Developer! Developer! Developer! East Anglia

DDD East Anglia

Cambridge, UK
Saturday 22 September 2018

Hunting Typosquatters with F#

npm is the world's largest software repository and is used to distribute JavaScript code to millions of developers.

The repository has experienced its fair share of security scares, one of the most recent was a significant typosquatting attack in August 2017. Although the attempt was not considered to have been very effective, it went unnoticed for two weeks and served as a catalyst for security companies to look for similar attacks.

This talk describes my efforts in this space using ideas from the attack to look for other active ones. Attendees should expect to learn about my investigative efforts and the awesome features of F# which made it easy and fun.