SaaSHub helps you find the best software and product alternatives Learn more →
Picklescan Alternatives
Similar projects and alternatives to picklescan
-
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
stable-diffusion-docker
Run the official Stable Diffusion releases in a Docker container with txt2img, img2img, depth2img, pix2pix, upscale4x, and inpaint.
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
NOTE:
The number of mentions on this list indicates mentions on common posts plus user suggested alternatives.
Hence, a higher number means a better picklescan alternative or higher similarity.
picklescan reviews and mentions
Posts with mentions or reviews of picklescan.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2023-02-26.
-
Planting Undetectable Backdoors in Machine Learning Models
It's Python's serialisation format: https://docs.python.org/3/library/pickle.html
There are tools to check the format for suspicious behaviour: https://github.com/mmaitre314/picklescan seems to be the most developed one.
You can also check the format manually (being careful not to call into it), like demonstrated by this more rudimentary scanner: https://github.com/zxix/stable-diffusion-pickle-scanner
It you do check for security issues yourself, you'll need to read up on what magical methods/variables may cause code execution. Simple demonstrations of dangerous code can be found all over the web (https://stackoverflow.com/questions/47705202/pickle-exploiti...) but I'm sure there are obfuscation tricks that simple scans won't catch.
- Keep yourself safe when downloading models, Pickle malware scanner GUI for Stable Diffusion
-
Photorealistic highres portraits
I ran it through both Python Malware Scanner and Stable Diffusion Pickle Scanner as I do with any model before and after I downloaded.
-
I'm a beginner at AI art, please give me tips.
There are a few you can run on your own too. https://github.com/zxix/stable-diffusion-pickle-scanner https://github.com/mmaitre314/picklescan
- Don't download the "Anything V3" model - It contains a malware threat inside the .ckpt file
-
Marathon, the power of chinese novel ai
"Picklescan" is available from here: https://github.com/mmaitre314/picklescan
-
Is there a way of scanning .ckpt files for exploits?
Not a definitive solution, but there is picklescan which catches some of the obvious malicious imports (like builtin eval, exec, etc...). The safeunpickle2 script throws a lot of false positives, since it is missing some datatypestorage classes from torch that some models use. It was probably meant to be a proof of concept primarily. But it is always a good practice to adapt that script and have it print out the complete list of imports and callbacks and manually scan through them
-
A note from our sponsor - SaaSHub
www.saashub.com | 2 May 2024
Stats
Basic picklescan repo stats
7
193
5.7
about 1 month ago
mmaitre314/picklescan is an open source project licensed under MIT License which is an OSI approved license.
The primary programming language of picklescan is Python.
Sponsored
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com