🐍 🔍 GuardDog is a CLI tool to Identify malicious PyPI and npm packages

An open-source dataset of malicious software packages found in the wild, 100% vetted by humans.

This open-source project tracks RED-LILI's activity over time as there are evidence the actor is still active. All information provided here is intended for research purposes.

Project Aura: Security auditing and code introspection

a tui tool for opening projects in a restricted sandbox to prevent supply chain attacks such as typosquatting

Hackers attacks intercepted