HXSecurity / DongTai-engineLinks
This repository has been merged into https://github.com/HXSecurity/DongTai. DongTai-engine used to analyze the method data collected by the probe, analyze whether there are vulnerabilities in API requests through the algorithm of taint tracking, and is also responsible for timing tasks, including: expired log cleaning, probe state maintenance, …
☆20Updated 3 years ago
Alternatives and similar repositories for DongTai-engine
Users that are interested in DongTai-engine are comparing it to the libraries listed below
Sorting:
- 超硬核!使用图数据技术发现软件漏洞☆185Updated 4 years ago
- ☆22Updated 6 years ago
- 静态分析及代码审计自动化相关资料收集☆299Updated 3 years ago
- 基于JVM-Sandbox实现RASP安全监控防护☆53Updated 2 years ago
- A benchmark to evaluate taint analysis☆28Updated 3 years ago
- Personal CodeQL queries☆63Updated 3 weeks ago
- A Vulnerable Web App written by JavaScript (Vue+Egg)☆12Updated last year
- ☆28Updated 5 years ago
- 企业级安全智能化实践☆70Updated 3 years ago
- SCTF2020☆86Updated 5 years ago
- 安全大佬 Top 100☆67Updated 3 years ago
- 静态分析笔记 Static-Analysis-Notes 程序分析笔记 资源分享☆186Updated 2 years ago
- 这个脚本主要提供对pypi供应链的源头进行�安全扫描研究,扫描并发现未知的恶意包情况。☆28Updated 2 years ago
- Low-level RASP: Protecting Applications Implemented in High-level Programming Languages☆69Updated 2 months ago
- S&P2023 Paper☆39Updated 3 years ago
- ☆26Updated 4 years ago
- A declarative static analysis tool for jvm bytecode based Datalog like CodeQL☆343Updated 2 years ago
- 2018大学生信息安全国赛pwn出题docker☆26Updated 7 years ago
- 一个利用ASM对字节码进行污点传播分析的静态代码审计应用(添加了大量代码注释,适合大家进行源码学习)。也加入了挖掘Fastjson反序列化gadget chains和SQLInject(JdbcTemplate、MyBatis、JPA、Hibernate、原生jdbc等)静…☆454Updated 3 years ago
- ☆35Updated 7 years ago
- This project contains the challenges & writeups for LANCTF 2019☆15Updated 6 years ago
- 基于Java ASM技术和GadgetInspector的原理,尝试实现一个自动Java代码审计工具。目前做到了可控参数分析和数据流跟踪分析☆39Updated 4 years ago
- CVE exploits for Web, Windows, Linux and others are independently written by Zhuri Lab☆46Updated 5 years ago
- Fuzzing dictionaries for afl-fuzz/LibFuzzer☆92Updated 4 years ago
- 移动安全☆32Updated 5 years ago
- 移动安全知识库☆98Updated 3 years ago
- CVE Data Analysis, CVE Monitor, CVE EXP Prediction Based on Deep Learning. 1999-2020年存量CVE数据分析、监控CVE增量更新、基于深度学习的CVE EXP预测和自动化推送☆175Updated 2 years ago
- codemillx is a tool for CodeQL, extract the comments in the code and generate codeql module. 强化Go开源项目安全检测(�内含开源项目漏洞挖掘方法)☆205Updated 3 years ago
- Taint analysis implementation based on Heros and Soot☆45Updated last year
- Browser Fuzz Summarize / 浏览器模糊测试综述☆142Updated 5 years ago