Alternatives and similar repositories for DongTai-engine

Users that are interested in DongTai-engine are comparing it to the libraries listed below

• HXSecurity / DongTai-Plugin-IDEA
  Dongtai-plugin-idea is an IDEA plug-in developed by DongTai team for Java Web application developers. This plug-in provides functions suc…
  ☆27Updated last year
• TomAPU / WAF-rules
  ☆22Updated 5 years ago
• Conanjun / codeql_chinese
  CodeQL中文资料和常见使用解释。Chinese version of Codeql documents
  ☆9Updated 4 years ago
• angelwhu / jvm-rasp
  基于JVM-Sandbox实现RASP安全监控防护
  ☆52Updated last year
• iiiusky / java_rasp_example
  ☆28Updated 4 years ago
• LeadroyaL / java_xxe_2019
  总结了一下2019年在JVM环境中使用XXE攻击的知识
  ☆57Updated 5 years ago
• jimocode / CodeInspector
  基于Java ASM技术和GadgetInspector的原理，尝试实现一个自动Java代码审计工具。目前做到了可控参数分析和数据流跟踪分析
  ☆36Updated 3 years ago
• Anemone95 / JSecCode
  A Vulnerable Web App written by JavaScript (Vue+Egg)
  ☆12Updated 8 months ago
• Anemone95 / taint-benchmark
  A benchmark to evaluate taint analysis
  ☆29Updated 3 years ago
• SummerSec / SPATool
  静态程序分析工具 主要生成方法的CFG和.java文件的AST
  ☆129Updated last year
• cor0ps / codeql
  收集规则
  ☆30Updated 2 years ago
• threedr3am / FindClassInJars
  个人用于在自动化挖掘gadget时，方便查找gadget chains中class所在jar包，以助于便捷审计测试gadget有效性的那么一个小工具。
  ☆60Updated 5 years ago
• crifan / explore_underlying_mechanism_binary_security
  探究底层机制：二进制安全
  ☆32Updated last year
• 7hang / Android-IOS-Security
  移动安全
  ☆31Updated 5 years ago
• Monyer / xssee
  A js encode/decode simple tool for XSS
  ☆27Updated 5 years ago
• bigBestWay / ice
  Use java instrument API without JAR file
  ☆45Updated 3 years ago
• boundaryx / cloudrasp-log4j2
  一个针对防御 log4j2 CVE-2021-44228 漏洞的 RASP 工具。 A Runtime Application Self-Protection module specifically designed for log4j2 RCE (CVE-2021-442…
  ☆123Updated 3 years ago
• threedr3am / log-agent
  利用agent hock指定的class，在jar运行周期内，用于跟踪被执行的方法，辅助做一些事情，比如挖洞啊
  ☆126Updated 4 years ago
• wrlu / SecMobile
  移动安全检测平台，支持Android和iOS应用辅助分析。
  ☆45Updated 5 years ago
• sherlly / ciscn2018-pwn
  2018大学生信息安全国赛pwn出题docker
  ☆26Updated 7 years ago
• 1135 / Kong_exploit
  ☆41Updated 5 years ago
• jweny / check_jsonp_based_on_ast
  基于AST的JSONP劫持漏洞自动化挖掘
  ☆93Updated 4 years ago
• crown-prince / Misc_-encrypt_of_CTF
  CTF中那些脑洞大开的编码和加密
  ☆30Updated 8 years ago
• seecode-audit / seecode-scanner
  SeeCode Scanner 扫描引擎
  ☆2Updated 5 years ago
• das-lab / VpatchFinder
  面向项目版本差异性的漏洞识别技术研究
  ☆14Updated 3 years ago
• h2so0o4 / Fuck_SRC
  批量挖掘漏洞
  ☆19Updated 4 years ago
• jas502n / xray-crack
  xray社区高级版证书生成，支持到 1.2.0 版本
  ☆35Updated 4 years ago
• haby0 / mark
  notes
  ☆27Updated 2 years ago
• ASTTeam / Semgrep
  《深入理解Semgrep》Finding vulnerabilities with Semgrep.
  ☆52Updated last year
• qiyeboy / my_tsrc_paper
  向TSRC投稿的文章，对应的pdf，代码和思维导图
  ☆19Updated 4 years ago