Lucene search
K

54 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2025/12/27 8:56 a.m.8 views

Malicious code in crypo (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 3a0850548e71807fb514fcd1943f55f7c3bd6408086ff7a495d7df628a083db9 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

7.3AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/12/18 7:50 p.m.8 views

Malicious code in f5-logger (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 dc7c52cb0573811c8391ab93a1a04c99826ebc3fffb98aa82cfe8deb4e58fc1d Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

7.3AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/12/08 11:54 p.m.6 views

Malicious code in helloharry123p (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 6e199ebf30ba4e39d4e6bd9fc4d31ffa9f0a7687e21f67e2e6e8c01e3f24717a Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

7.3AI score
Exploits0References1
OSV
OSV
added 2025/12/04 12:39 p.m.8 views

MAL-2025-192302 Malicious code in coremsft (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 c8eaed1685f9346b5e86fd47bb3359843533e558e34995d405dd903df8e23c4e Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

7.2AI score
Exploits0References1
OSV
OSV
added 2025/11/24 1:19 p.m.6 views

MAL-2025-191722 Malicious code in evil-py-argo-shell (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 1739dfc040a7678b086f2ca5bab22249fcea3774fbf83c70a40b6427d6a847ee Package demonstrate potentially malicious execution of system commands, and seems to be used for pentesting purposes --- Category: PROBABLYPENTEST - Packages...

7.5AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/10/19 4:32 p.m.9 views

Malicious code in hamubika (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 c55b19e3a5ae01340f8c4aa8a68372eda1a6d5646f63a26658a1df75b4a2cf0c Packages that either reports home installation, simulate malicious activity or imitate Roblox API wrapper. --- Category: PROBABLYPENTEST - Packages looking lik...

7.5AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/13 9:48 p.m.4 views

Malicious code in pokemon-app-sdk (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 f6c79d8e736c89d71abb3438a63c2b22868d2a31b61125c1f641c53fb0da2909 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

7.3AI score
Exploits0References1
OSV
OSV
added 2025/07/13 5:51 p.m.10 views

MAL-2025-191807 Malicious code in package-346234294 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 c9741d027897445cdd34a40de0f592a42641170b88a9cbab6cee3dbaaeeedb39 Packages that might be part of testing for pentesting / malicious activity / joy, with suspicious activity that does not present any real harm. --- Category:...

7.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/12/24 5:49 p.m.4 views

Malicious code in handyfiles (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 381cd796d4e5fce8fb62c337374b5303e0b2466d67467efc95cbc4d7d8248dd4 During the installation, the package iterates its files and attempts to import a hidden module - which is embedded as ZIP archive in the image file --- Categor...

7.5AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/08/23 10:55 p.m.7 views

Malicious code in easyioctl (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 17bb7b2d6ca02c6c077bc420bf4b9136e424f53cf276f61529b19806e5bb5bca Packages that might be part of testing for pentesting / malicious activity / joy, with suspicious activity that does not present any real harm. --- Category:...

7.5AI score
Exploits0References1
OSV
OSV
added 2024/08/10 11:5 p.m.4 views

MAL-2024-12198 Malicious code in artifact-lab-3-package-34b21b63 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 a814378a8188b464c5289007203c2b20c3ec2a0383ee18bd96e0f41ad44d7982 Packages showing simple variants of revshell with targets to ngrok. Most probably experiments. Later versions moved to use Burp Collaborator to exfiltrate simp...

7.5AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/08/05 10:25 p.m.5 views

Malicious code in advdef01 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 44ffce32113cbe3c908fd584f4b02617cafcfecccc3cea1c4fc068021c4bfa7d Package uses the template from https://github.com/thegoodhackertv/malpip to explore building malicious PyPI packages. --- Category: MALICIOUS - The campaign ha...

7.5AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/07/26 4:53 p.m.6 views

Malicious code in dependency-confusion-test-666 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 d4daea3fdf20972a88b9946b1251807b3caca0e1634dd53c2be92cf3d1849cd8 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

7.3AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/07/26 4:53 p.m.4 views

Malicious code in szn-zbozi-ab-testing-fulltext (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 7df3ea38b323257215fac35c84d508a123246b91b32f77e46c1e9f0c03a74503 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

7.3AI score
Exploits0References1
Rows per page
Query Builder