DongTai-openapi is used to process probe registration, issue hook strategies, receive method call data/component data/error log/heartbeat data, issue vulnerability detection tasks, issue packet replay data, etc.

华为安全检测服务kotlin示例代码，提供系统完整性检测、恶意URL检测、应用安全检测、虚假用户检测、恶意Wi-Fi检测，快速构建应用安全。

敏感数据处理库：基于BC库与Mybatisplus-Mate SM2&SM4-注解式自动加解密、自动加签验签前端数据

该组件是在spring-security基础上，做了大量的定制化开发，使其支持已最简单的方式应用于我们的系统当中。 并且最大化遵循spring-security原生的设计思路，避免重复不必要的设计。设计过程中预留了相当多的可扩展接口，最大限度支持 二次开发。组件特色是在前后端分离场景下做了大量支持，默认使用缓存方式做账户信息存储。

DongTai-WebAPI is used to DongTai IAST user resource management

Apache Rampart 是 Axis2 的安全模块，用来为 Axis2 Web服务提供认证、集成、保密等功能，实现了 WS-Security 协议堆栈

DongTai-engine used to analyze the method data collected by the probe, analyze whether there are vulnerabilities in API requests through the algorithm of taint tracking, and is also responsible for timing tasks, including: expired log cleaning, probe st...

Provides the Django Model class that the DongTai project depends on, the Django API abstract class of the DongTai project, the vulnerability detection engine, constants, documents, etc.

dongtai web is the front-end project of "huoxian DongTaiIast" and is responsible for page display

xss攻击

A preference implementation for secret data providing confidentiality, integrity and authenticity. Per default uses AES-GCM, BCrypt and HKDF as cryptographic primitives.

使用 python matplotlib 统计des密码分析，并展示到前端