Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Ethical hacking with Python tools at Europython...

Sponsored · Ship Features Fearlessly Turn features on and off without deploys. Used by thousands of Ruby developers.
Avatar for jmortegac jmortegac
July 22, 2016
Programming
1
620

Ethical hacking with Python tools at Europython 2016

Ethical hacking with Python tools at Europython 2016

Avatar for jmortegac

jmortegac

July 22, 2016
Tweet

More Decks by jmortegac

See All by jmortegac
Simulando ataques adversarios con TextAttack: Vulnerabilidades y defensas en PLN
Avatar for jmortegac jmortega
1
31
Seguridad y auditorías en Modelos grandes del lenguaje (LLM)
Avatar for jmortegac jmortega
1
37
Seguridad y auditorías en Modelos grandes del lenguaje (LLM)
Avatar for jmortegac jmortega
1
100
Security and auditing tools in Large Language Models (LLM)
Avatar for jmortegac jmortega
1
71
Beyond the hype: The reality of AI security
Avatar for jmortegac jmortega
1
76
Seguridad y auditorías en Modelos grandes del lenguaje (LLM)
Avatar for jmortegac jmortega
1
120
Seguridad de APIs en Drupal: herramientas, mejores prácticas y estrategias para asegurar las APIs
Avatar for jmortegac jmortega
1
70
Security and auditing tools in Large Language Models (LLM)
Avatar for jmortegac jmortega
1
140
Herramientas de benchmarks para evaluar el rendimiento en máquinas y aplicaciones
Avatar for jmortegac jmortega
0
85

Other Decks in Programming

See All in Programming
Goの型安全性で実現する複数プロダクトの権限管理
Avatar for ishikawa-pro ishikawa_pro
2
490
守る「だけ」の優しいEMを抜けて、 事業とチームを両方見る視点を身につけた話
Avatar for Mitsui maroon8021
3
1.1k
ふつうの Rubyist、ちいさなデバイス、大きな一年
Avatar for bash0C7 bash0c7
0
1.1k
ふつうのRubyist、ちいさなデバイス、大きな一年 / Ordinary Rubyists, Tiny Devices, Big Year
Avatar for chobishiba chobishiba
1
480
The Past, Present, and Future of Enterprise Java
Avatar for ivargrimstad ivargrimstad
0
830
The Past, Present, and Future of Enterprise Java
Avatar for ivargrimstad ivargrimstad
0
730
S3ストレージクラスの「見える」「ある」「使える」は全部違う ─ 体験から見た、仕様の深淵を覗く
Avatar for ya_ma23 ya_ma23
0
810
Agentic AI: Evolution oder Revolution
Avatar for Lars Roewekamp mobilelarson
PRO
0
190
AI 開発合宿を通して得た学び
Avatar for ニフティ株式会社 niftycorp
PRO
0
160
maplibre-gl-layers - 地図に移動体たくさん表示したい
Avatar for Kouji Matsui kekyo
PRO
0
300
AI駆動開発の本音 〜Claude Code並列開発で見えたエンジニアの新しい役割〜
Avatar for hisuzuya hisuzuya
4
530
Codex の「自走力」を高める
Avatar for yorifuji yorifuji
0
1.3k

Featured

See All Featured
Unlocking the hidden potential of vector embeddings in international SEO
Avatar for Frank van Dijk frankvandijk
0
210
Building a Modern Day 
E-commerce SEO Strategy
Avatar for Aleyda Solis aleyda
45
9k
Highjacked: Video Game Concept Design
Avatar for Ryan Kendrick rkendrick25
PRO
1
320
From Legacy to Launchpad: Building Startup-Ready Communities
Avatar for Dug Song dugsong
0
180
Optimising Largest Contentful Paint
Avatar for Harry Roberts csswizardry
37
3.6k
Templates, Plugins, & Blocks: Oh My! Creating the theme that thinks of everything
Avatar for Michelle Schulp Hunt marktimemedia
31
2.7k
New Earth Scene 8
Avatar for Sydney Stone popppiees
1
1.8k
How to Talk to Developers About Accessibility
Avatar for Jason CranfordTeague jct
2
160
Claude Code のすすめ
Avatar for schroneko schroneko
67
220k
コードの90%をAIが書く世界で何が待っているのか / What awaits us in a world where 90% of the code is written by AI
Avatar for r-kagaya rkaga
61
43k
What does AI have to do with Human Rights?
Avatar for Per Axbom axbom
PRO
1
2k
More Than Pixels: Becoming A User Experience Designer
Avatar for Michelle Schulp Hunt marktimemedia
3
350

Transcript

  1. JOSE MANUEL ORTEGA @JMORTEGAC Ethical hacking with Python tools

  2. https://speakerdeck.com/jmortega

  3. INDEX  Introduction Python pentesting  Modules(Sockets,Requests,BeautifulSoup,Shodan)  Analysis metadata

     Port scanning & Checking vulnerabilities  Advanced tools  Pentesting-tool

  4. Python Pentesting  Multi platform  Prototypes and proofs of

    concept(POC)  Many tools and libraries focused on security  OSINT and Pentesting tools  Very good documentation

  5. Python Pentesting

  6. http://sparta.secforce.com/

  7. The Harvester

  8. The Harvester

  9. W3AF

  10. Tools  Scapy  Capturing and analysing network packets 

    FiMap  Detecting RFI/LFI vulnerabilites  XSScrapy  Detecting XSS vulnerabilites

  11. Sockets Port scan import socket #TCP sock = socket(socket.AF_INET,socket.SOCK_STREAM) result

    = sock.connect_ex(('127.0.0.1',80)) if result == 0: print "Port is open" else: print "Port is filtered"

  12. Sockets Port scan

  13. Socket resolving IP/domain

  14. Banner server

  15. Banner server

  16. Requests

  17. Checking headers

  18. Checking headers

  19. Requests import requests http_proxy = "http://10.10.10.10:3000" https_proxy = "https://10.10.10.10:3000" proxyDict

    = { "http" : http_proxy, "https" : https_proxy } r = requests.get(url,proxies=proxyDict)

  20. Requests Authentication

  21. BeautifulSoup

  22. Internal/external links

  23. Internal/external links

  24. Extract images and documents

  25. Scrapy

  26. Web Scraping

  27. Shodan

  28. https://developer.shodan.io

  29. Shodan import shodan SHODAN_API_KEY = "insert your API key here"

    api = shodan.Shodan(SHODAN_API_KEY)

  30. Shodan

  31. https://www.shodan.io/host/136.243.32.71

  32. Shodan

  33. Shodan

  34. BuiltWith  pip install builtwith  builtwith.parse(‘https://ep2016.europython.eu’)

  35. Analysis metadata

  36. Analysis metadata

  37. Analysis metadata

  38. Port Scanning

  39. Python-nmap  Automating port scanning  Synchronous and asynchronous modes

    import nmap # Synchronous nm = nmap.PortScanner() # nm.scan(‘ip/range’,’port_list’) results = nm.scan('127.0.0.1', '22,25,80,443')

  40. NmapScanner

  41. NmapScanner for port in port_list: NmapScanner().nmapScan(ip, port)

  42. NmapScanner Async #Asynchronous nm_async = nmap.PortScannerAsync() def callback_result(host, scan_result): print

    '------------------' print host, scan_result nm_async.scan(hosts='192.168.1.0/30', arguments='-sP', callback=callback_result) while nm_async .still_scanning(): print("Waiting >>>") nm_async.wait(2)

  43. NmapScanner Async

  44. Scripts Nmap

  45. Scripts Nmap  Programming routines allow to find potential vulnerabilities

    in a given target  First check if the port is open  Detect vulnerabilities in the service port openned nm.scan(arguments="-n -A -p3306 -- script=/usr/share/nmap/scripts/mysql- info.nse")

  46. Mysql Scripts Nmap

  47. Check FTP Login Anonymous

  48. Check FTP Login Anonymous

  49. Check Webs sites  pip install pywebfuzz  https://github.com/disassembler/pywebfuzz

  50. PyWebFuzz from pywebfuzz import fuzzdb import requests logins = fuzzdb.Discovery.PredictableRes.Logins

    domain = "http://192.168.56.101" for login in logins: print “Checking... "+ domain + login response = requests.get(domain + login) if response.status_code == 200: print "Login Resource: " +login

  51. PyWebFuzz

  52. Heartbleed  Vulnerability in OpenSSL V1.0.1  Multi-threaded tool for

    scanning hosts for CVE- 2014-0160.  https://github.com/musalbas/heartbleed-masstest  https://filippo.io/Heartbleed

  53. Heartbleed

  54. Heartbleed

  55. Advanced tools

  56. Metasploit python-msfrpc

  57. Metasploit API call Calls in msgpack format

  58. Nexpose  Tool developed by Rapid7 for scanning and vulnerability

    discovery.  It allows programmatic access to other programs via HTTP/s requests.  BeautifulSoup to obtain data from vulnerabilities server

  59. Nexpose

  60. Pentesting tool

  61. https://github.com/jmortega/python-pentesting

  62. https://github.com/jmortega/europython_ethical_hacking

  63. References & libs  http://docs.shodanhq.com  http://docs.python-requests.org/en/master/  http://scrapy.org 

    http://xael.org/pages/python-nmap-en.html  http://www.pythonsecurity.org/libs  https://github.com/dloss/python-pentest-tools  http://kali-linux.co/2016/07/12/python-tools-for- penetration-testers%E2%80%8B/  https://github.com/PacktPublishing/Effective-Python- Penetration-Testing

  64. Books

  65. Books

  66. THANK YOU!