Pinned
Repositories
- DongTai-web
dongtai web is the front-end project of "huoxian DongTaiIast" and is responsible for page display
- DongTai
DongTai is an interactive application security testing(IAST) product that supports the detection of OWASP WEB TOP 10 vulnerabilities, multi-request related vulnerabilities (including logic vulnerabilities, unauthorized access vulnerabilities, etc.), third-party component vulnerabilities, etc.
- DongTai-agent-java
Java Agent is a Java application probe of DongTai IAST, which collects method invocation data during runtime of Java application by dynamic hooks.
- DongTai-webapi
DongTai-WebAPI is used to DongTai IAST user resource management
- DongTai-openapi
DongTai-openapi is used to process probe registration, issue hook strategies, receive method call data/component data/error log/heartbeat data, issue vulnerability detection tasks, issue packet replay data, etc.
- dongtai-deploy
DongTai-Deploy is used to quickly deploy DongTai.
- DongTai-engine
DongTai-engine used to analyze the method data collected by the probe, analyze whether there are vulnerabilities in API requests through the algorithm of taint tracking, and is also responsible for timing tasks, including: expired log cleaning, probe state maintenance, data packet replay processing, etc.
- dongtai-core
Provides the Django Model class that the DongTai project depends on, the Django API abstract class of the DongTai project, the vulnerability detection engine, constants, documents, etc.
- Dongtai-Base-Image
DongTai-Base-Image is used to build DongTai's basic services, including MySql, Redis
- DongTai-Doc
DongTai IAST documentation.