etwithin
/

torchscript-scanner-bypass-poc

Model card Files Files and versions

torchscript-scanner-bypass-poc / README.md

etwithin's picture

Upload README.md with huggingface_hub

a2ad8f9 verified 23 days ago

|

history blame contribute delete

215 Bytes

TorchScript v1.4 Scanner Bypass PoC

Malicious .pt file with marshal+FunctionType+importlib chain. Bypasses picklescan 1.0.4 and modelscan 0.8.8.

import torch
torch.jit.load('malicious_model.pt')