HXSecurity / DongTai-agent-javaLinks

Java Agent is a Java application probe of DongTai IAST, which collects method invocation data during runtime of Java application by dynamic hooks.

☆691

Alternatives and similar repositories for DongTai-agent-java

Users that are interested in DongTai-agent-java are comparing it to the libraries listed below

Sorting:

jvm-rasp / jrasp-agent
专注于JVM的运行时防御系统RASP
☆284Updated last year
baidu-security / openrasp-iast
IAST 灰盒扫描工具
☆447Updated 3 years ago
LeadroyaL / fastjson-blacklist
☆811Updated 3 years ago
wooyunwang / Fortify
源代码漏洞の审计
☆822Updated last year
creditease-sec / insight2
☆460Updated last year
ztosec / secscan-authcheck
越权检测工具
☆739Updated 3 years ago
SummerSec / JavaLearnVulnerability
Java漏洞学习笔记 Deserialization Vulnerability
☆936Updated 2 years ago
c0ny1 / java-object-searcher
java内存对象搜索辅助工具
☆811Updated 2 years ago
er10yi / MagiCude
分布式端口（漏洞）扫描、资产安全管理、实时威胁监控与通知、高效漏洞闭环、漏洞wiki、邮件报告通知、poc框架
☆571Updated 2 years ago
momosecurity / bombus
合规审计平台
☆465Updated 3 years ago
ztosec / hunter
Hunter作为中通DevSecOps闭环方案中的一环，扮演着很重要的角色，开源之后希望能帮助到更多企业。
☆345Updated 2 years ago
SecurityPaper / SecurityPaper-web
Security Paper
☆346Updated 5 years ago
c0ny1 / FastjsonExploit
Fastjson vulnerability quickly exploits the framework（fastjson漏洞快速利用框架）
☆1,353Updated 2 years ago
cn-panda / JavaCodeAudit
Getting started with java code auditing 代码审计入门的小项目
☆920Updated 2 years ago
zsdlove / Hades
Static code auditing system
☆466Updated 4 years ago
TheKingOfDuck / MySQLMonitor
MySQL实时监控工具(代码审计/黑盒/白盒审计辅助工具)
☆473Updated 3 years ago
momosecurity / Mloger
安全测试平台
☆238Updated 2 years ago
AnyeDuke / Enterprise-Security-Skill
用于记录企业安全规划，建设，运营，攻防的相关资源
☆608Updated 5 years ago
Metarget / cloud-native-security-book
《云原生安全：攻防实践与体系构建》资料仓库
☆760Updated 2 years ago
QAX-A-Team / WeblogicEnvironment
Weblogic环境搭建工具
☆797Updated 5 years ago
threedr3am / gadgetinspector
一个利用ASM对字节码进行污点传播分析的静态代码审计应用（添加了大量代码注释，适合大家进行源码学习）。也加入了挖掘Fastjson反序列化gadget chains和SQLInject（JdbcTemplate、MyBatis、JPA、Hibernate、原生jdbc等）静…
☆450Updated 3 years ago
Cryin / JavaID
java source code static code analysis and danger function identify prog
☆536Updated 6 years ago
tangxiaofeng7 / SecExample
JAVA 漏洞靶场 (Vulnerability Environment For Java)
☆473Updated 4 years ago
SPuerBRead / Bridge
无回显漏洞测试辅助平台，平台使用Java编写，提供DNSLOG，HTTPLOG等功能，辅助渗透测试过程中无回显漏洞及SSRF等漏洞的验证和利用。
☆383Updated 3 weeks ago
ASTTeam / SAST
《深入理解SAST静态应用安全测试》Static Application Security Testing.
☆346Updated last year
CTF-MissFeng / Watchdog
Watchdog是bayonet修改版，重新优化了数据库及web及扫描程序,加入多节点
☆626Updated 2 years ago
bitterzzZZ / MemoryShellLearn
分享几个直接可用的内存马，记录一下学习过程中看过的文章
☆968Updated 3 years ago
timwhitez / crawlergo_x_XRAY
360/0Kee-Team/crawlergo动态爬虫结合长亭XRAY扫描器的被动扫描功能
☆1,193Updated 3 years ago
y1nglamore / IDOR_detect_tool
一款API水平越权漏洞检测工具
☆767Updated 2 years ago
opensec-cn / vtest
用于辅助安全工程师漏洞挖掘、测试、复现，集合了mock、httplog、dns tools、xss，可用于测试各类无回显、无法直观判断或特定场景下的漏洞。
☆869Updated 6 years ago