lxyeternal / pypi_malregistryLinks
The repository has collected about 10,000 malicious pypi packages. This dataset is the work of the ASE 2023 paper "An Empirical Study of Malicious Code In PyPI Ecosystem". Of course, we will continue to expand the dataset. Latest update time: 04 Nov. 2025
☆111Updated last month
Alternatives and similar repositories for pypi_malregistry
Users that are interested in pypi_malregistry are comparing it to the libraries listed below
Sorting:
- Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages☆135Updated 3 years ago
- ☆16Updated last year
- Artifact accompanying our ICSE '22 paper "Practical Automated Detection of Malicious npm Packages"☆47Updated 3 years ago
- ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.☆160Updated last year
- Awesome Large Language Models for Vulnerability Detection☆319Updated last week
- This repository complements our paper by offering the training dataset, the best-performing models utilized in our real-world experiment,…☆21Updated 9 months ago
- CVEfixes: Automated Collection of Vulnerabilities and Their Fixes from Open-Source Software☆308Updated last year
- A curated list of awesome resources about LLM supply chain security (including papers, security reports and CVEs)☆87Updated 10 months ago
- A neurosymbolic framework for vulnerability detection in code☆272Updated last week
- VulZoo: A Comprehensive Vulnerability Intelligence Dataset | ASE 2024 Demo☆65Updated 8 months ago
- TensorFlow API analysis tool and malicious model detection tool☆37Updated 6 months ago
- SecLLMHolmes is a generalized, fully automated, and scalable framework to systematically evaluate the performance (i.e., accuracy and rea…☆62Updated 7 months ago
- A manually vetted dataset for security vulnerability detection in Java projects☆81Updated 3 months ago
- A deep learning model for localizing bugs in C/C++ source code (USENIX'23)☆154Updated 2 years ago
- ☆43Updated 2 years ago
- Hey folks, this is a repository for papers on LLM for Vuln. Detection area☆71Updated 8 months ago
- [CCS'24] An LLM-based, fully automated fuzzing tool for option combination testing.☆92Updated 7 months ago
- CKGFuzzer: LLM-Based Fuzz Driver Generation Enhanced By Code Knowledge Graph☆124Updated 10 months ago
- Source Code Vulnerability Detection Tools(SCVDT)provides a vulnerable code database, vulnerability detection service for Java and C/C++ p…☆118Updated 4 years ago
- PatchEval: A New Benchmark for Evaluating LLMs on Patching Real-World Vulnerabilities☆161Updated 2 weeks ago
- ☆29Updated 7 months ago
- ☆27Updated last year
- MegaVul - The largest, high-quality, extensible, continuously updated, C/C++/Java vulnerability dataset☆132Updated 10 months ago
- 🪐 A Database of Existing Security Vulnerabilities Patches to Enable Evaluation of Techniques (single-commit; multi-language)☆42Updated 7 months ago
- This repository contains a list of papers about software supply chain☆29Updated last year
- Atropos: Effective Fuzzing of Web Applications for Server-Side Vulnerabilities☆73Updated last year
- ☠️ Ground-truth dataset for vulnerability prediction (known research datasets and data sources included such as NVD, CVE Details and OSV)…☆100Updated 2 years ago
- This is a benchmark for evaluating the vulnerability discovery ability of automated approaches including Large Language Models (LLMs), de…☆75Updated last year
- A library to extract Code Property Graphs from C/C++, Java, Go, Python, Ruby and every other language through LLVM-IR.☆385Updated last week
- AIBugHunter: A Practical Tool for Predicting, Classifying and Repairing Software Vulnerabilities☆44Updated last year