Alternatives and similar repositories for DongTai-engine:

Users that are interested in DongTai-engine are comparing it to the libraries listed below

• TomAPU / WAF-rules
  ☆22Updated 5 years ago
• HXSecurity / DongTai-Plugin-IDEA
  Dongtai-plugin-idea is an IDEA plug-in developed by DongTai team for Java Web application developers. This plug-in provides functions suc…
  ☆27Updated last year
• angelwhu / jvm-rasp
  基于JVM-Sandbox实现RASP安全监控防护
  ☆52Updated last year
• Anemone95 / taint-benchmark
  A benchmark to evaluate taint analysis
  ☆30Updated 2 years ago
• iiiusky / java_rasp_example
  ☆28Updated 4 years ago
• Anemone95 / JSecCode
  A Vulnerable Web App written by JavaScript (Vue+Egg)
  ☆12Updated 4 months ago
• Monyer / xssee
  A js encode/decode simple tool for XSS
  ☆27Updated 5 years ago
• threedr3am / log-agent
  利用agent hock指定的class，在jar运行周期内，用于跟踪被执行的方法，辅助做一些事情，比如挖洞啊
  ☆126Updated 4 years ago
• LeadroyaL / java_xxe_2019
  总结了一下2019年在JVM环境中使用XXE攻击的知识
  ☆57Updated 5 years ago
• ring04h / iproxy
  HTTP/HTTPS proxy server by golang [high performance version]
  ☆53Updated 4 years ago
• Conanjun / codeql_chinese
  CodeQL中文资料和常见使用解释。Chinese version of Codeql documents
  ☆9Updated 4 years ago
• das-lab / VpatchFinder
  面向项目版本差异性的漏洞识别技术研究
  ☆14Updated 3 years ago
• threedr3am / FindClassInJars
  个人用于在自动化挖掘gadget时，方便查找gadget chains中class所在jar包，以助于便捷审计测试gadget有效性的那么一个小工具。
  ☆60Updated 5 years ago
• ASTTeam / DAST
  《深入理解DAST动态应用程序安全测试》Dynamic Application Security Testing.
  ☆49Updated 2 years ago
• SummerSec / SPATool
  静态程序分析工具 主要生成方法的CFG和.java文件的AST
  ☆128Updated last year
• jweny / check_jsonp_based_on_ast
  基于AST的JSONP劫持漏洞自动化挖掘
  ☆93Updated 4 years ago
• Ant-FG-Lab / non_RCE
  ☆41Updated 4 years ago
• ODDFuzz / ODDFuzz
  S&P2023 Paper
  ☆39Updated 2 years ago
• cor0ps / codeql
  收集规则
  ☆30Updated 2 years ago
• seecode-audit / seecode-scanner
  SeeCode Scanner 扫描引擎
  ☆2Updated 5 years ago
• 1135 / Kong_exploit
  ☆41Updated 4 years ago
• iiiusky / java_iast_example
  JAVA IAST Example
  ☆48Updated 3 years ago
• ASTTeam / Semgrep
  《深入理解Semgrep》Finding vulnerabilities with Semgrep.
  ☆47Updated last year
• yuligesec / extractor-java
  CodeQL extractor for java, which don't need to compile java source
  ☆10Updated 2 years ago
• LuckyC4t / gosec-m
  gosec动态规则修改版
  ☆12Updated 3 years ago
• Marcono1234 / codeql-java-queries
  Personal CodeQL queries
  ☆61Updated this week
• uknowsec / Frida-Hook-In-Java-Notes
  Java层frida hook学习笔记 https://uknowsec.cn
  ☆46Updated 5 years ago
• h2-stack / LL-RASP
  Low-level RASP: Protecting Applications Implemented in High-level Programming Languages
  ☆59Updated last year
• langligelang / maobugs
  java 漏洞平台包含各种CVE
  ☆23Updated 2 years ago
• codeplutos / java-stack-trace
  ☆18Updated 6 years ago