Pinned Repositories
anydebugger
anydebugger, debug web page anywhere.
blogs
笔记,心得,摘抄,各种杂项
DongTai
DongTai is an interactive application security testing(IAST) product that supports the detection of OWASP WEB TOP 10 vulnerabilities, multi-request related vulnerabilities (including logic vulnerabilities, unauthorized access vulnerabilities, etc.), third-party component vulnerabilities, etc.
DongTai-agent-java
Java Agent is a Java application probe of DongTai IAST, which collects method invocation data during runtime of Java application by dynamic hooks.
DongTai-engine
DongTai-engine used to analyze the method data collected by the probe, analyze whether there are vulnerabilities in API requests through the algorithm of taint tracking, and is also responsible for timing tasks, including: expired log cleaning, probe state maintenance, data packet replay processing, etc.
DongTai-openapi
DongTai-openapi is used to process probe registration, issue hook strategies, receive method call data/component data/error log/heartbeat data, issue vulnerability detection tasks, issue packet replay data, etc.
gemmi.github.io
gemmi's page
HackJava
《Java安全-只有Java安全才能拯救宇宙》Only Java Security Can Save The Universe.
LookupInterface
CodeQL 寻找 JNDI利用 Lookup接口
upstall
Update packages with semver "latest" in dependencies and devdependencies of package.json to the latest version ignoring locked version in package.lock.json before npm install command.
gemmi's Repositories
gemmi/upstall
Update packages with semver "latest" in dependencies and devdependencies of package.json to the latest version ignoring locked version in package.lock.json before npm install command.
gemmi/anydebugger
anydebugger, debug web page anywhere.
gemmi/blogs
笔记,心得,摘抄,各种杂项
gemmi/DongTai
DongTai is an interactive application security testing(IAST) product that supports the detection of OWASP WEB TOP 10 vulnerabilities, multi-request related vulnerabilities (including logic vulnerabilities, unauthorized access vulnerabilities, etc.), third-party component vulnerabilities, etc.
gemmi/DongTai-agent-java
Java Agent is a Java application probe of DongTai IAST, which collects method invocation data during runtime of Java application by dynamic hooks.
gemmi/DongTai-engine
DongTai-engine used to analyze the method data collected by the probe, analyze whether there are vulnerabilities in API requests through the algorithm of taint tracking, and is also responsible for timing tasks, including: expired log cleaning, probe state maintenance, data packet replay processing, etc.
gemmi/DongTai-openapi
DongTai-openapi is used to process probe registration, issue hook strategies, receive method call data/component data/error log/heartbeat data, issue vulnerability detection tasks, issue packet replay data, etc.
gemmi/gemmi.github.io
gemmi's page
gemmi/HackJava
《Java安全-只有Java安全才能拯救宇宙》Only Java Security Can Save The Universe.
gemmi/LookupInterface
CodeQL 寻找 JNDI利用 Lookup接口
gemmi/mock-server
gemmi/openresty-proxy-purge-example
example about using lua purge nginx proxy cache
gemmi/Slithice
the repository of Slithice project
gemmi/tabby
A CAT called tabby ( Code Analysis Tool )
gemmi/test
test
gemmi/vscode
Visual Studio Code