: Identify and classify malware samples
• phoneyc: Pure Python honeyclient implementation
• CapTipper: Analyse HTTP malicious traffic from PCAP files
• Cuckoo: Automated malware analysis system
• CAPE: Malware configuration and payload extraction

📄 PDF Analysis

• pdfminer.six: Extract text from PDF files
• peepdf-3: Analyse and explore PDF files for malicious content
• Didier Stevens' PDF tools: Analyse, identify and create PDF files
• pyPDF: Pure Python PDF toolkit

🔐 Security Analysis & Assessment

Binary & Vulnerability Analysis

• Angr: Binary analysis framework for vulnerability research and exploit development
• ScoutSuite: Multi-cloud security auditing tool

Active Directory & Windows

• Certipy: Active Directory Certificate Services enumeration and abuse
• BloodHound.py: Python-based BloodHound ingestor for AD security assessment
• wmiexec.py: Execute Powershell commands via WMI

General Security Tools

• Pentestly: Python and Powershell penetration testing framework
• hacklib: Toolkit for hacking enthusiasts

OSINT & Intelligence

• Exomind: Framework for building decorated graphs and OSINT modules

🛠️ Utility Libraries

Interactive & Visualization

• Project Jupyter: Enhanced interactive shell
• matplotlib: 2D plotting of arrays
• Mayavi: 3D scientific data visualization
• RTGraph3D: Dynamic 3D graphs

Data Processing & Analysis

• Beautiful Soup: HTML parser optimized for screen-scraping
• Pandas: High-performance data structures and analysis tools
• NetworkX: Graph library for edges and nodes
• Whoosh: Full-text indexing and searching library

Networking & Communication

• Twisted: Event-driven networking engine
• Suds: Lightweight SOAP client

Parsing & Processing

• simplejson: JSON encoder/decoder
• pyparsing: General parsing module
• lxml: Feature-rich library for XML and HTML
• Hachoir: View and edit binary stream field by field

Automation & Control

• Pexpect: Control and automate other programs
• SikuliX: Visual technology to search and automate GUIs
• PyQt and PySide: Python bindings for Qt framework

Wordlist & Password Tools

• PyMangle / py-mangle: Create word lists for penetration testing

---