Alternatives and similar repositories for pypi_malware

Users that are interested in pypi_malware are comparing it to the libraries listed below

• IQTLabs / pypi-scan
  Scan pypi for typosquatting
  ☆36Updated 2 years ago
• lyvd / bandit4mal
  A fork of Bandit tool with patterns to identifying malicious python code.
  ☆26Updated 2 years ago
• lxyeternal / pypi_malregistry
  The repository has collected about 10,000 malicious pypi packages. This dataset is the work of the ASE 2023 paper "An Empirical Study of…
  ☆90Updated 3 weeks ago
• cve-search / CveXplore
  CveXplore
  ☆40Updated 2 months ago
• AvalZ / WAF-A-MoLE
  A guided mutation-based fuzzer for ML-based Web Application Firewalls
  ☆186Updated last year
• Aurore54F / JStap
  Modular static malicious JavaScript detection system
  ☆70Updated 4 years ago
• hannob / pypi-bad
  Bad packages from the pypi repository
  ☆9Updated 6 years ago
• SAP / risk-explorer-for-software-supply-chains
  A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…
  ☆75Updated last month
• TQRG / secbench
  🪐 A Database of Existing Security Vulnerabilities Patches to Enable Evaluation of Techniques (single-commit; multi-language)
  ☆40Updated last month
• Aurore54F / JaSt
  Syntactic detection of malicious (obfuscated) JavaScript files
  ☆82Updated 5 years ago
• tree-wizard / fuzz-forest
  ☆26Updated last year
• srcclr / efda
  Evaluation Framework for Dependency Analysis (EFDA)
  ☆43Updated 3 years ago
• 0xSobky / Regaxor
  A regular expression fuzzer.
  ☆43Updated 7 years ago
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆144Updated last year
• DataDog / malicious-software-packages-dataset
  An open-source dataset of malicious software packages found in the wild, 100% vetted by humans.
  ☆206Updated this week
• nilp0inter / cpe
  CPE: Common Platform Enumeration for Python
  ☆96Updated 8 months ago
• AvalZ / RevOK
  An HTTP Response fuzzer to find Vulnerabilities in Security Scanners
  ☆26Updated 11 months ago
• stacscan / stacs
  Static Token And Credential Scanner
  ☆96Updated 2 years ago
• osssanitizer / maloss
  Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages
  ☆133Updated 2 years ago
• Phat3 / CVE-analyzer
  Extract useful semantic from CVE descriptions usinig NLP
  ☆25Updated 2 years ago
• cve-search / PyCVESearch
  Python wrapper for the API of cve-search
  ☆122Updated last year
• vuduclyunitn / software_supply_chain_papers
  This repository contains a list of papers about software supply chain
  ☆29Updated last year
• Teebytes / TnT-Fuzzer
  OpenAPI 2.0 (Swagger) fuzzer written in python. Basically TnT for your API.
  ☆111Updated 2 years ago
• NUS-Curiosity / VulZoo
  VulZoo: A Comprehensive Vulnerability Intelligence Dataset (ASE 2024 Demo)
  ☆48Updated 2 months ago
• CGCL-codes / SCVDT
  Source Code Vulnerability Detection Tools（SCVDT）provides a vulnerable code database, vulnerability detection service for Java and C/C++ p…
  ☆117Updated 3 years ago
• olbat / nvdcve
  NVD/CVE as JSON files
  ☆118Updated this week
• ConstantinT / jAEk
  This is the repository for JÄk. I created it as prototype during my masterthesis.
  ☆30Updated 7 years ago
• pypa / advisory-database
  Advisory database for Python packages published on pypi.org
  ☆288Updated this week
• SAP / project-kb
  Home page of project "KB"
  ☆126Updated 2 months ago
• githubnext / amalfi-artifact
  Artifact accompanying our ICSE '22 paper "Practical Automated Detection of Malicious npm Packages"
  ☆44Updated 3 years ago