A curated list of security resources for the Python ecosystem.
- Django - A high-level Python web framework that encourages rapid development.
- Flask-Security - Simple security for Flask apps.
- Pyramid - A lightweight Python web framework for building web applications.
- Tornado - A Python web framework and asynchronous networking library.
- FastAPI - A modern, fast (high-performance) web framework for building APIs.
- Bandit - A tool to find common security issues in Python code.
- Safety - Check your installed dependencies for known security vulnerabilities.
- Snyk - Find and fix vulnerabilities in your open source dependencies.
- PyLint - A Python static code analysis tool that looks for errors in Python code.
- Brakeman - A security vulnerability scanner for Ruby on Rails applications.
- Cryptography - A package designed to expose cryptographic recipes and primitives.
- PyCryptodome - A self-contained Python package of low-level cryptographic primitives.
- Passlib - A password hashing library supporting over 30 schemes.
- PyJWT - A Python library to work with JSON Web Tokens.
- Paramiko - A Python implementation of SSHv2, providing both client and server functionality.
- OWASP Python Security Cheat Sheet - OWASP cheat sheet for Python security best practices.
- Real Python Security - Articles on various security practices in Python.
- Django Security Best Practices - Tips on securing Django applications.
- Flask Security Best Practices - Securing a Flask application.
- Python Cryptography Tutorial - A tutorial on cryptography in Python.
- Black Hat Python - Python Programming for Hackers and Pentesters.
- Violent Python - A Cookbook for Hackers, Forensic Analysts, Penetration Testers.
- Python for Cybersecurity - An excellent resource for learning to use Python within the scope of cybersecurity.
Contributions are welcome! Please see CONTRIBUTING.md for details.