Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Ethical hacking with Python tools at Europython...

Avatar for jmortegac jmortegac
July 22, 2016
Programming
1
620

Ethical hacking with Python tools at Europython 2016

Ethical hacking with Python tools at Europython 2016

Avatar for jmortegac

jmortegac

July 22, 2016
Tweet

More Decks by jmortegac

See All by jmortegac
Simulando ataques adversarios con TextAttack: Vulnerabilidades y defensas en PLN
Avatar for jmortegac jmortega
1
24
Seguridad y auditorías en Modelos grandes del lenguaje (LLM)
Avatar for jmortegac jmortega
1
31
Seguridad y auditorías en Modelos grandes del lenguaje (LLM)
Avatar for jmortegac jmortega
1
93
Security and auditing tools in Large Language Models (LLM)
Avatar for jmortegac jmortega
1
66
Beyond the hype: The reality of AI security
Avatar for jmortegac jmortega
1
69
Seguridad y auditorías en Modelos grandes del lenguaje (LLM)
Avatar for jmortegac jmortega
1
100
Seguridad de APIs en Drupal: herramientas, mejores prácticas y estrategias para asegurar las APIs
Avatar for jmortegac jmortega
1
63
Security and auditing tools in Large Language Models (LLM)
Avatar for jmortegac jmortega
1
130
Herramientas de benchmarks para evaluar el rendimiento en máquinas y aplicaciones
Avatar for jmortegac jmortega
0
75

Other Decks in Programming

See All in Programming
AgentCoreとHuman in the Loop
Avatar for Har1101 har1101
5
230
[KNOTS 2026登壇資料]AIで拡張‧交差する プロダクト開発のプロセス および携わるメンバーの役割
Avatar for hisatake hisatake
0
250
AIと一緒にレガシーに向き合ってみた
Avatar for nyafunta9858 nyafunta9858
0
180
Amazon Bedrockを活用したRAGの品質管理パイプライン構築
Avatar for とすり tosuri13
4
260
CSC307 Lecture 02
Avatar for Javier Gonzalez-Sanchez javiergs
PRO
1
770
Automatic Grammar Agreementと Markdown Extended Attributes
について
Avatar for Kishikawa Katsumi kishikawakatsumi
0
180
AIによる高速開発をどう制御するか? ガードレール設置で開発速度と品質を両立させたチームの事例
Avatar for tonkotsuboy_com tonkotsuboy_com
7
2k
プロダクトオーナーから見たSOC2 _SOC2ゆるミートアップ#2
Avatar for Kenta Suzuki kekekenta
0
200
Architectural Extensions
Avatar for Denys Poltorak denyspoltorak
0
280
Fluid Templating in TYPO3 14
Avatar for Simon Praetorius s2b
0
130
カスタマーサクセス業務を変革したヘルススコアの実現と学び
Avatar for Tomoyuki Hamaguchi _hummer0724
0
660
humanlayerのブログから学ぶ、良いCLAUDE.mdの書き方
Avatar for Yuto tsukamoto1783
0
190

Featured

See All Featured
The SEO Collaboration Effect
Avatar for Kristina Bergwall kristinabergwall1
0
350
Designing Dashboards & Data Visualisations in Web Apps
Avatar for Des Traynor destraynor
231
54k
The Art of Delivering Value - GDevCon NA Keynote
Avatar for David Neal reverentgeek
16
1.8k
How People are Using Generative and Agentic AI to Supercharge Their Products, Projects, Services and Value Streams Today
Avatar for Helen Beal helenjbeal
1
120
Believing is Seeing
Avatar for Spiro Bolos oripsolob
1
53
For a Future-Friendly Web
Avatar for Brad Frost brad_frost
182
10k
個人開発の失敗を避けるイケてる考え方 / tips for indie hackers
Avatar for panda_program panda_program
122
21k
How to train your dragon (web standard)
Avatar for Monica Dinculescu notwaldorf
97
6.5k
Understanding Cognitive Biases in Performance Measurement
Avatar for Philip Tellis bluesmoon
32
2.8k
How to Grow Your eCommerce with AI & Automation
Avatar for Katarina Dahlin katarinadahlin
PRO
0
100
Fireside Chat
Avatar for paigeccino paigeccino
41
3.8k
Leadership Guide Workshop - DevTernity 2021
Avatar for David Neal reverentgeek
1
200

Transcript

  1. JOSE MANUEL ORTEGA @JMORTEGAC Ethical hacking with Python tools

  2. https://speakerdeck.com/jmortega

  3. INDEX  Introduction Python pentesting  Modules(Sockets,Requests,BeautifulSoup,Shodan)  Analysis metadata

     Port scanning & Checking vulnerabilities  Advanced tools  Pentesting-tool

  4. Python Pentesting  Multi platform  Prototypes and proofs of

    concept(POC)  Many tools and libraries focused on security  OSINT and Pentesting tools  Very good documentation

  5. Python Pentesting

  6. http://sparta.secforce.com/

  7. The Harvester

  8. The Harvester

  9. W3AF

  10. Tools  Scapy  Capturing and analysing network packets 

    FiMap  Detecting RFI/LFI vulnerabilites  XSScrapy  Detecting XSS vulnerabilites

  11. Sockets Port scan import socket #TCP sock = socket(socket.AF_INET,socket.SOCK_STREAM) result

    = sock.connect_ex(('127.0.0.1',80)) if result == 0: print "Port is open" else: print "Port is filtered"

  12. Sockets Port scan

  13. Socket resolving IP/domain

  14. Banner server

  15. Banner server

  16. Requests

  17. Checking headers

  18. Checking headers

  19. Requests import requests http_proxy = "http://10.10.10.10:3000" https_proxy = "https://10.10.10.10:3000" proxyDict

    = { "http" : http_proxy, "https" : https_proxy } r = requests.get(url,proxies=proxyDict)

  20. Requests Authentication

  21. BeautifulSoup

  22. Internal/external links

  23. Internal/external links

  24. Extract images and documents

  25. Scrapy

  26. Web Scraping

  27. Shodan

  28. https://developer.shodan.io

  29. Shodan import shodan SHODAN_API_KEY = "insert your API key here"

    api = shodan.Shodan(SHODAN_API_KEY)

  30. Shodan

  31. https://www.shodan.io/host/136.243.32.71

  32. Shodan

  33. Shodan

  34. BuiltWith  pip install builtwith  builtwith.parse(‘https://ep2016.europython.eu’)

  35. Analysis metadata

  36. Analysis metadata

  37. Analysis metadata

  38. Port Scanning

  39. Python-nmap  Automating port scanning  Synchronous and asynchronous modes

    import nmap # Synchronous nm = nmap.PortScanner() # nm.scan(‘ip/range’,’port_list’) results = nm.scan('127.0.0.1', '22,25,80,443')

  40. NmapScanner

  41. NmapScanner for port in port_list: NmapScanner().nmapScan(ip, port)

  42. NmapScanner Async #Asynchronous nm_async = nmap.PortScannerAsync() def callback_result(host, scan_result): print

    '------------------' print host, scan_result nm_async.scan(hosts='192.168.1.0/30', arguments='-sP', callback=callback_result) while nm_async .still_scanning(): print("Waiting >>>") nm_async.wait(2)

  43. NmapScanner Async

  44. Scripts Nmap

  45. Scripts Nmap  Programming routines allow to find potential vulnerabilities

    in a given target  First check if the port is open  Detect vulnerabilities in the service port openned nm.scan(arguments="-n -A -p3306 -- script=/usr/share/nmap/scripts/mysql- info.nse")

  46. Mysql Scripts Nmap

  47. Check FTP Login Anonymous

  48. Check FTP Login Anonymous

  49. Check Webs sites  pip install pywebfuzz  https://github.com/disassembler/pywebfuzz

  50. PyWebFuzz from pywebfuzz import fuzzdb import requests logins = fuzzdb.Discovery.PredictableRes.Logins

    domain = "http://192.168.56.101" for login in logins: print “Checking... "+ domain + login response = requests.get(domain + login) if response.status_code == 200: print "Login Resource: " +login

  51. PyWebFuzz

  52. Heartbleed  Vulnerability in OpenSSL V1.0.1  Multi-threaded tool for

    scanning hosts for CVE- 2014-0160.  https://github.com/musalbas/heartbleed-masstest  https://filippo.io/Heartbleed

  53. Heartbleed

  54. Heartbleed

  55. Advanced tools

  56. Metasploit python-msfrpc

  57. Metasploit API call Calls in msgpack format

  58. Nexpose  Tool developed by Rapid7 for scanning and vulnerability

    discovery.  It allows programmatic access to other programs via HTTP/s requests.  BeautifulSoup to obtain data from vulnerabilities server

  59. Nexpose

  60. Pentesting tool

  61. https://github.com/jmortega/python-pentesting

  62. https://github.com/jmortega/europython_ethical_hacking

  63. References & libs  http://docs.shodanhq.com  http://docs.python-requests.org/en/master/  http://scrapy.org 

    http://xael.org/pages/python-nmap-en.html  http://www.pythonsecurity.org/libs  https://github.com/dloss/python-pentest-tools  http://kali-linux.co/2016/07/12/python-tools-for- penetration-testers%E2%80%8B/  https://github.com/PacktPublishing/Effective-Python- Penetration-Testing

  64. Books

  65. Books

  66. THANK YOU!