lxyeternal / pypi_malregistryLinks
The repository has collected about 10,000 malicious pypi packages. This dataset is the work of the ASE 2023 paper "An Empirical Study of Malicious Code In PyPI Ecosystem". Of course, we will continue to expand the dataset. Latest update time: 07 Apr. 2025
☆91Updated last month
Alternatives and similar repositories for pypi_malregistry
Users that are interested in pypi_malregistry are comparing it to the libraries listed below
Sorting:
- Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages☆133Updated 2 years ago
- ☆16Updated 10 months ago
- This repository complements our paper by offering the training dataset, the best-performing models utilized in our real-world experiment,…☆19Updated 2 months ago
- Artifact accompanying our ICSE '22 paper "Practical Automated Detection of Malicious npm Packages"☆44Updated 3 years ago
- CVEfixes: Automated Collection of Vulnerabilities and Their Fixes from Open-Source Software☆250Updated 10 months ago
- A curated list of awesome resources about LLM supply chain security (including papers, security reports and CVEs)☆74Updated 4 months ago
- This repository contains a list of papers about software supply chain☆29Updated last year
- A fork of Bandit tool with patterns to identifying malicious python code.☆26Updated 2 years ago
- Source Code Vulnerability Detection Tools(SCVDT)provides a vulnerable code database, vulnerability detection service for Java and C/C++ p…☆117Updated 3 years ago
- SecLLMHolmes is a generalized, fully automated, and scalable framework to systematically evaluate the performance (i.e., accuracy and rea…☆57Updated last month
- ISSTA'23 - Third-party Library Dependency for Large-scale SCA in the C/C++ Ecosystem: How Far Are We?☆30Updated last year
- ☆38Updated 2 years ago
- A deep learning model for localizing bugs in C/C++ source code (USENIX'23)☆149Updated last year
- A manually vetted dataset for security vulnerability detection in Java projects☆55Updated this week
- AIBugHunter: A Practical Tool for Predicting, Classifying and Repairing Software Vulnerabilities☆41Updated last year
- 🪐 A Database of Existing Security Vulnerabilities Patches to Enable Evaluation of Techniques (single-commit; multi-language)☆40Updated last month
- ☆26Updated last year
- Vul4J: A Dataset of Reproducible Java Vulnerabilities☆89Updated 3 months ago
- ☠️ Ground-truth dataset for vulnerability prediction (known research datasets and data sources included such as NVD, CVE Details and OSV)…☆93Updated last year
- An open-source dataset of malicious software packages found in the wild, 100% vetted by humans.☆206Updated this week
- TensorFlow API analysis tool and malicious model detection tool☆29Updated last week
- VFCFinder: Searching for the Missing Vulnerability Fixing Commits☆29Updated last year
- The Artifacts for ICSE 2023 paper: Bad Snakes: Understanding and Improving Python Package Index Malware Scanning☆11Updated 2 years ago
- HiddenCPG: Large-Scale Vulnerable Clone Detection Using Subgraph Isomorphism of Code Property Graphs☆43Updated 2 years ago
- ☆29Updated last month
- A neurosymbolic framework for vulnerability detection in code☆81Updated last month
- MegaVul - The largest, high-quality, extensible, continuously updated, C/C++/Java vulnerability dataset☆86Updated 4 months ago
- This is a benchmark for evaluating the vulnerability discovery ability of automated approaches including Large Language Models (LLMs), de…☆68Updated 6 months ago
- [CCS'24] An LLM-based, fully automated fuzzing tool for option combination testing.☆81Updated last month
- VulZoo: A Comprehensive Vulnerability Intelligence Dataset (ASE 2024 Demo)☆48Updated 2 months ago