67 skills found · Page 1 of 3
baidu / Openrasp🔥Open source RASP solution
HXSecurity / DongTaiDongtai IAST is an open-source Interactive Application Security Testing (IAST) tool that enables real-time detection of common vulnerabilities in Java applications and third-party components through passive instrumentation. It is particularly suitable for use in the testing phase of the development pipeline.
OWASP-Benchmark / BenchmarkJavaOWASP Benchmark is a test suite designed to verify the speed and accuracy of software vulnerability detection tools. A fully runnable web app written in Java, it supports analysis by Static (SAST), Dynamic (DAST), and Runtime (IAST) tools that support Java. The idea is that since it is fully runnable and all the vulnerabilities are actually exploitable, it’s a fair test for any kind of vulnerability detection tool. For more details on this project, please see the OWASP Benchmark Project home page.
HXSecurity / DongTai Agent JavaJava Agent is a Java application probe of DongTai IAST, which collects method invocation data during runtime of Java application by dynamic hooks.
alipay / Ant Application Security Testing BenchmarkxAST评价体系,让安全工具不再“黑盒”. The xAST evaluation benchmark makes security tools no longer a "black box".
baidu-security / Openrasp IastIAST 灰盒扫描工具
lokerxx / JavaVulJAVA 安全靶场,IAST 测试用例,JAVA漏洞复现,代码审计,SAST测试用例,安全扫描(主动和被动),JAVA漏洞靶场,RASP测试用例 ; Java Security Testbed, IAST Test Cases, Java Vulnerability Reproduction, Code Auditing, SAST Test Cases, Security Scanning (Active and Passive), Java Vulnerability Testbed, RASP Test Cases
DenisPodgurskii / PentestkitOWASP PTK - application security browser extension.
Zigrin-Security / CakeFuzzerCake Fuzzer is a project that is meant to help automatically and continuously discover vulnerabilities in web applications created based on specific frameworks with very limited false positives.
karthikraman / PanchangamComputing the Indian calendar/panchangam and festivals using Swiss ephemeris
keven1z / SimpleIASTsimpleIAST- 基于污点追踪的灰盒漏洞扫描工具。
bupt-ai-cz / IAST ECCV2020IAST: Instance Adaptive Self-training for Unsupervised Domain Adaptation (ECCV 2020) https://teacher.bupt.edu.cn/zhuchuang/en/index.htm
Raykoooo / IASTIAST: Instance Adaptive Self-training for Unsupervised Domain Adaptation (ECCV 2020)
nxenon / DevSecOps♾️ Collection of DevSecOps Notes + Resources + Courses + Tools
CorySimon / PyIASTIdeal Adsorbed Solution Theory
iiiusky / Java Iast ExampleJAVA IAST Example
HXSecurity / Vulhub Composevulhub-compose是一款屏蔽docker-compose的命令行工具,目的是降低火线平台社区用户使用vulhub靶场的难度,减少学习docker-compose的时间成本;同时,支持直接安装洞态IAST(原灵芝IAST)到vulhub靶场,用于漏洞复现、漏洞挖掘。
HXSecurity / DongTai Agent GoGo Agent is a go application probe of DongTai IAST, which collects method invocation data during runtime of Go application by dynamic hooks.
Contrast-Security-OSS / Safelog4jSafelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning or upgrading
OsmanKandemir / Static Code Analysis HelperStatic-Code-Analysis-Helper helps you perform static code analysis.
