Microsoft

From package to postinstall payload: Inside the Mastra npm supply chain compromise

A poisoned npm package infected 140+ projects with a hidden payload. This report highlights how to detect, hunt, and defend ...
The Hacker News

Fake OpenAI Privacy Filter Repo Hits #1 on Hugging Face, Draws 244K Downloads

A malicious Hugging Face repository managed to take a spot in the platform's trending list by impersonating OpenAI's Privacy Filter open-weight model to deliver a ...
The Hacker News

North Korean Hackers Publish 26 npm Packages Hiding Pastebin C2 for Cross-Platform RAT

Cybersecurity researchers have disclosed a new iteration of the ongoing Contagious Interview campaign, where the North Korean threat actors have published a set of 26 malicious packages to the npm ...
Concordia University

Decode Python to fuel your research (GradProSkills workshop)

Are you curious about coding, have a project in mind and don’t know where to start or think developing fundamental knowledge about programming can be helpful? In this workshop, we will use Python, a ...
GitHub

Usage examples

Commix offers comprehensive support for command injection exploitation across a wide range of backend technologies and web application environments. Its flexible payload generation and injection ...
GitHub

Teradata SQL Driver for Python

This package enables Python applications to connect to the Teradata Database. This package implements the PEP-249 Python Database API Specification 2.0. This package requires 64-bit Python 3.7 or ...