Novel ELF64 Remote Access Tool Embedded in Malicious PyPI Uploads
Analyzing a Linux-targeted malware campaign on the Python Package Index.
Research
Threat analysis, malware writeups, and package ecosystem intelligence from Vipyr Security.
Application Security
The Dependency Dilemma
Examining the cascading effect of software supply chain compromises and their mitigation strategies.
Aug 3, 20237 min read
Documentation
Dragonfly Client Internals
Discussing the internals of our client compute node in the Dragonfly framework.
Jul 22, 20236 min read
Topics
Research areas
Browse the archive by the kind of work Vipyr publishes, from campaign tracking to package malware reverse engineering.
Threat Intelligence
Campaign tracking, ecosystem abuse patterns, and malicious package activity.
Application Security
Dependency risk, resolver behavior, and application-layer package security issues.
Documentation
Operational notes, internals, and reference material for Vipyr systems and workflows.
Malware Analysis
Reverse engineering, payload behavior, and package-level malware tradecraft.
Archive
Recent analysis and field notes
Longer investigations, ecosystem observations, and malware analysis published from Vipyr’s package response work.
Nuisance Malware
Discussing a persistent threat actor group utilizing automated malware pipelines to productionize malware uploads.
A Gap in the Armor
Exploiting third party dependancies to bypass PyArmor obfuscation.