Languages › Python

Python

Live course

The automation language of security work.

14 modules · 24 lessons published · beginner-friendly

Start the course

Overview

Python is the language most offensive tooling is written in — impacket, scapy, sqlmap, pwntools, and thousands of recon scripts. This course teaches it from absolute zero, but never with toy examples. Every concept lands on something you'd actually run: an HTTP request, an API test, a log parser, a secret scanner.

Why learn Python

It reads almost like English, so you're productive in hours, not months.
Nearly every security tool you already use is written in it — fluency means you can read, modify, and extend them.
One language covers recon, web testing, AD work, malware triage, and red-team automation.

What you'll build

HTTP clients and API testersRecon and endpoint-discovery automationLog parsers and report generatorsSource-review and secret-scanning tools

Security applications

Web application and API penetration testing
Reconnaissance and secret discovery automation
Source-code review scanners
Active Directory enumeration with impacket and ldap3
Malware static triage and IOC extraction

Tools built with Python

impacketscapysqlmappwntoolsrequestshttpx

Full curriculum

1 Programming Fundamentals 7 lessons

Variables, types, strings, the container types, conditions, loops, functions, and error handling — taught for someone who has never written code.

2 Python for Pentesters 4 lessons

The requests library, HTTP, JSON, sessions, and authentication — turning Python into a web-testing tool.

3 Recon Automation 2 lessons

URL parsing, endpoint and parameter discovery, secret discovery, and JavaScript analysis.

4 Regex for Pentesters 1 lessons

The re module applied to secrets, tokens, logs, and source review.

The re module for pentesters 3 min

5 Web Application Security Automation 1 lessons

Custom scanners, crawlers, the auth-matrix and IDOR sweeps, and JWT analysis.

Building a custom web scanner 3 min

6 Source Code Review Automation 1 lessons

Walking a codebase to find credentials, dangerous functions, and vulnerability patterns.

Automating source code review 3 min

7 Active Directory Automation 1 lessons

LDAP and Kerberos concepts, enumeration, and BloodHound-style graph analysis.

Active Directory enumeration with LDAP 3 min

8 Networking Fundamentals 1 lessons

Sockets, TCP/UDP, DNS, and packet handling with scapy.

Sockets, port scanning, and DNS 3 min

9 Security Tool Development 1 lessons

CLIs, concurrency, and assembling a complete, shippable recon tool.

From script to real tool 3 min

10 Malware Analysis Automation 1 lessons

IOC and string extraction, PE parsing, and log processing for static triage.

Static malware triage with Python 3 min

11 Red Team Automation 1 lessons

Payload handling, infrastructure automation, and activity logging.

Red team automation and operational logging 4 min

12 The Python Ecosystem for Security 1 lessons

requests, httpx, asyncio, threading, BeautifulSoup, Selenium, scapy, impacket, pwntools — and when to reach for each.

The Python security ecosystem 4 min

13 Advanced Python 1 lessons

Classes, decorators, context managers, generators, and async.

Classes, decorators, and generators 4 min

14 Real-World Security Workflows 1 lessons

How professional pentesters, red teamers, and bug hunters use Python daily.

How professionals use Python daily 4 min

Related languages