A fork of Bandit tool with patterns to identifying malicious python code.
☆29Sep 1, 2022Updated 3 years ago
Alternatives and similar repositories for bandit4mal
Users that are interested in bandit4mal are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Artifact accompanying our ICSE '22 paper "Practical Automated Detection of Malicious npm Packages"☆47Jan 25, 2022Updated 4 years ago
- A reimplementation of LastPyMile: A Python-based library to Identify the differences between build artifacts of PyPI packages and the res…☆15Jan 8, 2022Updated 4 years ago
- The repository has collected about 10,000 malicious pypi packages. This dataset is the work of the ASE 2023 paper "An Empirical Study of…☆117Mar 21, 2026Updated 3 weeks ago
- A Python package that demontrates arbitrary code execution during the install process of a Python package.☆11Sep 28, 2014Updated 11 years ago
- The Artifacts for ICSE 2023 paper: Bad Snakes: Understanding and Improving Python Package Index Malware Scanning☆13Feb 8, 2026Updated 2 months ago
- NordVPN Special Discount Offer • AdSave on top-rated NordVPN 1 or 2-year plans with secure browsing, privacy protection, and support for for all major platforms.
- Do You Know What's In Your Python Packages? A Tool for Visualizing Python Package Registry Security Audit Data☆19Jun 13, 2022Updated 3 years ago
- Collection of tools for analyzing open source packages.☆357Mar 9, 2026Updated last month
- ☆13Jun 26, 2023Updated 2 years ago
- An open-source dataset of malicious software packages found in the wild, 100% vetted by humans.☆331Updated this week
- Go tool to declaratively bump dependencies.☆11Updated this week
- PyPI malware packages☆59Dec 12, 2018Updated 7 years ago
- A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerabilit…☆486Updated this week
- A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…☆82Apr 3, 2026Updated last week
- Open Source Package Analysis☆872Feb 27, 2026Updated last month
- DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Bundle of security analysis scripts for keras tensorflow models☆16Apr 15, 2024Updated last year
- Static malware analysis using python☆12Jun 22, 2018Updated 7 years ago
- FIRE: Combining Multi-Stage Filtering with Taint Analysis for Scalable Recurring Vulnerability Detection.☆16Sep 27, 2024Updated last year
- A Python wrapper library for libyara and a local server for fully utilizing the CPUs of the system to scan with yara...with additional ca…☆19Dec 8, 2022Updated 3 years ago
- A deep learning model for identifying and localizing vulnerabilities in C/C++ source code.☆12Jan 18, 2025Updated last year
- Python source code auditing and static analysis on a large scale☆495Oct 3, 2023Updated 2 years ago
- DeVAIC (Detection of Vulnerabilities in AI-generated Code) is a static code analyzer for security issues in Python code snippets. It dete…☆17Oct 24, 2025Updated 5 months ago
- Mininode is a CLI tool to reduce the attack surface of the Node.js applications by using static analysis.☆21Apr 11, 2023Updated 3 years ago
- Example CLI project to demo API architecture and protobom library☆26Mar 27, 2026Updated 2 weeks ago
- NordVPN Threat Protection Pro™ • AdTake your cybersecurity to the next level. Block phishing, malware, trackers, and ads. Lightweight app that works with all browsers.
- ☆14May 14, 2024Updated last year
- Simple unpacking script for Ezuri ELF Crypter☆37Jul 28, 2021Updated 4 years ago
- [WIP!] a cross platfrom Go library to work with the notification area / system tray☆11Aug 15, 2019Updated 6 years ago
- ARVO: an Atlas of Reproducible Vulnerabilities in Open source software.☆67Feb 16, 2026Updated last month
- Automatically scan new pypi packages for potentially malicious code☆31Mar 24, 2024Updated 2 years ago
- Import your WordPress blog to Write.as☆12Feb 20, 2025Updated last year
- An SBOM query language and associated utilities☆56Jan 22, 2024Updated 2 years ago
- Nice (ish) bindings for the EndpointSecurity framework on macOS for Rust.☆21Dec 14, 2023Updated 2 years ago
- This repository is to support contributions for tools and new data entries for the D2A dataset hosted in DAX☆74May 27, 2022Updated 3 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- swagger api文档 可以用同一个model根据group在不同api里展示不同字段和描述☆13Dec 19, 2021Updated 4 years ago
- all random stuff that dont warrant a seperate repo☆12Sep 2, 2022Updated 3 years ago
- naisdevice is a application suite that enables NAV developers to connect to internal resources in a secure and friendly manner.☆17Updated this week
- Adversary emulation for EDR/SIEM testing (macOS/Linux)☆54Mar 23, 2026Updated 2 weeks ago
- yara detection rules for hunting with the threathunting-keywords project☆158May 11, 2025Updated 11 months ago
- WASM on CloudFlare Workers☆12Aug 13, 2022Updated 3 years ago
- A protocol based monad implementation for clojure☆61Aug 11, 2014Updated 11 years ago