A fork of Bandit tool with patterns to identifying malicious python code.
☆30Sep 1, 2022Updated 3 years ago
Alternatives and similar repositories for bandit4mal
Users that are interested in bandit4mal are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Artifact accompanying our ICSE '22 paper "Practical Automated Detection of Malicious npm Packages"☆47Jan 25, 2022Updated 4 years ago
- A reimplementation of LastPyMile: A Python-based library to Identify the differences between build artifacts of PyPI packages and the res…☆15Jan 8, 2022Updated 4 years ago
- Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages☆140Oct 5, 2022Updated 3 years ago
- The repository has collected about 10,000 malicious pypi packages. This dataset is the work of the ASE 2023 paper "An Empirical Study of…☆122Mar 21, 2026Updated 2 months ago
- A Python package that demontrates arbitrary code execution during the install process of a Python package.☆11Sep 28, 2014Updated 11 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- This repository complements our paper by offering the training dataset, the best-performing models utilized in our real-world experiment,…☆22Mar 7, 2025Updated last year
- Collection of tools for analyzing open source packages.☆364Updated this week
- ☆13Jun 26, 2023Updated 2 years ago
- An open-source dataset of malicious software packages found in the wild, 100% vetted by humans.☆348Updated this week
- PyPI malware packages☆60Dec 12, 2018Updated 7 years ago
- A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…☆82Jun 4, 2026Updated last week
- A malware scanner with Yara and ClamAV binding☆12May 23, 2026Updated 2 weeks ago
- Welcome to the Pressidium® Yara Rules repository. This section contains a carefully curated collection of Yara rules specifically designe…☆18Nov 5, 2023Updated 2 years ago
- A Python wrapper library for libyara and a local server for fully utilizing the CPUs of the system to scan with yara...with additional ca…☆19Dec 8, 2022Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Fluentd plugin to route records based on Kubernetes labels and namespace☆13Apr 11, 2025Updated last year
- A deep learning model for identifying and localizing vulnerabilities in C/C++ source code.☆13Jan 18, 2025Updated last year
- A dataset of software supply chain compromises. Please help us maintain it!☆130Sep 16, 2022Updated 3 years ago
- ☆15May 6, 2022Updated 4 years ago
- Mininode is a CLI tool to reduce the attack surface of the Node.js applications by using static analysis.☆21Apr 11, 2023Updated 3 years ago
- The official repository of ICSME'23 paper "Exploring Security Commits in Python"☆18Jul 12, 2023Updated 2 years ago
- ☆14May 14, 2024Updated 2 years ago
- Simple unpacking script for Ezuri ELF Crypter☆36Jul 28, 2021Updated 4 years ago
- Resources for our ICSE'24 poster: Prompt-Enhanced Software Vulnerability Detection Using ChatGPT.☆25May 8, 2024Updated 2 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Check if a file path is a text file☆21Apr 30, 2024Updated 2 years ago
- [WIP!] a cross platfrom Go library to work with the notification area / system tray☆11Aug 15, 2019Updated 6 years ago
- Java RAT called STRRat - Source code & Deobfuscator☆12Aug 12, 2022Updated 3 years ago
- Supply Chain Security Research - Attack Trees☆10Jan 9, 2023Updated 3 years ago
- Everything related to YARA☆16Apr 18, 2026Updated last month
- The Speech Rate Meter (hereinafter SRM) software module is designed to measure a complex of characteristics of the tempo (rate) of oral s…☆23Jul 11, 2024Updated last year
- An SBOM query language and associated utilities☆56Jan 22, 2024Updated 2 years ago
- 这个脚本主要提供对pypi供应�链的源头进行安全扫描研究,扫描并发现未知的恶意包情况。☆28May 22, 2023Updated 3 years ago
- Eddie Vetter - triage macOS applications for security research☆16May 24, 2021Updated 5 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- all random stuff that dont warrant a seperate repo☆12Sep 2, 2022Updated 3 years ago
- naisdevice is a application suite that enables NAV developers to connect to internal resources in a secure and friendly manner.☆18Updated this week
- Supplement of the ICFP'22 paper "‘do’ Unchained: Embracing Local Imperativity in a Purely Functional Language"☆16Feb 15, 2025Updated last year
- yara detection rules for hunting with the threathunting-keywords project☆164May 11, 2025Updated last year
- A CLI used to work with the Wolfi OSS project☆72Updated this week
- A ruleset to find potentially malicious code in macOS malware samples☆40Aug 29, 2023Updated 2 years ago
- A protocol based monad implementation for clojure☆61Aug 11, 2014Updated 11 years ago