Hugging Face's logo

p0her
/
keras-lambda-evasion-poc

Keras
Model card Files
xet
Community

You need to agree to share your contact information to access this model

This repository is publicly accessible, but you have to accept the conditions to access its files and content.

Log in or Sign Up to review the conditions and access this model content.

YAML Metadata Warning: empty or missing yaml metadata in repo card (https://huggingface.co/docs/hub/model-cards#model-card-metadata)

Keras Lambda Scanner Evasion PoC

WARNING: This repository contains proof-of-concept model files for security research purposes only. Do NOT load these files in production environments.

Purpose

Demonstrates that a malicious Lambda layer hidden inside a nested Sequential model bypasses ModelScan's KerasLambdaDetectScan.

Files

File Description Scanner Result Malicious?
safe_model.keras Normal Dense model No issues (correct) No
malicious_flat.keras Lambda at top level Detected (correct) Yes
malicious_nested.keras Lambda inside nested Sequential No issues (FALSE NEGATIVE) Yes

Payload

All malicious files use harmless PoC: os.system('echo KERAS_SCANNER_EVASION_POC')

Disclosure

Responsible disclosure PoC for huntr.com MFV program.

Downloads last month
34
Inference Providers NEW
This model isn't deployed by any Inference Provider. 🙋 Ask for provider support