HXSecurity / DongTai-engineLinks
This repository has been merged into https://github.com/HXSecurity/DongTai. DongTai-engine used to analyze the method data collected by the probe, analyze whether there are vulnerabilities in API requests through the algorithm of taint tracking, and is also responsible for timing tasks, including: expired log cleaning, probe state maintenance, …
☆20Updated 3 years ago
Alternatives and similar repositories for DongTai-engine
Users that are interested in DongTai-engine are comparing it to the libraries listed below
Sorting:
- 超硬核!使用图数据技术发现软件漏洞☆184Updated 4 years ago
- ☆22Updated 6 years ago
- Personal CodeQL queries☆63Updated last week
- 基于JVM-Sandbox实现RASP安全监控防护☆53Updated 2 years ago
- A benchmark to evaluate taint analysis☆28Updated 3 years ago
- 静态分析及代码审计自动化相关资料收集☆298Updated 3 years ago
- ☆28Updated 5 years ago
- browser_vuln_check ,利用已知的浏览器漏洞PoC 来快速检测Webview 和浏览器环境是否存在安全漏洞,只需要访问run.html 即可获取所有扫描结果,适用场景包含:APP 发布之前的内部安全测试,第三方Webview 漏洞检测等(browser_vu…☆118Updated 8 years ago
- A Vulnerable Web App written by JavaScript (Vue+Egg)☆12Updated last year
- 总结了一下2019年在JVM环境中使用XXE攻击的知识☆58Updated 6 years ago
- 企业级安全智能化实践☆70Updated 3 years ago
- S&P2023 Paper☆39Updated 3 years ago
- ☆131Updated 3 years ago
- 基于Java ASM技术和GadgetInspector的原理,尝试实现一个自动Java代码审计工具。目前做到了可控参数分析和数据流跟踪分析☆39Updated 4 years ago
- CVE exploits for Web, Windows, Linux and others are independently written by Zhuri Lab☆46Updated 4 years ago
- A Java runtime information-gathering tool which uses the Java Attach API for information acquisition☆204Updated 4 years ago
- 移动安全检测平台,支持Android和iOS应用辅助分析。☆47Updated 5 years ago
- Python Agent is a Python application probe of DongTai IAST, which collects method invocation data during runtime of Python application by…☆23Updated 3 years ago
- Low-level RASP: Protecting Applications Implemented in High-level Programming Languages☆69Updated 2 months ago
- Fuzzing dictionaries for afl-fuzz/LibFuzzer☆91Updated 4 years ago
- 2018大学生信息安全国赛pwn出题docker☆26Updated 7 years ago
- 移动安全☆31Updated 5 years ago
- Google V8 with OpenRASP builtins☆57Updated 4 years ago
- SCTF2020☆86Updated 5 years ago
- 安全大佬 Top 100☆67Updated 3 years ago
- Browser Fuzz Summarize / 浏览器模糊测试综述☆142Updated 5 years ago
- 一个利用ASM对字节码进行污点传播分析的静态代码审计应用(添加了大量代码注释,适合大家进行源码学习)。也加入了挖掘Fastjson反序列化gadget chains和SQLInject(JdbcTemplate、MyBatis、JPA、Hibernate、原生jdbc等)静…☆454Updated 3 years ago
- ☆152Updated 6 years ago
- Dongtai-plugin-idea is an IDEA plug-in developed by DongTai team for Java Web application developers. This plug-in provides functions suc…☆32Updated 2 years ago
- 一个针对防御 log4j2 CVE-2021-44228 漏洞的 RASP 工具。 A Runtime Application Self-Protection module specifically designed for log4j2 RCE (CVE-2021-442…☆123Updated 4 years ago