- Популярные видео
- Авто
- Видео-блоги
- ДТП, аварии
- Для маленьких
- Еда, напитки
- Животные
- Закон и право
- Знаменитости
- Игры
- Искусство
- Комедии
- Красота, мода
- Кулинария, рецепты
- Люди
- Мото
- Музыка
- Мультфильмы
- Наука, технологии
- Новости
- Образование
- Политика
- Праздники
- Приколы
- Природа
- Происшествия
- Путешествия
- Развлечения
- Ржач
- Семья
- Сериалы
- Спорт
- Стиль жизни
- ТВ передачи
- Танцы
- Технологии
- Товары
- Ужасы
- Фильмы
- Шоу-бизнес
- Юмор
Agentic Analysis of #malicious #npm Package using #claude #sonnet and SafeDep Malysis MCP Server
Today we found slf4j-api-js and concurrent-hashmap malicious npm packages impersonating the popular Java logging framework SLF4J and ConcurrentHashMap respectively. While the payload appears to be unsophisticated, it is still an improvement over what we have seen in the past. Particularly, the payload does the following:
Spawns a child process from npm post-install script
Stays resident after installation
Collects system information and sends it to the C2 server
Видео Agentic Analysis of #malicious #npm Package using #claude #sonnet and SafeDep Malysis MCP Server канала SafeDep
Spawns a child process from npm post-install script
Stays resident after installation
Collects system information and sends it to the C2 server
Видео Agentic Analysis of #malicious #npm Package using #claude #sonnet and SafeDep Malysis MCP Server канала SafeDep
Комментарии отсутствуют
Информация о видео
21 апреля 2025 г. 20:31:45
00:02:25
Другие видео канала
Policy Driven vetting of OSS Dependencies - BlackHat Asia 2024
Introducing Endpoint Protection for Developer Security
Vet for Policy Driven Software Composition Analysis in GitLab CE (Free)
Your Code Just Got a Bodyguard – Meet SafeDep
Endpoint Hub Tour: Track endpoints & drill into Package Guard events
#buildinpublic SafeDep Control Tower SQL Query
Container scanning using vet: Catch Vulnerabilities & Malware!
Protecting AI Agents from Malicious Packages with SafeDep MCP
vet Cloud Quickstart
Package Manager Guard (PMG) Demo
Malicious Package Analysis using Claude Desktop & SafeDep
Proactive Guardrails against Malicious Code from Open Sources
SafeDep GitHub App Installation and Usage Demo
SafeDep vet MCP Server with Claude Code
SafeDep vet Integration with Gitlab as CI Component
Package Manager Guard - Malicious Package Protection for npm & npx
One npm package. Full machine compromise.
Getting Started with vet: Scanning Directory
Your AI Coding Agent Is a Black Box (Here's Why That's a Problem)
March 2026: The Month Open Source Got Hit Hard (axios, litellm, telnyx)
