Python, probably the most popular programming language in the world, proves to be the most commonly used hacking tool language.
Security Business Imperva came to this conclusion after looking at GitHub and found that more than 20% of GitHub repositories were used for attack tools and proof-of-concepts The exploit is written in Python. (Recommended Learning: Python Video Tutorial)
"In almost all security-related topics in GitHub, most repositories are written in Python, including w3af, Tools like Sqlmap and even the infamous AutoSploit tool," the company explained in a blog post, adding that hackers enjoy Python's advantages - easy to learn, easy to read, comprehensive libraries - just like everyone else.
Python is not only present in GitHub repos, but also in events. Imperva claims that the largest group of web clients it can identify in its security incident data (about 25%) are based on Python.
Most
Looking at the usage of Python in attacks on websites protected by Imperva, the company found that a whopping 77% were attacked by Python-based tools, and in At least one-third of the incidents in most daily attacks can be attributed to coding written in Python.
Security Business points to Urllib and Requests as the two most popular Python libraries used by attackers asyncio, a relative newcomer that is just starting to show signs of adoption. Among the most common attacks involving Python tools, the two most popular attacks over the past two months were against a PHP-based remote execution flaw in the PHPUnit framework (CVE-2017-9841) and a remote code execution flaw in Joomla (CVE -2015-8562).
Imperva’s observations don’t provide much insight into whether mitigating Python-based attacks is any different than dealing with other types of attacks. But the company did note that Python requires minimal coding skills, making it easy to script and exploit vulnerabilities.
IBM researcher Grady Booch told The Register that Imperva's observations appear to be reasonable. "I haven't delved into Imperva's data or methodology, but it's true on many levels: Python is popular because it's most often used at the edges of systems where software is more tractable (and less risky, e.g. - the foundations of a system facilities compared),” he said.
Thomas Reed, director of Mac and mobile at security firm Malwarebytes, said he tends to agree with Imperva's findings. "We've seen some malware on Macs that's coded in nothing but Python!" he told us, pointing to EvilOSX, Bella, and Pupy. "Python is also very popular with white hats... It's now my scripting language of choice and is popular with many other Mac security experts and administrators. There's even a way to include Objectives in Python scripts - C method, via pyobjc, for extra power."
For more Python-related technical articles, please visit the Python Tutorial column to learn!
The above is the detailed content of Do you know Python?. For more information, please follow other related articles on the PHP Chinese website!
Python: Games, GUIs, and MoreApr 13, 2025 am 12:14 AMPython excels in gaming and GUI development. 1) Game development uses Pygame, providing drawing, audio and other functions, which are suitable for creating 2D games. 2) GUI development can choose Tkinter or PyQt. Tkinter is simple and easy to use, PyQt has rich functions and is suitable for professional development.
Python vs. C : Applications and Use Cases ComparedApr 12, 2025 am 12:01 AMPython is suitable for data science, web development and automation tasks, while C is suitable for system programming, game development and embedded systems. Python is known for its simplicity and powerful ecosystem, while C is known for its high performance and underlying control capabilities.
The 2-Hour Python Plan: A Realistic ApproachApr 11, 2025 am 12:04 AMYou can learn basic programming concepts and skills of Python within 2 hours. 1. Learn variables and data types, 2. Master control flow (conditional statements and loops), 3. Understand the definition and use of functions, 4. Quickly get started with Python programming through simple examples and code snippets.
Python: Exploring Its Primary ApplicationsApr 10, 2025 am 09:41 AMPython is widely used in the fields of web development, data science, machine learning, automation and scripting. 1) In web development, Django and Flask frameworks simplify the development process. 2) In the fields of data science and machine learning, NumPy, Pandas, Scikit-learn and TensorFlow libraries provide strong support. 3) In terms of automation and scripting, Python is suitable for tasks such as automated testing and system management.
How Much Python Can You Learn in 2 Hours?Apr 09, 2025 pm 04:33 PMYou can learn the basics of Python within two hours. 1. Learn variables and data types, 2. Master control structures such as if statements and loops, 3. Understand the definition and use of functions. These will help you start writing simple Python programs.
How to teach computer novice programming basics in project and problem-driven methods within 10 hours?Apr 02, 2025 am 07:18 AMHow to teach computer novice programming basics within 10 hours? If you only have 10 hours to teach computer novice some programming knowledge, what would you choose to teach...
How to avoid being detected by the browser when using Fiddler Everywhere for man-in-the-middle reading?Apr 02, 2025 am 07:15 AMHow to avoid being detected when using FiddlerEverywhere for man-in-the-middle readings When you use FiddlerEverywhere...
What should I do if the '__builtin__' module is not found when loading the Pickle file in Python 3.6?Apr 02, 2025 am 07:12 AMError loading Pickle file in Python 3.6 environment: ModuleNotFoundError:Nomodulenamed...
Hot AI Tools
Undresser.AI Undress
AI-powered app for creating realistic nude photos
AI Clothes Remover
Online AI tool for removing clothes from photos.
Undress AI Tool
Undress images for free
Clothoff.io
AI clothes remover
AI Hentai Generator
Generate AI Hentai for free.
Hot Article
Hot Tools
SublimeText3 Chinese version
Chinese version, very easy to use
mPDF
mPDF is a PHP library that can generate PDF files from UTF-8 encoded HTML. The original author, Ian Back, wrote mPDF to output PDF files "on the fly" from his website and handle different languages. It is slower than original scripts like HTML2FPDF and produces larger files when using Unicode fonts, but supports CSS styles etc. and has a lot of enhancements. Supports almost all languages, including RTL (Arabic and Hebrew) and CJK (Chinese, Japanese and Korean). Supports nested block-level elements (such as P, DIV),
DVWA
Damn Vulnerable Web App (DVWA) is a PHP/MySQL web application that is very vulnerable. Its main goals are to be an aid for security professionals to test their skills and tools in a legal environment, to help web developers better understand the process of securing web applications, and to help teachers/students teach/learn in a classroom environment Web application security. The goal of DVWA is to practice some of the most common web vulnerabilities through a simple and straightforward interface, with varying degrees of difficulty. Please note that this software
Dreamweaver Mac version
Visual web development tools
SecLists
SecLists is the ultimate security tester's companion. It is a collection of various types of lists that are frequently used during security assessments, all in one place. SecLists helps make security testing more efficient and productive by conveniently providing all the lists a security tester might need. List types include usernames, passwords, URLs, fuzzing payloads, sensitive data patterns, web shells, and more. The tester can simply pull this repository onto a new test machine and he will have access to every type of list he needs.
