A fork of Bandit tool with patterns to identifying malicious python code.
☆29Sep 1, 2022Updated 3 years ago
Alternatives and similar repositories for bandit4mal
Users that are interested in bandit4mal are comparing it to the libraries listed below
Sorting:
- Artifact accompanying our ICSE '22 paper "Practical Automated Detection of Malicious npm Packages"☆47Jan 25, 2022Updated 4 years ago
- A reimplementation of LastPyMile: A Python-based library to Identify the differences between build artifacts of PyPI packages and the res…☆15Jan 8, 2022Updated 4 years ago
- The repository has collected about 10,000 malicious pypi packages. This dataset is the work of the ASE 2023 paper "An Empirical Study of…☆116Jan 24, 2026Updated last month
- A Python package that demontrates arbitrary code execution during the install process of a Python package.☆11Sep 28, 2014Updated 11 years ago
- Collection of tools for analyzing open source packages.☆358Mar 9, 2026Updated last week
- This repository complements our paper by offering the training dataset, the best-performing models utilized in our real-world experiment,…☆21Mar 7, 2025Updated last year
- ☆13Jun 26, 2023Updated 2 years ago
- PyPI malware packages☆59Dec 12, 2018Updated 7 years ago
- A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerabilit…☆470Updated this week
- A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…☆81Updated this week
- Open Source Package Analysis☆866Feb 27, 2026Updated 3 weeks ago
- Cybersecurity Ontology (CyberOnto) and Situational Awareness (CyberSA) help teamwork in Cyber Incident Responses, Control, Containment, a…☆10Sep 15, 2022Updated 3 years ago
- A malware scanner with Yara and ClamAV binding☆12Apr 16, 2025Updated 11 months ago
- Welcome to the Pressidium® Yara Rules repository. This section contains a carefully curated collection of Yara rules specifically designe…☆16Nov 5, 2023Updated 2 years ago
- FIRE: Combining Multi-Stage Filtering with Taint Analysis for Scalable Recurring Vulnerability Detection.☆16Sep 27, 2024Updated last year
- A Python wrapper library for libyara and a local server for fully utilizing the CPUs of the system to scan with yara...with additional ca…☆19Dec 8, 2022Updated 3 years ago
- Run Sigma detection rules on logs from the new MacOS EndpointSecurity Framework☆22Jan 22, 2021Updated 5 years ago
- A dataset of software supply chain compromises. Please help us maintain it!☆131Sep 16, 2022Updated 3 years ago
- GuardDog is a CLI tool to Identify malicious PyPI and npm packages☆1,017Updated this week
- ☆15Jul 27, 2023Updated 2 years ago
- ☆15May 6, 2022Updated 3 years ago
- Mininode is a CLI tool to reduce the attack surface of the Node.js applications by using static analysis.☆21Apr 11, 2023Updated 2 years ago
- CleanVul: Automatic Function-Level Vulnerability Detection in Code Commits Using LLM Heuristics☆20Jan 23, 2026Updated last month
- Python wrapper for libraries.io API☆19Dec 1, 2024Updated last year
- The official repository of ICSME'23 paper "Exploring Security Commits in Python"☆18Jul 12, 2023Updated 2 years ago
- ☆15Jan 15, 2023Updated 3 years ago
- ☆17Jul 25, 2024Updated last year
- ☆93Aug 30, 2022Updated 3 years ago
- ☆14May 14, 2024Updated last year
- Simple unpacking script for Ezuri ELF Crypter☆37Jul 28, 2021Updated 4 years ago
- Resources for our ICSE'24 poster: Prompt-Enhanced Software Vulnerability Detection Using ChatGPT.☆25May 8, 2024Updated last year
- ARVO: an Atlas of Reproducible Vulnerabilities in Open source software.☆65Feb 16, 2026Updated last month
- ☆13Sep 20, 2022Updated 3 years ago
- VulExplainer: A Transformer-based Hierarchical Distillation for Explaining Vulnerability Types☆19Nov 24, 2023Updated 2 years ago
- Example implementations of PEP 578 and 551 entry points☆35May 12, 2025Updated 10 months ago
- Modular static malicious JavaScript detection system☆75Jan 18, 2021Updated 5 years ago
- An SBOM query language and associated utilities☆55Jan 22, 2024Updated 2 years ago
- This code helps to retrieve all papers from conferences and rank them by the number of (Google Scholar) citations.☆12Dec 12, 2021Updated 4 years ago
- 🔍 一个跨平台的hap查看器,方便开发者在电脑上预览hap的信息,并提供一键安装到设备等功能☆23Jun 29, 2024Updated last year