Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Ethical hacking with Python tools at Europython...

Avatar for jmortegac jmortegac
July 22, 2016
Programming
1
550

Ethical hacking with Python tools at Europython 2016

Ethical hacking with Python tools at Europython 2016
Avatar for jmortegac

jmortegac

July 22, 2016
Tweet

More Decks by jmortegac

See All by jmortegac
Seguridad y auditorías en Modelos grandes del lenguaje (LLM)
Avatar for jmortegac jmortega
0
44
Security and auditing tools in Large Language Models (LLM)
Avatar for jmortegac jmortega
0
23
Beyond the hype: The reality of AI security
Avatar for jmortegac jmortega
0
31
Seguridad y auditorías en Modelos grandes del lenguaje (LLM)
Avatar for jmortegac jmortega
0
55
Seguridad de APIs en Drupal: herramientas, mejores prácticas y estrategias para asegurar las APIs
Avatar for jmortegac jmortega
1
43
Security and auditing tools in Large Language Models (LLM)
Avatar for jmortegac jmortega
1
83
Herramientas de benchmarks para evaluar el rendimiento en máquinas y aplicaciones
Avatar for jmortegac jmortega
0
50
Asegurando tus APIs: Explorando el OWASP Top 10 de Seguridad en APIs
Avatar for jmortegac jmortega
1
110
PyGoat: Analizando la seguridad en aplicaciones Django
Avatar for jmortegac jmortega
1
200

Other Decks in Programming

See All in Programming
技術同人誌をMCP Serverにしてみた
Avatar for 74th(Atsushi Morimoto) 74th
1
650
Webの外へ飛び出せ NativePHPが切り拓くPHPの未来
Avatar for Takuya Katsusa takuyakatsusa
2
560
Startups on Rails in Past, Present and Future–Irina Nazarova, RailsConf 2025
Avatar for Irina Nazarova irinanazarova
0
110
Node-RED を(HTTP で)つなげる MCP サーバーを作ってみた
Avatar for High U highu
0
120
新メンバーも今日から大活躍!SREが支えるスケールし続ける組織のオンボーディング
Avatar for HonMarkHunt honmarkhunt
5
7.4k
テストから始めるAgentic Coding 〜Claude Codeと共に行うTDD〜 / Agentic Coding starts with testing
Avatar for r-kagaya rkaga
12
4.5k
ソフトウェア品質を数字で捉える技術。事業成長を支えるシステム品質の マネジメント
Avatar for takuya542 takuya542
1
13k
Modern Angular with Signals and Signal Store: New Rules for Your Architecture @enterJS Advanced Angular Day 2025
Avatar for Manfred Steyer manfredsteyer
PRO
0
220
Is Xcode slowly dying out in 2025?
Avatar for 上ちょ / uetyo uetyo
1
270
PipeCDのプラグイン化で目指すところ
Avatar for Warashi warashi
1
280
#kanrk08 / 公開版 PicoRubyとマイコンでの自作トレーニング計測装置を用いたワークアウトの理想と現実
Avatar for bash0C7 bash0c7
1
770
AIと”コードの評価関数”を共有する / Share the "code evaluation function" with AI
Avatar for Shintani Teppei euglena1215
1
170

Featured

See All Featured
Evolution of real-time – Irina Nazarova, EuRuKo, 2024
Avatar for Irina Nazarova irinanazarova
8
820
A better future with KSS
Avatar for Kyle Neath kneath
238
17k
GraphQLとの向き合い方2022年版
Avatar for Yosuke Kurami quramy
49
14k
Fantastic passwords and where to find them - at NoRuKo
Avatar for Phil Nash philnash
51
3.3k
Build your cross-platform service in a week with App Engine
Avatar for Jose L jlugia
231
18k
Fight the Zombie Pattern Library - RWD Summit 2016
Avatar for Marcelo Somers marcelosomers
233
17k
Art, The Web, and Tiny UX
Avatar for Lynn Fisher lynnandtonic
299
21k
Navigating Team Friction
Avatar for Lara Hogan lara
187
15k
Facilitating Awesome Meetings
Avatar for Lara Hogan lara
54
6.4k
Designing Experiences People Love
Avatar for Jonathan Moore moore
142
24k
Cheating the UX When There Is Nothing More to Optimize - PixelPioneers
Avatar for Stéphanie Walter stephaniewalter
281
13k
Refactoring Trust on Your Teams (GOTO; Chicago 2020)
Avatar for Rebecca Miller-Webster rmw
34
3.1k

Transcript

  1. JOSE MANUEL ORTEGA @JMORTEGAC Ethical hacking with Python tools

  2. https://speakerdeck.com/jmortega

  3. INDEX  Introduction Python pentesting  Modules(Sockets,Requests,BeautifulSoup,Shodan)  Analysis metadata

     Port scanning & Checking vulnerabilities  Advanced tools  Pentesting-tool

  4. Python Pentesting  Multi platform  Prototypes and proofs of

    concept(POC)  Many tools and libraries focused on security  OSINT and Pentesting tools  Very good documentation

  5. Python Pentesting

  6. http://sparta.secforce.com/

  7. The Harvester

  8. The Harvester

  9. W3AF

  10. Tools  Scapy  Capturing and analysing network packets 

    FiMap  Detecting RFI/LFI vulnerabilites  XSScrapy  Detecting XSS vulnerabilites

  11. Sockets Port scan import socket #TCP sock = socket(socket.AF_INET,socket.SOCK_STREAM) result

    = sock.connect_ex(('127.0.0.1',80)) if result == 0: print "Port is open" else: print "Port is filtered"

  12. Sockets Port scan

  13. Socket resolving IP/domain

  14. Banner server

  15. Banner server

  16. Requests

  17. Checking headers

  18. Checking headers

  19. Requests import requests http_proxy = "http://10.10.10.10:3000" https_proxy = "https://10.10.10.10:3000" proxyDict

    = { "http" : http_proxy, "https" : https_proxy } r = requests.get(url,proxies=proxyDict)

  20. Requests Authentication

  21. BeautifulSoup

  22. Internal/external links

  23. Internal/external links

  24. Extract images and documents

  25. Scrapy

  26. Web Scraping

  27. Shodan

  28. https://developer.shodan.io

  29. Shodan import shodan SHODAN_API_KEY = "insert your API key here"

    api = shodan.Shodan(SHODAN_API_KEY)

  30. Shodan

  31. https://www.shodan.io/host/136.243.32.71

  32. Shodan

  33. Shodan

  34. BuiltWith  pip install builtwith  builtwith.parse(‘https://ep2016.europython.eu’)

  35. Analysis metadata

  36. Analysis metadata

  37. Analysis metadata

  38. Port Scanning

  39. Python-nmap  Automating port scanning  Synchronous and asynchronous modes

    import nmap # Synchronous nm = nmap.PortScanner() # nm.scan(‘ip/range’,’port_list’) results = nm.scan('127.0.0.1', '22,25,80,443')

  40. NmapScanner

  41. NmapScanner for port in port_list: NmapScanner().nmapScan(ip, port)

  42. NmapScanner Async #Asynchronous nm_async = nmap.PortScannerAsync() def callback_result(host, scan_result): print

    '------------------' print host, scan_result nm_async.scan(hosts='192.168.1.0/30', arguments='-sP', callback=callback_result) while nm_async .still_scanning(): print("Waiting >>>") nm_async.wait(2)

  43. NmapScanner Async

  44. Scripts Nmap

  45. Scripts Nmap  Programming routines allow to find potential vulnerabilities

    in a given target  First check if the port is open  Detect vulnerabilities in the service port openned nm.scan(arguments="-n -A -p3306 -- script=/usr/share/nmap/scripts/mysql- info.nse")

  46. Mysql Scripts Nmap

  47. Check FTP Login Anonymous

  48. Check FTP Login Anonymous

  49. Check Webs sites  pip install pywebfuzz  https://github.com/disassembler/pywebfuzz

  50. PyWebFuzz from pywebfuzz import fuzzdb import requests logins = fuzzdb.Discovery.PredictableRes.Logins

    domain = "http://192.168.56.101" for login in logins: print “Checking... "+ domain + login response = requests.get(domain + login) if response.status_code == 200: print "Login Resource: " +login

  51. PyWebFuzz

  52. Heartbleed  Vulnerability in OpenSSL V1.0.1  Multi-threaded tool for

    scanning hosts for CVE- 2014-0160.  https://github.com/musalbas/heartbleed-masstest  https://filippo.io/Heartbleed

  53. Heartbleed

  54. Heartbleed

  55. Advanced tools

  56. Metasploit python-msfrpc

  57. Metasploit API call Calls in msgpack format

  58. Nexpose  Tool developed by Rapid7 for scanning and vulnerability

    discovery.  It allows programmatic access to other programs via HTTP/s requests.  BeautifulSoup to obtain data from vulnerabilities server

  59. Nexpose

  60. Pentesting tool

  61. https://github.com/jmortega/python-pentesting

  62. https://github.com/jmortega/europython_ethical_hacking

  63. References & libs  http://docs.shodanhq.com  http://docs.python-requests.org/en/master/  http://scrapy.org 

    http://xael.org/pages/python-nmap-en.html  http://www.pythonsecurity.org/libs  https://github.com/dloss/python-pentest-tools  http://kali-linux.co/2016/07/12/python-tools-for- penetration-testers%E2%80%8B/  https://github.com/PacktPublishing/Effective-Python- Penetration-Testing

  64. Books

  65. Books

  66. THANK YOU!