roeyk/Bywaf

Offensive & Pentesting

A Python‑based interactive commandlet framework for auditable web application and network testing workflows

Track releases GitHub

Python Latest v0.12.2 · 7d ago Security brief →

Features

Interactive shell with pipeline‑style commandlets
SQLite‑backed durable event, artifact, note, and metadata store
Plugin system via @commandlet API with manifest (bywaf.plugin.toml)
Chain‑of‑custody evidence handling with SHA‑256 provenance
Report‑oriented finding workflows

Recent releases

View all 5 releases →

Review required

v0.11.0 New feature 13d

Auth Dependencies

Internal refactor + plugin security

Open

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Releases

View all →

Releases per week

May 20

May 27

Jun 3

Cadence 3.0 / wk

Last release 4d

Release size 3

Churn +3088 / −1113 lines · 57 files · 5 commits

Tracked 5

Security

Full profile →

Security score 6.5/10

OpenSSF —

Open CVEs 0

Active maintainer

Community

GitHub stars 4

Open issues 0

Open PRs 0

Stars/wk velocity 0.0

About

Stars

Forks

Languages

Python Shell

View on GitHub

Install & Platforms

Install via

pip

Alternative to

Bash Metasploit Airflow Custom Python scripts

Similar tools

WilliamSmithEdward/pyOpenVBA

fthomys/Tokn