-
Stars1
-
LanguageJava
-
License
Apache License 2.0 -
Created almost 3 years ago
-
Updated almost 3 years ago
Reviews
There are no reviews yet. Be the first to send feedback to the community and the maintainers!
Repository Details
More Repositories
1
DongTai
Dongtai IAST is an open-source Interactive Application Security Testing (IAST) tool that enables real-time detection of common vulnerabilities in Java applications and third-party components through passive instrumentation. It is particularly suitable for use in the testing phase of the development pipeline.Python
1,233
2
DongTai-agent-java
Java Agent is a Java application probe of DongTai IAST, which collects method invocation data during runtime of Java application by dynamic hooks.Java
663
3
TerraformGoat
TerraformGoat is HXSecurity research lab's "Vulnerable by Design" multi cloud deployment tool.
HCL
500
4
DongTai-Doc
DongTai IAST documentation.HTML
242
5
DongTai-SDK-Python
DongTai API SDKPython
51
6
vulhub-compose
vulhub-compose是一款屏蔽docker-compose的命令行工具,目的是降低火线平台社区用户使用vulhub靶场的难度,减少学习docker-compose的时间成本;同时,支持直接安装洞态IAST(原灵芝IAST)到vulhub靶场,用于漏洞复现、漏洞挖掘。Python
44
7
CloudSecWiki
CloudSecWiki is a cloud security oriented knowledge base maintained by HuoCorp.JavaScript
42
8
DongTai-agent-go
Go Agent is a go application probe of DongTai IAST, which collects method invocation data during runtime of Go application by dynamic hooks.Go
39
9
DongTai-agent-python
Python Agent is a Python application probe of DongTai IAST, which collects method invocation data during runtime of Python application by dynamic hooks.C
22
10
DongTai-Plugin-IDEA
Dongtai-plugin-idea is an IDEA plug-in developed by DongTai team for Java Web application developers. This plug-in provides functions such as vulnerability detection and code audit during application development, enabling developers to find application vulnerabilities more intuitively, quickly and in real time during application development.Java
22
11
DongTai-engine
This repository has been merged into https://github.com/HXSecurity/DongTai. DongTai-engine used to analyze the method data collected by the probe, analyze whether there are vulnerabilities in API requests through the algorithm of taint tracking, and is also responsible for timing tasks, including: expired log cleaning, probe state maintenance, data packet replay processing, etc.Python
19
12
DongTai-web
dongtai web is the front-end project of "huoxian DongTaiIast" and is responsible for page displayCSS
16
13
DongTai-webapi
DongTai-WebAPI is the server part of the management tool of DongTai-IASTPython
8
14
Dongtai-Base-Image
DongTai-Base-Image is used to build DongTai's basic services, including MySql, Redis
PLpgSQL
7
15
dongtai-core
Provides the Django Model class that the DongTai project depends on, the Django API abstract class of the DongTai project, the vulnerability detection engine, constants, documents, etc.Python
5
16
DongTai-openapi
DongTai-openapi is used to process probe registration, issue hook strategies, receive method call data/component data/error log/heartbeat data, issue vulnerability detection tasks, issue packet replay data, etc.Python
5
17
dongtai-deploy
DongTai-Deploy is used to quickly deploy DongTai.Shell
4
18
DongTai-Benchmark
DongTai agent performance testJava
2
19
DongTai-docs
TypeScript
2
20
Dongtai_USB
Go
2
21
DongTai-website
DongTai-websiteHTML
1
22
DongTai-Doc-en
DongTai IAST documentation in English.
1