PROBABLY_PENTEST (1) campaign cataloged at 2024-11-06(2).

1. Packages looking like typical pentest packages, but also anything that looks like testing, exploring pre-prepared kits, research & co, with clearly low-harm possibilities.
2. This is just the date of creating the catalog entry. It may not reflect the date of creation of the campaign itself.

2024-11-byted-dast

A campaign of probably pentest packages flooding PYPI. Installing the package or importing the module triggers reporting basic info like hostname, path and the username to the package author. There is no other purpose of the package.

Abuse categories

basic_exfiltration

The package contains code to exfiltrate basic data from the system, like IP or username. It has a limited risk.

dependency-confusion

Campaign uses dependency-confusion.

typosquatting

Campaign uses typosquatting.

IoCs & related URLs

URLs with payloads, characteristic domains, C&C IPs, repositories with malicious code, etc.

• byted-dast.com

Packages in the campaign

campaign:2024-11-byted-dast

• adanbu
• adandu
• adandv
• affinequant
• aslmutetion
• asmutation
• babetmf
• baibitmf
• batchran
• bebitmf
• byte-flux-3822a6dd00d6414daba3ae0de3930a5a
• bytebs
• byted-flex
• byted-flux
• bytedplus
• bytedplus-rec
• bytedps
• bytedsp
• byteff
• bytekafka
• bytekafka-0-0-15
• bytekafka-0-15
• bytekafka0-0-15
• bytemlperf
• bytep
• bytepilot
• bytepilot-0-0-15
• bytepps
• byteqs
• bytesap
• byteseep
• bytesip
• bytesp
• cascadev
• compresai
• compressa
• compressi
• control4d-multiview
• controlnot-aux
• cryostar
• dbt-bytedhouse
• dbt-byteshouse
• ddim
• deadiff
• decompopt
• deepsolid
• detecron2
• detectren
• detectron4
• distpro
• dreamfusion
• dtb-bytehouse
• e3po
• easydicts
• emumonitor
• fadlearner
• fairseqn
• fairsequence
• fantasia3d
• fc-clip
• feature-preserve-portrait-editing
• fedddecorr
• feddecor
• feddecorr
• fedlearnerr
• fedlearnre
• ferminet-with-ecp
• giantmidi-piano
• gr-mg
• gym-reschdule-combination
• habitmf
• hllm
• huggingface-hubs
• huggingfaces-hub
• hybrid-sd
• ic-flow-platform
• ic-flows-platform
• image-dream
• imagedream
• imagedreamfusion
• imageoi
• importlib-resource
• importlibs-resource
• importlibs-resources
• instructnerf2nerf
• irasim
• jaqmc
• kera-preprocess
• kera-preprocessing
• keras-preprocess
• laghtseq
• lanm-neo
• lapnet
• largebatchctr
• larger-batch-ctr
• latentnerf
• libbmet
• licensemonitor
• lightseeq
• lightseqe
• lightsequ
• lightsuq
• macaqua
• machaque
• macque
• magic3d
• mega-sparks
• megai
• midi-melady-extraction
• midi-melody-extraction
• midi-melody-extractions
• mnolith
• monlith
• monoliht
• monolit
• mqbench
• mtvqa
• music-source-separation
• mvdream
• mvdream-threestudio
• nerst
• netobs
• neursts
• next-vit
• nuerst
• nuest
• nurset
• nurst
• oclip
• oclips
• offline-rl-congestion-control
• ohta
• omgd
• open-clips-torch
• openfermionpyscaf
• openfermionpyscanf
• opteinsm
• para-gen
• paws-room-acoustics-simulator
• physisyphus
• piano-transcription
• portrait-mode-video
• projectp
• prolificdreamer
• pysisphus
• pysisyphes
• pytorch-lighting
• pyyal
• raylink
• raylinks
• res-adapter
• rl-vm-scheduling
• salmonn
• sampling-util
• service-affinity-scheduling
• shadokv
• shadowkw
• shaiduwkv
• shot2story
• sjc
• sphinx-rdt-theme
• sphinx-rtd-themes
• tarseir
• tarsie
• tarsire
• textharmony
• textmesh
• tiketoken
• tktoken
• torchs-visions
• torchvisions
• type-extension
• typing-extension
• usss
• uus
• uuss
• v2mlx-gml
• v2xlm-gml
• vtvqa
• x-portrait
• x2vml-gml
• x2vmlgml
• zero123