| | --- |
| | license: mit |
| | --- |
| | <div align="center"> |
| |
|
| | # malwi - AI Python Malware Scanner |
| | <img src="malwi-logo.png" alt="Logo"> |
| |
|
| | <a href='https://huggingface.co/schirrmacher/malwi'><img src='https://img.shields.io/badge/%F0%9F%A4%97%20HF-Model-blue'></a> |
| |
|
| | </div> |
| |
|
| | ## Key Features |
| |
|
| | - π‘οΈ **AI-Powered Python Malware Detection** |
| |
|
| | - β‘ **Lightning-Fast Codebase Scanning** |
| |
|
| | - π **100% Offline & Private** |
| |
|
| | - π° **Free & Open-Source** |
| |
|
| | - πͺπΊ **Developed in the EU** |
| |
|
| | ### 1) Install |
| | ``` |
| | pip install --user malwi |
| | ``` |
| |
|
| | ### 2) Run |
| | ```bash |
| | malwi scan examples/malicious |
| | ``` |
| |
|
| | ### 3) Evaluate: a [recent zero-day](https://socket.dev/blog/malicious-pypi-package-targets-discord-developers-with-RAT) detected with high confidence |
| | ``` |
| | __ __ |
| | .--------.---.-| .--.--.--|__| |
| | | | _ | | | | | | |
| | |__|__|__|___._|__|________|__| |
| | AI Python Malware Scanner |
| | |
| | |
| | - target: examples |
| | - seconds: 1.87 |
| | - files: 14 |
| | βββ scanned: 4 (.py) |
| | βββ skipped: 10 (.cfg, .md, .toml, .txt) |
| | βββ suspicious: |
| | βββ examples/malicious/discordpydebug-0.0.4/setup.py |
| | β βββ <module> |
| | β βββ archive compression |
| | β βββ package installation execution |
| | βββ examples/malicious/discordpydebug-0.0.4/src/discordpydebug/__init__.py |
| | βββ <module> |
| | β βββ process management |
| | β βββ deserialization |
| | β βββ system interaction |
| | β βββ user io |
| | βββ run |
| | β βββ fs linking |
| | βββ debug |
| | β βββ fs linking |
| | β βββ archive compression |
| | βββ runcommand |
| | βββ process management |
| | |
| | => πΉ malicious 0.98 |
| | ``` |
| |
|
