Demonstrates how a malicious dependency could negatively impact the build output.
☆26Aug 11, 2023Updated 2 years ago
Alternatives and similar repositories for malicious-dependencies
Users that are interested in malicious-dependencies are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆13Oct 30, 2023Updated 2 years ago
- Java archive implant toolkit.☆62Apr 20, 2025Updated last year
- Collating an overview of the open source software supply chain landscape -- and synthesizing that survey in a hopefully-useful way.☆34Apr 4, 2023Updated 3 years ago
- OpenControl Database☆11Jan 5, 2023Updated 3 years ago
- HashiCorp-relevant rules for the Semgrep code analysis tool☆42Oct 3, 2023Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- My personal monorepo, containing my dotfiles and related infrastructure☆13May 16, 2026Updated 2 weeks ago
- ☆12Jan 14, 2025Updated last year
- Source Code Transparency☆11Sep 25, 2023Updated 2 years ago
- Burp Suite extension for testing Passkey systems.☆75Apr 1, 2025Updated last year
- re-hosted web identiy course from opensecuritytraining.info☆11Nov 7, 2025Updated 6 months ago
- Repository for the Huntsville/Madison DevOps for Defense Meetup. Join us at meetup.com.☆11Aug 10, 2024Updated last year
- References, tools and sample payloads☆11Sep 16, 2016Updated 9 years ago
- ☆10Mar 16, 2026Updated 2 months ago
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆41Dec 12, 2023Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Kantega Web Application Security Hero Challenge☆19Dec 3, 2020Updated 5 years ago
- The Artifacts for ICSE 2023 paper: Bad Snakes: Understanding and Improving Python Package Index Malware Scanning☆13Feb 8, 2026Updated 3 months ago
- GitHub Actions Cache Native Malware - for Educational and Research Purposes only.☆156May 8, 2026Updated 3 weeks ago
- ☆16Feb 15, 2022Updated 4 years ago
- ☆66May 21, 2024Updated 2 years ago
- ☆20Mar 7, 2024Updated 2 years ago
- Official code for the paper entitled "Toward Intelligent and Secure Cloud: Large Language Model Empowered Proactive Defense"☆16Apr 10, 2025Updated last year
- ☆14Apr 23, 2019Updated 7 years ago
- A collection of my Semgrep rules☆52Jul 4, 2023Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Sharing software supply chain security open source projects☆54Dec 19, 2022Updated 3 years ago
- Verify that systems operate under your sole control☆19Aug 7, 2025Updated 9 months ago
- Data about all known supply-chain attacks through history☆75May 23, 2026Updated last week
- Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)☆41Jan 25, 2026Updated 4 months ago
- ☆14Jan 8, 2026Updated 4 months ago
- ☆19Feb 3, 2026Updated 3 months ago
- ☆22Jul 12, 2024Updated last year
- OSCAL reusable component definitions library☆16Mar 14, 2025Updated last year
- ☆18Jul 30, 2024Updated last year
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- The repository contains IOCs in CSV format for APT, Cyber Crimes, Malware and Trojan and whatever I found as part of hunting and research☆12Jun 10, 2017Updated 8 years ago
- The tutorial of "Kubernetes Security for Microservices"☆14Oct 3, 2023Updated 2 years ago
- Create tar/zip archives that try to exploit zipslip vulnerability.☆48Sep 20, 2024Updated last year
- A tool for analyzing the attack surface of an application☆19Mar 5, 2025Updated last year
- Creates an ATT&CK Navigator map of an Adversary Emulation Plan☆17Sep 4, 2021Updated 4 years ago
- Nuclei plugins to audit Chrome extensions☆65Jul 16, 2024Updated last year
- ☆17Mar 15, 2024Updated 2 years ago