lxyeternal / pypi_malregistryLinks
The repository has collected about 10,000 malicious pypi packages. This dataset is the work of the ASE 2023 paper "An Empirical Study of Malicious Code In PyPI Ecosystem". Of course, we will continue to expand the dataset. Latest update time: 07 Aug. 2025
☆99Updated 2 weeks ago
Alternatives and similar repositories for pypi_malregistry
Users that are interested in pypi_malregistry are comparing it to the libraries listed below
Sorting:
- Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages☆135Updated 2 years ago
- ☆16Updated last year
- Artifact accompanying our ICSE '22 paper "Practical Automated Detection of Malicious npm Packages"☆45Updated 3 years ago
- This repository complements our paper by offering the training dataset, the best-performing models utilized in our real-world experiment,…☆20Updated 5 months ago
- ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.☆155Updated last year
- CVEfixes: Automated Collection of Vulnerabilities and Their Fixes from Open-Source Software☆269Updated last year
- Awesome Large Language Models for Vulnerability Detection☆226Updated last week
- A neurosymbolic framework for vulnerability detection in code☆211Updated 2 weeks ago
- A deep learning model for localizing bugs in C/C++ source code (USENIX'23)☆152Updated 2 years ago
- ☆29Updated 3 months ago
- A manually vetted dataset for security vulnerability detection in Java projects☆74Updated 2 weeks ago
- ☆41Updated 2 years ago
- A curated list of awesome resources about LLM supply chain security (including papers, security reports and CVEs)☆83Updated 7 months ago
- Source Code Vulnerability Detection Tools(SCVDT)provides a vulnerable code database, vulnerability detection service for Java and C/C++ p…☆117Updated 4 years ago
- Pairing Security Advisories with Vulnerable Functions Using Open-Source LLMs - DIMVA '24☆16Updated last year
- Modular static malicious JavaScript detection system☆71Updated 4 years ago
- 🪐 A Database of Existing Security Vulnerabilities Patches to Enable Evaluation of Techniques (single-commit; multi-language)☆41Updated 4 months ago
- ☆27Updated last year
- A collection of security papers on top-tier publications☆52Updated 3 weeks ago
- VulZoo: A Comprehensive Vulnerability Intelligence Dataset | ASE 2024 Demo☆58Updated 5 months ago
- TensorFlow API analysis tool and malicious model detection tool☆33Updated 3 months ago
- SecLLMHolmes is a generalized, fully automated, and scalable framework to systematically evaluate the performance (i.e., accuracy and rea…☆57Updated 3 months ago
- ☆340Updated 10 months ago
- Hey folks, this is a repository for papers on LLM for Vuln. Detection area☆60Updated 4 months ago
- This repository contains a list of papers about software supply chain☆30Updated last year
- A library to extract Code Property Graphs from C/C++, Java, Go, Python, Ruby and every other language through LLVM-IR.☆366Updated this week
- This is a benchmark for evaluating the vulnerability discovery ability of automated approaches including Large Language Models (LLMs), de…☆70Updated 9 months ago
- ObjLupAnsys is a tool to detect prototype pollution vulnerabilities in Node.js packages. This project is written in Python and JavaScript…☆24Updated 3 years ago
- MegaVul - The largest, high-quality, extensible, continuously updated, C/C++/Java vulnerability dataset☆116Updated 7 months ago
- Resources for our ICSE'24 poster: Prompt-Enhanced Software Vulnerability Detection Using ChatGPT.☆24Updated last year