|
|
--- |
|
|
license: mit |
|
|
--- |
|
|
<div align="center"> |
|
|
|
|
|
# malwi - AI Python Malware Scanner |
|
|
<img src="malwi-logo.png" alt="Logo"> |
|
|
|
|
|
<a href='https://huggingface.co/schirrmacher/malwi'><img src='https://img.shields.io/badge/%F0%9F%A4%97%20HF-Model-blue'></a> |
|
|
|
|
|
</div> |
|
|
|
|
|
## Key Features |
|
|
|
|
|
- π‘οΈ **AI-Powered Python Malware Detection** |
|
|
|
|
|
- β‘ **Lightning-Fast Codebase Scanning** |
|
|
|
|
|
- π **100% Offline & Private** |
|
|
|
|
|
- π° **Free & Open-Source** |
|
|
|
|
|
- πͺπΊ **Developed in the EU** |
|
|
|
|
|
### 1) Install |
|
|
``` |
|
|
pip install --user malwi |
|
|
``` |
|
|
|
|
|
### 2) Run |
|
|
```bash |
|
|
malwi scan examples/malicious |
|
|
``` |
|
|
|
|
|
### 3) Evaluate: a [recent zero-day](https://socket.dev/blog/malicious-pypi-package-targets-discord-developers-with-RAT) detected with high confidence |
|
|
``` |
|
|
__ __ |
|
|
.--------.---.-| .--.--.--|__| |
|
|
| | _ | | | | | | |
|
|
|__|__|__|___._|__|________|__| |
|
|
AI Python Malware Scanner |
|
|
|
|
|
|
|
|
- target: examples |
|
|
- seconds: 1.87 |
|
|
- files: 14 |
|
|
βββ scanned: 4 (.py) |
|
|
βββ skipped: 10 (.cfg, .md, .toml, .txt) |
|
|
βββ suspicious: |
|
|
βββ examples/malicious/discordpydebug-0.0.4/setup.py |
|
|
β βββ <module> |
|
|
β βββ archive compression |
|
|
β βββ package installation execution |
|
|
βββ examples/malicious/discordpydebug-0.0.4/src/discordpydebug/__init__.py |
|
|
βββ <module> |
|
|
β βββ process management |
|
|
β βββ deserialization |
|
|
β βββ system interaction |
|
|
β βββ user io |
|
|
βββ run |
|
|
β βββ fs linking |
|
|
βββ debug |
|
|
β βββ fs linking |
|
|
β βββ archive compression |
|
|
βββ runcommand |
|
|
βββ process management |
|
|
|
|
|
=> πΉ malicious 0.98 |
|
|
``` |
|
|
|
