HXSecurity / DongTai-engineLinks
This repository has been merged into https://github.com/HXSecurity/DongTai. DongTai-engine used to analyze the method data collected by the probe, analyze whether there are vulnerabilities in API requests through the algorithm of taint tracking, and is also responsible for timing tasks, including: expired log cleaning, probe state maintenance, …
☆20Updated 3 years ago
Alternatives and similar repositories for DongTai-engine
Users that are interested in DongTai-engine are comparing it to the libraries listed below
Sorting:
- 基于JVM-Sandbox实现RASP安全监控防护☆53Updated 2 years ago
- 超硬核!使用图数据技术发现软件漏洞☆185Updated 4 years ago
- A benchmark to evaluate taint analysis☆28Updated 3 years ago
- 静态分析及代码审计自动化相关资料收集☆298Updated 3 years ago
- ☆22Updated 6 years ago
- Personal CodeQL queries☆63Updated last month
- A Vulnerable Web App written by JavaScript (Vue+Egg)☆12Updated last year
- 2018大学生信息安全国赛pwn出题docker☆26Updated 7 years ago
- SCTF2020☆86Updated 5 years ago
- ☆28Updated 5 years ago
- 企业级安全智能化实践☆70Updated 3 years ago
- CVE exploits for Web, Windows, Linux and others are independently written by Zhuri Lab☆46Updated 5 years ago
- 基于Java ASM技术和GadgetInspector的原理,尝试实现一个自动Java代码审计工具。目前做到了可控参数分析和数据流跟踪分析☆39Updated 4 years ago
- browser_vuln_check ,利用已知的浏览器漏洞PoC 来快速检测Webview 和浏览器环境是否存在安全漏洞,只需要访问run.html 即可获取所有扫描结果,适用场景包含:APP 发布之前的内部安全测试,第三方Webview 漏洞检测等(browser_vu…☆118Updated 8 years ago
- 总结了一下2019年在JVM环境中使用XXE攻击的知识☆58Updated 6 years ago
- ☆35Updated 7 years ago
- A curated list of audit rules which extract from Source Code Auditing tools.☆15Updated 5 years ago
- ☆131Updated 3 years ago
- ☆26Updated 4 years ago
- Browser Fuzz Summarize / 浏览器模糊测试综述☆142Updated 5 years ago
- Fuzzing dictionaries for afl-fuzz/LibFuzzer☆92Updated 4 years ago
- S&P2023 Paper☆39Updated 3 years ago
- ☆78Updated 5 years ago
- 这个脚本主要提供对pypi供应链的源头进行安全扫描研究,扫描并发现未知的恶意包情况。☆28Updated 2 years ago
- 一个针对防御 log4j2 CVE-2021-44228 漏洞的 RASP 工具。 A Runtime Application Self-Protection module specifically designed for log4j2 RCE (CVE-2021-442…☆124Updated 4 years ago
- 🌶 一些和容器化/容器编排/服务网格等技术相关的安全代码片段[自用备份]☆81Updated 4 years ago
- ☆153Updated 6 years ago
- NoSQLInjectionAttackDemo is website demo for test NoSQL Injection. There are two website demos in this project and all databases are mong…☆41Updated 9 years ago
- Simple source code security audit helper☆50Updated 2 months ago
- Detecting Flow of Sensitive Data in Mini-Programs with Static Taint Analysis☆82Updated last year