Python Resources related with web security

Tim Chase python.list at tim.thechases.com
Mon Nov 25 17:48:59 EST 2019 

On 2019-11-25 21:25, Pycode wrote:
> On Sun, 24 Nov 2019 10:41:29 +1300, DL Neil wrote:
>> Are such email addresses 'open' and honest?
> 
> you are not being helpful or answer the question..

What DL Neil seems to be getting at is that there's been an uptick in
questions

1) where we don't know who you (and several other recent posters) are:

  - The pyc.ode domain-name of your email address isn't a
    real/registered domain

  - there doesn't seem to be much evidence of you being part of the
    Python community with a history of other messages

  Neither factor inspires much confidence.

2) you (and others) are asking to be spoonfed example code that could
cause problems on the internet.

>>> can anyone post links for python resources that contain tools and
>>> scripts related with security and pentesting?

They're the sorts of tools that, if the community deems you a
non-threatening-actor, they might point you in the right direction.
But not knowing who you are (see point #1 above), I imagine folks here
are hesitant.  And almost certainly not going to spoon-feed example
code that could then end up attacking sites on the web.

So I suspect DL Neil was raising awareness to make sure that anybody
who *did* answer your questions might take the time to think about
the potential consequences of the actions.  So DL *is* being helpful,
but rather to the community, even if not necessarily to you in
particular.

> can someone answer? maybe should i ask on the mailing list?

You did.  The usenet & mailing lists are mirrored.  Though perhaps if
you post from a legit mail identity/address (whether to the mailing
list or usenet), it might help folks evaluate whether you're a "white
hat" or a "black hat" (or somewhere in between).


As to your questions, all the basics are available:  materials on
security & pentesting are a web-search away, and Python provides
libraries for both socket-level interfaces & application-specific
protocols.  How you choose to combine them is up to you.  How the
community chooses to assist you in combining them largely depends on
how much they trust you.

-tkc

More information about the Python-list mailing list