A fork of Bandit tool with patterns to identifying malicious python code.
☆30Sep 1, 2022Updated 3 years ago
Alternatives and similar repositories for bandit4mal
Users that are interested in bandit4mal are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Artifact accompanying our ICSE '22 paper "Practical Automated Detection of Malicious npm Packages"☆47Jan 25, 2022Updated 4 years ago
- A reimplementation of LastPyMile: A Python-based library to Identify the differences between build artifacts of PyPI packages and the res…☆15Jan 8, 2022Updated 4 years ago
- Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages☆140Oct 5, 2022Updated 3 years ago
- A Python package that demontrates arbitrary code execution during the install process of a Python package.☆11Sep 28, 2014Updated 11 years ago
- This repository complements our paper by offering the training dataset, the best-performing models utilized in our real-world experiment,…☆22Mar 7, 2025Updated last year
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Collection of tools for analyzing open source packages.☆361May 1, 2026Updated 3 weeks ago
- ☆13Jun 26, 2023Updated 2 years ago
- Yara rules written by me, for free use.☆20Nov 26, 2021Updated 4 years ago
- A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…☆81May 12, 2026Updated last week
- Cybersecurity Ontology (CyberOnto) and Situational Awareness (CyberSA) help teamwork in Cyber Incident Responses, Control, Containment, a…☆10Sep 15, 2022Updated 3 years ago
- A Python wrapper library for libyara and a local server for fully utilizing the CPUs of the system to scan with yara...with additional ca…☆19Dec 8, 2022Updated 3 years ago
- Run Sigma detection rules on logs from the new MacOS EndpointSecurity Framework☆22Jan 22, 2021Updated 5 years ago
- GuardDog is a CLI tool to Identify malicious PyPI and npm packages☆1,088Updated this week
- Python source code auditing and static analysis on a large scale☆496Oct 3, 2023Updated 2 years ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- Mininode is a CLI tool to reduce the attack surface of the Node.js applications by using static analysis.☆21Apr 11, 2023Updated 3 years ago
- The official repository of ICSME'23 paper "Exploring Security Commits in Python"☆18Jul 12, 2023Updated 2 years ago
- DeVAIC (Detection of Vulnerabilities in AI-generated Code) is a static code analyzer for security issues in Python code snippets. It dete…☆19Oct 24, 2025Updated 6 months ago
- Simple unpacking script for Ezuri ELF Crypter☆36Jul 28, 2021Updated 4 years ago
- VulExplainer: A Transformer-based Hierarchical Distillation for Explaining Vulnerability Types☆19Nov 24, 2023Updated 2 years ago
- Java RAT called STRRat - Source code & Deobfuscator☆12Aug 12, 2022Updated 3 years ago
- Modular static malicious JavaScript detection system☆75Jan 18, 2021Updated 5 years ago
- LSM BPF module to block pwnkit (CVE-2021-4034) like exploits☆21Feb 17, 2022Updated 4 years ago
- 🔍 一个跨平台的hap查看器,方便开发者在电脑上预览hap的信息,并提供一键安装到设备等功能☆24Jun 29, 2024Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Nice (ish) bindings for the EndpointSecurity framework on macOS for Rust.☆21Dec 14, 2023Updated 2 years ago
- This repository is to support contributions for tools and new data entries for the D2A dataset hosted in DAX☆75May 27, 2022Updated 3 years ago
- swagger api文档 可以用同一个model根据group在不同api里展示不同字段和描述☆13Dec 19, 2021Updated 4 years ago
- ☆11Oct 17, 2024Updated last year
- Eddie Vetter - triage macOS applications for security research☆16May 24, 2021Updated 4 years ago
- naisdevice is a application suite that enables NAV developers to connect to internal resources in a secure and friendly manner.☆17May 13, 2026Updated last week
- ☆30Nov 29, 2021Updated 4 years ago
- Supplement of the ICFP'22 paper "‘do’ Unchained: Embracing Local Imperativity in a Purely Functional Language"☆16Feb 15, 2025Updated last year
- Various eBPF programs for tracing network connections☆32Oct 26, 2021Updated 4 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- yara detection rules for hunting with the threathunting-keywords project☆162May 11, 2025Updated last year
- Source code for the experimental, compact "wee" file compression utility.☆13May 8, 2020Updated 6 years ago
- A protocol based monad implementation for clojure☆61Aug 11, 2014Updated 11 years ago
- Feed parsing for language package manager updates☆85Dec 4, 2024Updated last year
- TensorFlow API analysis tool and malicious model detection tool☆40May 27, 2025Updated 11 months ago
- A portable C/C++ preprocessor☆26Feb 4, 2014Updated 12 years ago
- okl4 git for porting to realview_eb RTSM platform☆15Oct 17, 2012Updated 13 years ago