dsogroup / DevSecOps
开发和安全和运营:DevSecOps-Software development (Dev) and Security (Sec) and IT operations (Ops).
☆22Updated 7 months ago
Related projects ⓘ
Alternatives and complementary repositories for DevSecOps
- 《深入理解DAST动态应用程序安全测试》Dynamic Application Security Testing.☆47Updated 2 years ago
- vulhub-compose是一款屏蔽docker-compose的命令行工具,目的是降低火线平台社区用户使用vulhub靶场的难度,减少学习docker-compose的时间成本;同时,支持直接安装洞态IAST(原灵芝IAST)到vulhub靶场,用于漏洞复现、漏洞挖掘。☆45Updated 3 years ago
- WAF自动化质量测试工具☆19Updated 2 years ago
- 手把手教你写IAST系列☆24Updated 10 months ago
- 代码审计自动化系统,底层架构为蜻蜓编排系统,墨菲SCA,fortify,SemGrep,hema☆25Updated last month
- 解答开发关于安全漏洞的常见问题☆41Updated 4 years ago
- ☆41Updated 4 years ago
- 基于SpringBoot编写的常见Web漏洞安全开发学习平台☆22Updated 2 years ago
- 收集规则☆30Updated last year
- 一款根据pom.xml获取引用的第三方组件的版本号并识别组件漏洞的工具☆20Updated last year
- springboot getRequestURI acl bypass☆37Updated 4 years ago
- ThinkPHP各版本反序列化利用代码☆32Updated 4 years ago
- Optical Chain Scanner 光链安全扫描器☆56Updated 3 years ago
- API Security DAST & Oprations☆16Updated last year
- CodeQL extractor for java, which don't need to compile java source☆10Updated last year
- ☆16Updated last year
- cloud-audit (云安全审计助手)是检测公有云厂商AK/SK泄漏被利用的工具,通过定期调用云平台接口审计日志,基于异常行为/黑特征/基线发现疑似入侵行为。☆33Updated 5 months ago
- 一个可以自定规则的动扫描器,支持主动和被动扫描☆25Updated 3 years ago
- Yapi RCE漏洞批量验证与伪交互SHELL☆42Updated 3 years ago
- notes☆26Updated 2 years ago
- ☆19Updated last year
- 安卓APP安全测试所列资源☆17Updated 6 years ago
- 代码审计辅助工具☆36Updated 4 years ago
- CodeQL中文资料和常见使用解释。Chinese version of Codeql documents☆9Updated 4 years ago
- 一个可快速“搬运”cookie的Burp Suite插件☆25Updated 6 years ago