Malicious Repositories Collection
After spotting hidden malware in a LinkedIn job assessment, I began collecting and analyzing similar scam repositories.
This project sharpened my reverse engineering and infosec skills as I investigated obfuscated payloads, malicious scripts, and supply chain attacks.
The goal is to educate developers and document real-world threats in a public, growing repository.
- Spotted a scam: Caught a fake LinkedIn job test trying to run hidden code that steals data.
- Investigated real cases: Collected and explained how these scam repos work, including tricks like
eval()
and malicious install scripts. - Made it public: Shared everything in one place so other developers can learn and avoid getting tricked.
- Still growing: New scam repos are added as they appear — this isn't slowing down.
- Collaborative effort: Other developers have already contributed examples and insights, all voluntarily.
See More