{"id":13760699,"url":"https://github.com/jordan-wright/ossmalware","last_synced_at":"2025-03-17T04:33:28.542Z","repository":{"id":56032603,"uuid":"303260869","full_name":"jordan-wright/ossmalware","owner":"jordan-wright","description":null,"archived":false,"fork":false,"pushed_at":"2022-08-30T16:30:13.000Z","size":70,"stargazers_count":93,"open_issues_count":8,"forks_count":5,"subscribers_count":8,"default_branch":"main","last_synced_at":"2025-02-27T18:06:55.610Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/jordan-wright.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2020-10-12T02:50:04.000Z","updated_at":"2024-06-23T16:02:25.000Z","dependencies_parsed_at":"2022-08-15T11:50:30.812Z","dependency_job_id":null,"html_url":"https://github.com/jordan-wright/ossmalware","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jordan-wright%2Fossmalware","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jordan-wright%2Fossmalware/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jordan-wright%2Fossmalware/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jordan-wright%2Fossmalware/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/jordan-wright","download_url":"https://codeload.github.com/jordan-wright/ossmalware/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":243842135,"owners_count":20356610,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-08-03T13:01:17.623Z","updated_at":"2025-03-17T04:33:28.220Z","avatar_url":"https://github.com/jordan-wright.png","language":"Go","funding_links":[],"categories":["Go"],"sub_categories":[],"readme":"# ossmalware\n\nAttempts to use dynamic analysis to find malware hosted on package managers.\n\n## Current Status\n\nThis is currently a personal project, so getting setup isn't streamlined. I'll be working to improve this shortly.\n\n## Getting Started\n\nThe first thing you'll need to do is to change up the variables in the `terraform/` directory to point to an S3 bucket and SQS queue you control.\n\nThen, you'll need to create an EC2 instance with permission to write to S3 and read from SQS.\n\nWhen you're SSH'd into that EC2 instance, run the `scripts/setup.sh` script in this repository to bootstrap the host. This downloads the various Docker images and tooling (like sysdig and tcpdump) that you'll need during analysis.\n\nThen, you can adjust the environment variables in the `scripts/start.sh` script in this repository, then run it to start listening for packages on the SQS queue.\n\nAt this point, you can upload packages to SQS and the worker(s) will start processing them.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjordan-wright%2Fossmalware","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fjordan-wright%2Fossmalware","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjordan-wright%2Fossmalware/lists"}