HXSecurity / DongTai-agent-java
Java Agent is a Java application probe of DongTai IAST, which collects method invocation data during runtime of Java application by dynamic hooks.
☆686Updated last year
Alternatives and similar repositories for DongTai-agent-java:
Users that are interested in DongTai-agent-java are comparing it to the libraries listed below
- 专注于JVM的运行时防御系统RASP☆284Updated 10 months ago
- IAST 灰盒扫描工具☆444Updated 2 years ago
- ☆804Updated 2 years ago
- java内存对象搜索辅助工具☆803Updated 2 years ago
- Fastjson vulnerability quickly exploits the framework(fastjson漏洞快速利用框架)☆1,325Updated 2 years ago
- 源代码�漏洞の审计☆818Updated 10 months ago
- Java漏洞学习笔记 Deserialization Vulnerability☆933Updated last year
- 分布式端口(漏洞)扫描、资产安全管理、实时威胁监控与通知、高效漏洞闭环、漏洞wiki、邮件报告通知、poc框架☆568Updated 2 years ago
- Getting started with java code auditing 代码审计入门的小项目☆916Updated 2 years ago
- Hunter作为中通DevSecOps闭环方案中的一环,扮演着很重要的角色,开源之后希望能帮助到更多企业。☆345Updated 2 years ago
- ☆452Updated last year
- Weblogic环境搭建工具☆792Updated 5 years ago
- JAVA 漏洞靶场 (Vulnerability Environment For Java)☆457Updated 3 years ago
- 越权检测工具☆739Updated 2 years ago
- java source code static code analysis and danger function identify prog☆535Updated 6 years ago
- JNDI服务利用工具 RMI/LDAP,支持部分场景回显、内存shell,高版本JDK场景下利用等,fastjson rce命令执行,log4j rce命令执行 漏洞检测辅助工具☆1,969Updated 11 months ago
- Static code auditing system☆462Updated 4 years ago
- 分享几个直接可用的内存马,记录一下学习过程中看过的文章☆955Updated 3 years ago
- 傻瓜式漏洞PoC测试框架☆1,444Updated last year
- 合规审计平台☆465Updated 3 years ago
- Fastjson姿势技巧集合☆1,745Updated last year
- 自己学习java安全的一些总结,主要是安全审计相关☆1,635Updated 3 years ago
- Shiro RememberMe 1.2.4 反序列化漏洞图形化检测工具(Shiro-550)☆831Updated 2 years ago
- HeapDump敏感信息提取工具☆1,457Updated last month
- 360/0Kee-Team/crawlergo动态爬虫结合长亭XRAY扫描器的被动扫描功能☆1,190Updated 3 years ago
- 一个利用ASM对字节码进行污点传播分析的静态代码审计应用(添加了大量代码注释,适合大家进行源码学习)。也加入了挖掘Fastjson反序列化gadget chains和SQLInject(JdbcTemplate、MyBatis、JPA、Hibernate、原生jdbc等)静…�☆447Updated 3 years ago
- Share Things Related to Java - Java安全漫谈笔记相关内容☆1,868Updated last month
- CodeQLpy是一款基于CodeQL实现的半自动化代码审计工具,目前仅支持java语言。实现从源码反编译,数据库生成,脆弱性发现的全过程,可以辅助代码审计人员快速定位源码可能存在的漏洞。☆785Updated last year
- Watchdog是bayonet修改版,重新优化了数据库及web及扫描程序,加入多节点☆625Updated 2 years ago
- java代码审计学习笔记☆647Updated 5 years ago