OWASP Python Security Project

Python Security is a free, open source, OWASP project that aims at creating a hardened version of python that makes it easier for security professionals and developers to write applications more resilient to attacks and manipulations.

The project is designed to explore how web applications can be developed in python by approaching the problem from three different angles:

This project source code is licensed under the Apache 2.0 license, which has no restriction except for attribution, and allows proprietary modifications and proprietary forks of this project. The project documentation is licensed under the Creative Commons license. You can use or modify PySec however you want, even include it in commercial products.


About Project

Security in python

White-box analysis, structural and functional analysis of python applications and open source code.

We focused our efforts on:

Security of python

Black-box analysis, identify and address security-related issues that can affect the interpreter.

We focused our efforts on:


Software Roadmap

Internal Data Network Utility
Layer 0
  • OS-like
  • sys-like
  • Memory space
  • Queue lib
  • OS privileges
  • OS permissions
  • Process fork
  • Process spawn
  • Process clone
  • Stat umask clone
  • Sysvar lib
  • Endian lib
  • Variable lib
  • Error lib
  • String lib
  • Binary lib
  • logging
  • Py-call-table
Layer 1
  • File-simple lib
  • File-special lib
  • Memory-limits
  • Memory-secheap
  • Traceback lib
  • Process lib
  • Directory lib
  • Unicode-patterns
  • Data-entropy
  • IP-address lib
  • Socket lib
  • Module-loader
  • Number lib
  • Regex lib
  • File-magic lib
  • String-whitelist
  • String-blacklist
  • Binary-blacklist
  • Binary-blacklist
  • Sys-entropy
Layer 2
  • Sequence lib
  • Process-sync lib
  • Process-async lib
  • Socket operations
  • Tester lib
  • zlib
  • zip lib
  • Unicode lib
  • IP-address operations
  • Config lib
  • Math lib
  • Cryptographic-hash lib
  • Random-hash lib
  • Memory-obj-checksum
  • Tar-gnu lib
  • GZip lib
  • Random-num-gen
Layer 3
  • Process-exec lib
  • Process-multi-sync lib
  • Process-multy-async lib
  • MIME lib
  • String-patterns lib
  • Binary-patterns lib
  • JSON lib
  • YAML lib
  • CSV lib
  • On-disk dicts
  • On-disk lists
  • SSL-ASN1
  • SSL-chiphers
  • Network lib
  • Net-error code
  • DNS lib
  • File-entropy
  • Fuzzy-hash lib
  • Random-test
Layer 4
  • Proc-multi-sync-mng
  • Proc-multi-async-mng
  • KyotoCabinet
  • FTP lib
  • POP3 lib
  • SMTP lib
  • IMAP4 lib
  • HTTP lib
  • cURL lib
  • WhoIs lib
  • Secpy-ssl lib
  • SSH patterns
  • Protocol-headers
  • Useragent-pattern lib
  • Image-pattern-lib
  • Image-parser-.lib
  • Exif-lib
  • MS-OLE-lib
  • MS-PE-lib
  • CryptoKey lib
  • String-attack lib
  • Useragent lib
  • Web-cookie lib
Layer 5
  • Image-jpeg lib
  • Image-gif lib
  • Image-bmp lib
  • Image-png lib
  • Image-tiff lib
  • POP3-server
  • STMP-server
  • FTP-server
  • SSH lib
  • FTPES lib
  • POP3S lib
  • SMTPS lib
  • IMAP4S lib
  • HTTPS lib
  • SSL-cURL lib
  • HTTP-server
  • IMAP4-server
  • DNSsec lib
  • DNS-cache lib
  • Virus rules
  • Authenticode lib
Layer 6
  • DNS proxy
  • FTP-protocol-analyzer
  • POP3-protocol-analyzer
  • SMTP-protocol-analyzer
  • IMAP-protocol-analyzer
  • HTTP-protocol-analyzer
  • SSL-analyzer
  • SSH-analyzer
  • jpeg-analyzer
  • gif-analyzer
  • SSL-analyzer
  • SSH-analyzer
  • Socket-gif-hack
  • PCI-DSS-v2-analyzer
  • Modules Repository
  • Hash PyPI modules
  • Image-entropy

Software Development in GitHub

Clone or fork owasp-pysec from GitHub

git clone https://github.com/ebranca/owasp-pysec.git

Software Prerequisites

Software License

Apache 2.0 License


External Python Resources