🔍
CSAPP
  • 🔍CSAPP
  • Overview
    • 💡Why??
    • ✨Features
      • ⛏️pypi_data_harvest.py
      • 🗃️pypi_package_validator.py
      • 🎯audit_pypi_info_db.py
  • Fundamentals
    • 🛠️Getting set up
  • Web App Walkthrough
    • 🏠Homepage
    • 🧐Explore Page
  • Threat Hunting
    • 📔PyPI's Terms of Use
    • ❔Useful SQL Queries
    • 🕵️‍♂️Analyzing A Python Package
    • 👾Malicious Package Techniques
    • 🎯Hunting Tips
Powered by GitBook
On this page

Last updated 1 year ago

That's it.

Threat actors uploading malware on PyPI often utilize typo squatting or name squatting to trick users into installing their malicious package. CSAPP aims to prevent this through early detection of said packages.

The is a great example of name squatting and you can find plenty of articles for malicious packages typo squatting on names of popular packages.

If you want to learn more about my process for creating this tool, then please read my .

2022 December Pytorch incident
blog post
PreviousCSAPPNextFeatures
  1. Overview

💡Why??

To empower anyone to start threat hunting for malicious packages on PyPI