
Research
/Security News
11 Malicious NuGet Tools Pose as Game Cheats to Drop a Windows Host-Surveillance Payload
11 malicious NuGet tools pose as game cheats to deploy Windows payloads, track hosts, and use Google Sheets for telemetry and control.
ethereum-input-decorder
Advanced tools
A Python project demonstrating how to build decentralized finance (DeFi) applications using the eth_defi library. This project provides examples for connecting to EVM-compatible networks, interacting with ERC-20 tokens, reading on-chain data, executing swaps, and automating common DeFi workflows.
Examples:
git clone https://github.com/example/eth-defi-demo.git
cd eth-defi-demo
python -m venv .venv
source .venv/bin/activate # Linux/macOS
# or
.venv\Scripts\activate # Windows
pip install -r requirements.txt
web3
web3-ethereum-defi
python-dotenv
requests
eth-defi-demo/
│
├── examples/
│ ├── connect.py
│ ├── wallet.py
│ ├── erc20.py
│ ├── transfer.py
│ ├── swap.py
│ ├── multicall.py
│ └── events.py
│
├── utils/
│ ├── config.py
│ ├── rpc.py
│ └── wallet.py
│
├── .env.example
├── requirements.txt
├── README.md
└── main.py
Create a .env file.
RPC_URL=https://eth-mainnet.g.alchemy.com/v2/YOUR_API_KEY
PRIVATE_KEY=YOUR_PRIVATE_KEY
CHAIN_ID=1
Never commit your private key to Git.
from web3 import Web3
rpc = "https://rpc.ankr.com/eth"
w3 = Web3(Web3.HTTPProvider(rpc))
print("Connected:", w3.is_connected())
print("Latest block:", w3.eth.block_number)
token_name = token.functions.name().call()
symbol = token.functions.symbol().call()
decimals = token.functions.decimals().call()
total_supply = token.functions.totalSupply().call()
balance = w3.eth.get_balance(wallet)
print(w3.from_wei(balance, "ether"))
tx = token.functions.transfer(
recipient,
amount
).build_transaction(...)
router.swap_exact_tokens_for_tokens(...)
Typical workflow:
Instead of sending dozens of RPC requests:
balanceOf()
symbol()
decimals()
allowance()
Combine them into a single Multicall request for improved performance.
Example events:
Useful for:
Ensure the wallet has enough native tokens to pay gas fees.
Common causes include:
Contributions are welcome.
MIT License
This project is provided for educational purposes only. Always test on a testnet before interacting with mainnet assets. You are responsible for securing your private keys and verifying all transactions before signing.
FAQs
A module that prints Hello World on import
The pypi package ethereum-input-decorder receives a total of 0 weekly downloads. As such, ethereum-input-decorder popularity was classified as not popular.
We found that ethereum-input-decorder demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Research
/Security News
11 malicious NuGet tools pose as game cheats to deploy Windows payloads, track hosts, and use Google Sheets for telemetry and control.

Research
/Security News
4 compromised asyncapi packages deliver miasma botnet loader on macOS, Linux and Windows.

Research
/Security News
A compromised jscrambler npm release added a malicious preinstall hook that runs hidden native binaries on Linux, macOS, and Windows.