Top issues
Detected Windows shared library files that do not suppress exports which reduces CFG vulnerability mitigation protection effectiveness.
Causes risk: low priority mitigations absent
hardening
Problem
Control Flow Guard (CFG/CFI) protects the code flow integrity by ensuring that dynamic calls are made only to vetted functions. Trusted execution paths rely on the ability of the operating system to build a list of valid function targets. Certain functions can intentionally be disallowed to prevent malicious code from deactivating vulnerability mitigation features. A list of such invalid function targets can include publicly exported symbols. Applications that enhance control flow integrity through export suppression rely on libraries to mark their publicly visible symbols as suppressed. This is done for all symbols that are considered to be sensitive functions, and to which access should be restricted. It is considered dangerous to mix applications that perform export suppression with libraries that do not.Prevalence in PyPI community
30 packages
found in
Top 100
143 packages
found in
Top 1k
833 packages
found in
Top 10k
15.19k packages
in community
Next steps
To enable this mitigation on library code, refer to your programming language toolchain documentation.
In Microsoft VisualStudio, you can enable CFG mitigation by passing the /guard:cf parameter to the compiler and linker.
Detected Windows executable files that do not implement long jump control flow vulnerability mitigation protection.
Causes risk: low priority mitigations absent
hardening
Problem
Control Flow Guard (CFG/CFI) protects the code flow integrity by ensuring that indirect calls are made only to vetted functions. This mitigation protects dynamically resolved function targets by instrumenting the code responsible for transferring execution control. Higher-level programming languages implement structured exception handling by managing their own code flow execution paths. As such, they are subject to code flow hijacking during runtime. Language-specific exception handling mitigation enforces execution integrity by instrumenting calls to manage execution context switching. Any deviation from the known and trusted code flow paths will cause the application to terminate. This makes malicious code less likely to execute.Prevalence in PyPI community
36 packages
found in
Top 100
164 packages
found in
Top 1k
932 packages
found in
Top 10k
17.86k packages
in community
Next steps
It's highly recommended to enable this option for all software components used at security boundaries, or those that process user controlled inputs.
To enable this mitigation, refer to your programming language toolchain documentation.
In Microsoft VisualStudio, you can enable CFG mitigation by passing the /guard:cf parameter to the compiler and linker.
Top behaviors
Contains IP addresses.
network
Prevalence in PyPI community
Behavior often found in this community (Common)
67 packages
found in
Top 100
525 packages
found in
Top 1k
4055 packages
found in
Top 10k
154.83k packages
in community
Renames a file or directory.
file
Prevalence in PyPI community
Behavior often found in this community (Common)
68 packages
found in
Top 100
540 packages
found in
Top 1k
3680 packages
found in
Top 10k
150.76k packages
in community
Adds a path to the DLL search path.
execution
Prevalence in PyPI community
Behavior often found in this community (Common)
4 packages
found in
Top 100
23 packages
found in
Top 1k
136 packages
found in
Top 10k
2.05k packages
in community
Enumerates system information.
search
Prevalence in PyPI community
Behavior often found in this community (Common)
44 packages
found in
Top 100
286 packages
found in
Top 1k
1787 packages
found in
Top 10k
48.75k packages
in community
Loads additional libraries.
execution
Prevalence in PyPI community
Behavior often found in this community (Common)
34 packages
found in
Top 100
180 packages
found in
Top 1k
1082 packages
found in
Top 10k
27.11k packages
in community
Top vulnerabilities
No vulnerabilities found.