Automating tools enable us to explore and exploit more vulnerabilities than any manual method possibly could. In my opinion, nothing beats manual security testing combined with a set of automated sections performed by an experienced security specialist. Sophisticated scripts can split the attack between several hosts and avoid being blacklisted.
Topics covered in this chapter are as follows:
SFTP automations with paramiko
Nmap automation
W3af REST API
Metasploit scripting with MSGRPC
OWASP zap API
Breaking captcha
Accessing BeEF API with Python
Accessing Nessus 6 API with Python