Architectural Vulnerabilities: Dangerous System Calls in ML Code
A deep technical breakdown of Command Injection vulnerabilities in Machine Learning pipelines via os.system and subprocess, and how to statically analyze inference scripts.
3 docs tagged with "python-security"
View all tagsReverse Shell Detection: Exposing Persistence in ML Artifacts
A deep technical breakdown of how attackers establish persistence via Python Reverse Shells, bypassing NAT and firewalls, and how to detect them via static AST analysis.
Typosquatting in Python: The Architecture of Supply Chain Compromise
A deep architectural breakdown of how Typosquatting exploits the pip installation lifecycle, utilizing setup.py for zero-click Remote Code Execution (RCE) during dependency resolution.