Compiled Python Files
Learn how compiled Python modules can be included in packages to obfuscate intent and deliver a malicious payload.
Charles Coggins
Senior Software Engineer, responsible for integrations and author of the "phylum" Python package. Documentation and quality champion, runner, baseball and scout dad, pod-faster, and lover of outdoors.
Python Executable Hooks
Python customization modules in user or global site-packages directories can carry malicious code that runs every time the Python interpreter does.
Adding Spurious Wheels to PyPI
Learn how easy it is for threat actors to hide their malware in Python wheel artifacts hosted on the PyPI registry.
Modern Python Build Hooks
Arbitrary code execution is possible with build hooks offered by modern Python package installers when building modern PEP-518 pyproject.toml projects.
Devious Python Build Requirements
Build requirements in Python source distributions allow attackers to execute arbitrary code in an isolated build environment that is automatically deleted after use.