Training data poisoning detection and simulation — BadNets, Trojan, clean-label attacks, spectral signatures, activation clustering, STRIP defence
Project description
☠️ NullSec DataPoisoning
Training Data Poisoning Detection & Simulation
Detect, simulate, and defend against training data poisoning attacks
🎯 Overview
NullSec DataPoisoning provides tools for detecting and simulating data poisoning attacks against machine learning pipelines. It implements backdoor injection (BadNets, Trojaning), clean-label attacks, and gradient-based poisoning, alongside detection methods like spectral signatures, activation clustering, and STRIP.
⚡ Features
| Feature | Description |
|---|---|
| Backdoor Injection | BadNets, Trojan, blend, and warp triggers |
| Clean-Label Attacks | Feature collision, convex polytope, Witches' Brew |
| Detection Engine | Spectral signatures, activation clustering, STRIP |
| Neural Cleanse | Reverse-engineer trigger patterns from poisoned models |
| Dataset Audit | Scan datasets for anomalous samples and label flips |
| Pipeline Scanner | Audit ML pipelines for poisoning entry points |
📋 Attack & Defence Matrix
| Technique | Category | Type |
|---|---|---|
| BadNets | Backdoor | Attack |
| Trojan Attack | Backdoor | Attack |
| Clean-Label FC | Poisoning | Attack |
| Witches' Brew | Poisoning | Attack |
| Spectral Signatures | Statistical | Defence |
| Activation Clustering | Neural | Defence |
| STRIP | Runtime | Defence |
| Neural Cleanse | Reverse Engineering | Defence |
🚀 Quick Start
# Scan a dataset for poisoning indicators
nullsec-datapoisoning scan --dataset training_data/ --model model.pt
# Simulate backdoor attack
nullsec-datapoisoning inject --dataset clean.csv --trigger patch --target-label 0 --poison-rate 0.01
# Run Neural Cleanse detection
nullsec-datapoisoning cleanse --model suspect_model.pt --num-classes 10
# Audit an ML pipeline config
nullsec-datapoisoning audit --pipeline pipeline.yaml
🔗 Related Projects
| Project | Description |
|---|---|
| nullsec-adversarial | Adversarial ML attack toolkit |
| nullsec-modelaudit | ML model security auditing |
| nullsec-llmred | LLM red-teaming framework |
| nullsec-promptinject | Prompt injection payloads |
| nullsec-linux | Security Linux distro (140+ tools) |
⚠️ Legal
For authorized ML security research only. Poisoning production training data without authorization is illegal.
📜 License
MIT License — @bad-antics
Part of the NullSec AI/ML Security Suite
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file nullsec_datapoisoning-0.1.0.tar.gz.
File metadata
- Download URL: nullsec_datapoisoning-0.1.0.tar.gz
- Upload date:
- Size: 10.0 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.13.5
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
94f12895d1fddfd7b43c6d695a3bb6558771c439de238d2f4805becae01ff669
|
|
| MD5 |
812449ad5ddd383d5c0f91959e39ee6c
|
|
| BLAKE2b-256 |
baa6cac269eefc5d121aad4ecae206f6a39ad67478fcafb4e55c3397648f1c89
|
File details
Details for the file nullsec_datapoisoning-0.1.0-py3-none-any.whl.
File metadata
- Download URL: nullsec_datapoisoning-0.1.0-py3-none-any.whl
- Upload date:
- Size: 10.1 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.13.5
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
3b3b2085816617d286acdf55b7bfa09b3470f451784cf124235b51e64a597954
|
|
| MD5 |
7615395d1b2f590add97d6e24416368f
|
|
| BLAKE2b-256 |
484026db6a43c53b011be4ee9878caaf16da0ec277335df6f40d86a7733a434a
|
