Alternatives and similar repositories for pypi_malware:

Users that are interested in pypi_malware are comparing it to the libraries listed below

• IQTLabs / pypi-scan
  Scan pypi for typosquatting
  ☆38Updated 2 years ago
• lxyeternal / pypi_malregistry
  The repository has collected about 10,000 malicious pypi packages. This dataset is the work of the ASE 2023 paper "An Empirical Study of…
  ☆85Updated last week
• AvalZ / RevOK
  An HTTP Response fuzzer to find Vulnerabilities in Security Scanners
  ☆26Updated 9 months ago
• hannob / pypi-bad
  Bad packages from the pypi repository
  ☆9Updated 6 years ago
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆142Updated last year
• DataDog / malicious-software-packages-dataset
  An open-source dataset of malicious software packages found in the wild, 100% vetted by humans.
  ☆193Updated this week
• cve-search / CveXplore
  CveXplore
  ☆38Updated 2 weeks ago
• fuzzitdev / pythonfuzz
  coverage guided fuzz testing for python
  ☆226Updated 4 years ago
• lyvd / bandit4mal
  A fork of Bandit tool with patterns to identifying malicious python code.
  ☆25Updated 2 years ago
• stacscan / stacs
  Static Token And Credential Scanner
  ☆96Updated last year
• olbat / nvdcve
  NVD/CVE as JSON files
  ☆114Updated this week
• RedHatProductSecurity / cvss
  CVSS2/3/4 library with interactive calculator for Python 2 and Python 3
  ☆95Updated last week
• SAP / risk-explorer-for-software-supply-chains
  A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…
  ☆75Updated 3 weeks ago
• tree-wizard / fuzz-forest
  ☆26Updated last year
• osssanitizer / maloss
  Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages
  ☆130Updated 2 years ago
• Aurore54F / JaSt
  Syntactic detection of malicious (obfuscated) JavaScript files
  ☆81Updated 5 years ago
• AppThreat / vulnerability-db
  Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.1, purl, and vers…
  ☆114Updated last month
• AMOSSYS / Fragscapy
  Fragscapy is a command-line tool to fuzz network protocols by automating the modification of outgoing network packets. It can run multipl…
  ☆73Updated 3 years ago
• Aurore54F / JStap
  Modular static malicious JavaScript detection system
  ☆69Updated 4 years ago
• securisec / glorifiedgrep
  Static code search python lib
  ☆18Updated 4 years ago
• cve-search / PyCVESearch
  Python wrapper for the API of cve-search
  ☆120Updated last year
• Teebytes / TnT-Fuzzer
  OpenAPI 2.0 (Swagger) fuzzer written in python. Basically TnT for your API.
  ☆111Updated 2 years ago
• iosifache / semgrep-rules-manager
  Manager of third-party sources of Semgrep rules 🗂
  ☆81Updated 8 months ago
• testable-eu / sast-testability-patterns
  Testability Pattern Catalogs for SAST
  ☆30Updated last month
• TQRG / secbench
  🪐 A Database of Existing Security Vulnerabilities Patches to Enable Evaluation of Techniques (single-commit; multi-language)
  ☆38Updated 2 years ago
• joernio / query-database
  Default query sets for Joern
  ☆27Updated 3 years ago
• mrash / afl-cve
  A collection of vulnerabilities discovered by the AFL fuzzer (afl-fuzz)
  ☆92Updated 7 years ago
• s3c2 / vfcfinder
  VFCFinder: Searching for the Missing Vulnerability Fixing Commits
  ☆27Updated last year
• Phat3 / CVE-analyzer
  Extract useful semantic from CVE descriptions usinig NLP
  ☆25Updated 2 years ago
• Checkmarx / red-lili
  This open-source project tracks RED-LILI's activity over time as there are evidence the actor is still active. All information provided h…
  ☆11Updated last year