# Malicious Packages DB

Xygeni Open Source Security is designed to provide complete protection against vulnerabilities and malicious code, ensuring your applications remain secure and resilient. With a robust suite of capabilities, Xygeni offers unparalleled visibility and control over your open-source components, helping you to manage risks effectively.

In addition to these SCA features, Xygeni offers a ***Malicious Packages DB*** to view malicious components.

<figure><img src="https://4096647782-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FUTz59rJLkJBjiRWAMknU%2Fuploads%2FYV6RgrBZKhRdb3Gkcq99%2Fimage.png?alt=media&#x26;token=43a114c6-5078-4d05-8228-404c34555f93" alt=""><figcaption></figcaption></figure>

{% hint style="info" %}
See [Malware Early Warning (MEW) service](https://docs.xygeni.io/xygeni-products/open-source-security-oss/malware-early-warning-mew) for further details&#x20;
{% endhint %}

You can search for dependencies/packages to inspect whether have some kind of malware evidences. For these purposes, Xygeni provides **Malware EW**, a search engine that queries the MEW database.

{% hint style="info" %}
Malware EW displays information about **any** public software package with malware evidences, not only about those being used by your applications.&#x20;

If you want to know if you are using some package tagged as malware, you can go to Open Source >> Components (to see all the components that you are using) and filter by Alert Type : Malware (see [Inventory - Components](https://docs.xygeni.io/xygeni-products/application-security-posture-management-aspm/inventory/components) for further details)&#x20;
{% endhint %}

**Malware EW** displays information about:

* Number of detected  Malicious packages by MEW
* Evidence distribution according to type (see [Common types of Malware](https://docs.xygeni.io/xygeni-products/open-source-security-oss/malware-early-warning-mew/common-types-of-malware-found-in-open-source-packages) packages)
* A table that lists all the malicious packages detected by MEW
* Filtering fields to search by different criteria:

  * Current status: Quarantine, Confirmed by Xygeni, Confirmed by Registry (see &#x20;
  * Component and version pattern (admitting wildcards)
  * Likelihood: depending on the [maliciousness score](https://docs.xygeni.io/xygeni-products/code-security-cs/malware-scanner), the malware evidences can be tagged as "potential" or high risk")&#x20;
  * Component's Publisher

### Malware details (MEW)

Clicking on the <img src="https://4096647782-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FUTz59rJLkJBjiRWAMknU%2Fuploads%2FfJnY7f0LqyYzjYdBurPr%2Fimage.png?alt=media&#x26;token=94fdb20a-af33-4b59-80b0-0f9b8c905957" alt="" data-size="original"> icon of a component with **malware detected by Xygeni** will open a **slide** with details.

**Summary tab** shows detailed information about the component:

* Summary info
* Info about the Publisher
* Malware detected status

<figure><img src="https://4096647782-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FUTz59rJLkJBjiRWAMknU%2Fuploads%2Fps5NxFuAItiEyVFGYFpN%2Fimage.png?alt=media&#x26;token=e784c456-cd7d-4029-b76e-a53a80af0a00" alt="" width="330"><figcaption></figcaption></figure>

**Malware evidence tab** shows detailed information about the code evidences found:

<figure><img src="https://4096647782-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FUTz59rJLkJBjiRWAMknU%2Fuploads%2F0U2QTFTzvPOjC6GQzEmU%2Fimage.png?alt=media&#x26;token=9cf7de57-c486-4185-843d-5e2bd2d2fbee" alt="" width="331"><figcaption></figcaption></figure>