An opinionated list of Python frameworks, libraries, tools, and resources

Hunt down social media accounts by username across social networks

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.

Automatic SQL injection and database takeover tool

Python Fire is a library for automatically generating command line interfaces (CLIs) from absolutely any Python object.

A cross-platform command-line utility that creates projects from cookiecutters (project templates), e.g. Python package projects, C projects.

Data Apps & Dashboards for Python. No JavaScript Required.

Tornado is a Python web framework and asynchronous networking library, originally developed at FriendFeed.

Best Practices on Recommendation Systems

Tool for producing high quality forecasts for time series data that has multiple seasonality with linear or non-linear growth.

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

The Rogue Access Point Framework

Pythonic HTML Parsing for Humans™

HTTP Request & Response Service, written in Python + Flask.

Incredibly fast crawler designed for OSINT.

An open source multi-tool for exploring and publishing data

instant coding answers via the command line

thumbor is an open-source photo thumbnail service by globo.com

A free & open modern, fast email client with user-friendly encryption and privacy features

A set of tools to keep your pinned Python dependencies fresh.

An open-source framework for detecting, redacting, masking, and anonymizing sensitive data (PII) across text, images, and structured data. Supports NLP, pattern matching, and customizable pipelines.

SQL for Humans™

🐸 Identify anything. pyWhat easily lets you identify emails, IP addresses, and more. Feed it a .pcap file or some text and it'll tell you what it is! 🧙‍♀️

🔩 Like builtins, but boltons. 250+ constructs, recipes, and snippets which extend (and rely on nothing but) the Python standard library. Nothing like Michael Bolton.

A utility for arming (creating) many bees (micro EC2 instances) to attack (load test) targets (web applications).

A suite of utilities for converting to and working with CSV, the king of tabular file formats.

WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.

Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation