SaaSHub helps you find the best software and product alternatives Learn more →
Picklescan Alternatives
Similar projects and alternatives to picklescan
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
stable-diffusion-docker
Run the official Stable Diffusion releases in a Docker container with txt2img, img2img, depth2img, pix2pix, upscale4x, and inpaint.
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
picklescan reviews and mentions
-
Planting Undetectable Backdoors in Machine Learning Models
It's Python's serialisation format: https://docs.python.org/3/library/pickle.html
There are tools to check the format for suspicious behaviour: https://github.com/mmaitre314/picklescan seems to be the most developed one.
You can also check the format manually (being careful not to call into it), like demonstrated by this more rudimentary scanner: https://github.com/zxix/stable-diffusion-pickle-scanner
It you do check for security issues yourself, you'll need to read up on what magical methods/variables may cause code execution. Simple demonstrations of dangerous code can be found all over the web (https://stackoverflow.com/questions/47705202/pickle-exploiti...) but I'm sure there are obfuscation tricks that simple scans won't catch.
- Keep yourself safe when downloading models, Pickle malware scanner GUI for Stable Diffusion
-
Photorealistic highres portraits
I ran it through both Python Malware Scanner and Stable Diffusion Pickle Scanner as I do with any model before and after I downloaded.
-
I'm a beginner at AI art, please give me tips.
There are a few you can run on your own too. https://github.com/zxix/stable-diffusion-pickle-scanner https://github.com/mmaitre314/picklescan
- Don't download the "Anything V3" model - It contains a malware threat inside the .ckpt file
-
Marathon, the power of chinese novel ai
"Picklescan" is available from here: https://github.com/mmaitre314/picklescan
-
Is there a way of scanning .ckpt files for exploits?
Not a definitive solution, but there is picklescan which catches some of the obvious malicious imports (like builtin eval, exec, etc...). The safeunpickle2 script throws a lot of false positives, since it is missing some datatypestorage classes from torch that some models use. It was probably meant to be a proof of concept primarily. But it is always a good practice to adapt that script and have it print out the complete list of imports and callbacks and manually scan through them
-
A note from our sponsor - SaaSHub
www.saashub.com | 2 May 2024
Stats
mmaitre314/picklescan is an open source project licensed under MIT License which is an OSI approved license.
The primary programming language of picklescan is Python.
Sponsored