GuardDog Logo

GuardDog

0
Free
Updated 11 March 2025
Malware Analysis
Appsec
Binary Security
Package Security
Security Scanning
Visit Website

GuardDog is a CLI tool that allows to identify malicious PyPI and npm packages. It runs a set of heuristics on the package source code (through Semgrep rules) and on the package metadata. GuardDog can be used to scan local or remote PyPI and npm packages using any of the available heuristics. Getting started: Installation: - pip install guarddog - Or use the Docker image: docker pull ghcr.io/datadog/guarddog - alias guarddog='docker run --rm ghcr.io/datadog/guarddog' Note: On Windows, the only supported installation method is Docker. Sample usage: - Scan the most recent version of the 'requests' package: guarddog pypi scan requests - Scan a specific version of the 'requests' package: guarddog pypi scan requests --version 2.28.1 - Scan the 'request' package using 2 specific heuristics: guarddog pypi scan requests --rules exec-base64 --rules code-execution - Scan the 'requests' package using all rules but one: guarddog pypi scan requests --exclude-rules exec-base64 - Scan a local package: guarddog pypi scan /tmp/triage.tar.gz - Scan a local directory, the packages need to be located in the root directory For instance you have several pypi packages in ./samples/ like: ./samples/package

FEATURES

EXPLORE BY TAGS

Appsec

Binary Security

Package Security

Security Scanning

SIMILAR TOOLS

Rusty Hog Logo
Rusty Hog

A suite of secret scanners built in Rust for performance.

Free
Malware Analysis
Intezer Logo
Intezer

Intezer is a cloud-based malware analysis platform that detects and classifies malware using genetic code analysis.

Free
Malware Analysis
Dorothy2 Logo
Dorothy2

A malware/botnet analysis framework with a focus on network analysis and process comparison.

Free
Malware Analysis
Dalfox Logo
Dalfox

Dalfox is a powerful open-source XSS scanner and utility focused on automation.

Free
Malware Analysis
PyaraScanner Logo
PyaraScanner

A multithreaded YARA scanner for incident response or malware zoos.

Free
Malware Analysis
AndBug Logo
AndBug

A Scriptable Android Debugger for reverse engineers and developers.

Free
Malware Analysis
TeamTNT Targeting AWS, Alibaba Logo
TeamTNT Targeting AWS, Alibaba

TeamTNT is modifying its malicious shell scripts after they were made public by security researchers.

Free
Malware Analysis
Binary Ninja Logo
Binary Ninja

Binary Ninja is an interactive decompiler, disassembler, debugger, and binary analysis platform with a focus on automation and a clean GUI.

Free
Malware Analysis
Andromeda Logo
Andromeda

Andromeda makes reverse engineering of Android applications faster and easier.

Free
Malware Analysis

PINNED

Mandos Logo

Mandos

Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.

Consulting
Checkmarx SCA Logo

Checkmarx SCA

A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Application Security
Orca Security Logo

Orca Security

A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

Cloud Security
DryRun Logo

DryRun

A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Application Security
CyberSecTools logoCyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Operated by:

Mandos Cyber • KVK: 97994448

Netherlands • contact@mandos.io

Copyright © 2025 - All rights reserved

LINKS
BlogContact
LEGAL
Terms of servicesPrivacy policy