HXSecurity / DongTaiLinks
Dongtai IAST is an open-source Interactive Application Security Testing (IAST) tool that enables real-time detection of common vulnerabilities in Java applications and third-party components through passive instrumentation. It is particularly suitable for use in the testing phase of the development pipeline.
☆1,279Updated 2 weeks ago
Alternatives and similar repositories for DongTai
Users that are interested in DongTai are comparing it to the libraries listed below
Sorting:
- veinmind-tools 是由长亭科技自研,基于 veinmind-sdk 打造的容器安全工具集☆1,585Updated last year
- Java Agent is a Java application probe of DongTai IAST, which collects method invocation data during runtime of Java application by dynam…☆685Updated last year
- 边界打点后的自动化渗透工具☆1,860Updated 3 years ago
- Passive Security Scanner (被动式安全扫描器)☆1,938Updated 2 years ago
- 开源、轻量、快速、跨平台 的网站漏洞扫描工具,帮助您快速检测网站安全隐患。功能 端口扫描(port scan) 指纹识别(fingerprint) 漏洞检测(nday check) 智能爆破 (admin brute) 敏感文件扫描(file fuzz)☆1,569Updated last year
- 一款甲方资产巡航扫描系统。系统定位是发现资产,进行端口爆破。帮助企业更快发现弱口令问题。主要功能包括: 资产探测、端口爆破、定时任务、管理后台识别、报表展示☆1,782Updated 3 years ago
- 傻瓜式漏洞PoC测试框架☆1,446Updated last year
- Attack surface mapping☆1,460Updated last year
- Nemo是用来进行自动化信息收集的一个简单平台,通过集成常用的信息收集工具和技术,实现对内网及互联网资产信息的自动收集,提高隐患排查和渗透测试的工作效率。☆1,833Updated 2 weeks ago
- Fiora:漏洞PoC框架Nuclei的图形版。快捷搜索PoC、一键运行Nuclei。即可作为独立程序运行,也可作为burp插件使用。☆1,224Updated last year
- Scan for sensitive information easily and effectively.☆970Updated 3 weeks ago
- ☕️ Java Security,安全编码和代码审计☆1,558Updated 2 months ago
- 利用大量高威胁poc/exp快速获取目标权限,用于渗透和红队快速打点☆2,317Updated last year
- 一款适用于红蓝对抗中的仿真钓鱼系统☆1,494Updated 2 years ago
- 安全、快捷、高交互、企业级的蜜罐管理系统,护网;支持多种协议蜜罐、蜜签、诱饵等功能。A safe, fast, highly interactive and enterprise level honeypot management system, supports mult…☆1,250Updated last year
- shiro反序列化漏洞综合利用,包含(回显执行命令/注入内存马)修复原版中NoCC的问题 https://github.com/j1anFen/shiro_attack☆2,224Updated last year
- bayonet是一款src资产管理系统,从子域名、端口服务、漏洞、爬虫等一体化的资产管理系统☆1,486Updated 2 years ago
- 一个高价值漏洞采集与推送服务 | Collect valueable vulnerabilities and push them to various services☆1,588Updated 2 months ago
- ServerScan一款使用Golang开发的高并发网络扫描、服务探测工具。☆1,602Updated 11 months ago
- Web Fuzzing Box - Web 模糊测试字典与一些Payloads☆2,309Updated last week
- ☆1,473Updated 2 years ago
- netspy是一款快速探测内网可达网段工具(深信服深蓝实验室天威战队强力驱动)☆2,102Updated last year
- Alibaba-Nacos-Unauthorized/ApacheDruid-RCE_CVE-2021-25646/MS-Exchange-SSRF-CVE-2021-26885/Oracle-WebLogic-CVE-2021-2109_RCE/RG-CNVD-2021-…☆1,080Updated 2 years ago
- 项目是根据LandGrey/SpringBootVulExploit清单编写,目的hvv期间快速利用漏洞、降低漏洞利用门槛。☆1,868Updated last year
- 红/蓝队环境自动化部署工具 | Red/Blue team environment automation deployment tool☆1,946Updated this week
- 针对 Acunetix AWVS扫描器开发的批量扫描脚本,支持log4j漏洞、SpringShell、SQL注入、XSS、弱口令等专项,支持联动xray、burp、w13scan等被动批量☆1,213Updated 9 months ago
- Mars(战神)——资产发现、子域名枚举、C段扫描、资产变更监测、端口变更监测、域名解析变更监测、Awvs扫描、POC检测、web指纹探测、端口指纹探测、CDN探测、操作系统指纹探测、泛解析探测、WAF探测、敏感信息检测等等☆1,287Updated 4 years ago
- Threat Intelligence Gathering 威胁情报收集,旨在提高蓝队拿到攻击 IP 后对其进行威胁情报信息收集的效率。☆847Updated last year
- DNSLog-GO 是一款golang编写的监控 DNS 解析记录的工具,自带WEB界面 / DNSLog-GO is a monitoring tool written in Golang that monitors DNS resolution records. It …☆1,169Updated last month
- Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack…☆3,069Updated last year