HXSecurity / DongTai-engineLinks
This repository has been merged into https://github.com/HXSecurity/DongTai. DongTai-engine used to analyze the method data collected by the probe, analyze whether there are vulnerabilities in API requests through the algorithm of taint tracking, and is also responsible for timing tasks, including: expired log cleaning, probe state maintenance, …
☆20Updated 3 years ago
Alternatives and similar repositories for DongTai-engine
Users that are interested in DongTai-engine are comparing it to the libraries listed below
Sorting:
- 超硬核!使用图数据技术发现软件漏洞☆184Updated 3 years ago
- 基于JVM-Sandbox实现RASP安全监控防护☆52Updated last year
- ☆22Updated 5 years ago
- A benchmark to evaluate taint analysis☆29Updated 3 years ago
- ☆28Updated 5 years ago
- 静态分析及代码审计自动化相关资料收集☆296Updated 3 years ago
- A Vulnerable Web App written by JavaScript (Vue+Egg)☆12Updated 9 months ago
- 企业级安全智能化实践☆69Updated 3 years ago
- 这个脚本主要提供对pypi供应链的源头进行安全扫描研究,扫描并发现未知的恶意包情况。☆28Updated 2 years ago
- browser_vuln_check ,利用已知的浏览器漏洞PoC 来快速检测Webview 和浏览器环境是否存在安全漏洞,只需要访问run.html 即可获取所有扫描结果,适用场景包含:APP 发布之前的内部安全测试,第三方Webview 漏洞检测等(browser_vu…☆118Updated 7 years ago
- This project contains the challenges & writeups for LANCTF 2019☆15Updated 6 years ago
- Dongtai-plugin-idea is an IDEA plug-in developed by DongTai team for Java Web application developers. This plug-in provides functions suc…☆27Updated last year
- 总结了一下2019年在JVM环境中使用XXE攻击的知识☆57Updated 5 years ago
- Some Docker for CTF environments☆37Updated 7 years ago
- 移动安全☆31Updated 5 years ago
- 2018大学生信息安全国赛pwn出题docker☆26Updated 7 years ago
- Google V8 with OpenRASP builtins☆56Updated 4 years ago
- ☆147Updated 6 years ago
- ☆35Updated 6 years ago
- Personal CodeQL queries☆64Updated last month
- Detecting Flow of Sensitive Data in Mini-Programs with Static Taint Analysis☆76Updated last year
- Fuzzing dictionaries for afl-fuzz/LibFuzzer☆90Updated 4 years ago
- 基于Java ASM技术和GadgetInspector的原理,尝试实现一个自动Java代码审计 工具。目前做到了可控参数分析和数据流跟踪分析☆36Updated 3 years ago
- log4j2-vaccine☆84Updated 3 years ago
- ☆131Updated 3 years ago
- 移动安全检测平台,支持Android和iOS应用辅助分析。☆46Updated 5 years ago
- S&P2023 Paper☆39Updated 2 years ago
- A Java runtime information-gathering tool which uses the Java Attach API for information acquisition☆204Updated 4 years ago
- SeeCode Scanner 扫描引擎☆2Updated 5 years ago
- CVE Data Analysis, CVE Monitor, CVE EXP Prediction Based on Deep Learning. 1999-2020年存量CVE数据分析、监控CVE增量更新、基于深度学习的CVE EXP预测和自动化推送☆174Updated 2 years ago