{"id":19123435,"url":"https://github.com/astteam/dast","last_synced_at":"2026-03-01T19:01:33.992Z","repository":{"id":107948886,"uuid":"448939160","full_name":"ASTTeam/DAST","owner":"ASTTeam","description":"《深入理解DAST动态应用程序安全测试》Dynamic Application Security Testing.","archived":false,"fork":false,"pushed_at":"2022-10-29T01:37:40.000Z","size":5,"stargazers_count":49,"open_issues_count":0,"forks_count":2,"subscribers_count":2,"default_branch":"main","last_synced_at":"2025-02-22T13:36:22.516Z","etag":null,"topics":["0e0w","dast"],"latest_commit_sha":null,"homepage":"","language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/ASTTeam.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2022-01-17T15:03:13.000Z","updated_at":"2024-12-28T17:54:30.000Z","dependencies_parsed_at":null,"dependency_job_id":"d2b86b22-0076-4121-a67b-80dc93182991","html_url":"https://github.com/ASTTeam/DAST","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/ASTTeam/DAST","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ASTTeam%2FDAST","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ASTTeam%2FDAST/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ASTTeam%2FDAST/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ASTTeam%2FDAST/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/ASTTeam","download_url":"https://codeload.github.com/ASTTeam/DAST/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ASTTeam%2FDAST/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":29980781,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-03-01T16:35:47.903Z","status":"ssl_error","status_checked_at":"2026-03-01T16:35:44.899Z","response_time":124,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.5:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["0e0w","dast"],"created_at":"2024-11-09T05:25:39.007Z","updated_at":"2026-03-01T19:01:33.952Z","avatar_url":"https://github.com/ASTTeam.png","language":null,"funding_links":[],"categories":[],"sub_categories":[],"readme":"# 《深入理解DAST动态应用程序安全测试》\n\n![DAST](https://socialify.git.ci/ASTTeam/DAST/image?description=1\u0026font=Inter\u0026forks=1\u0026issues=1\u0026name=1\u0026owner=1\u0026pattern=Floating%20Cogs\u0026pulls=1\u0026stargazers=1\u0026theme=Light)\n\nDAST在安全测试领域相当重要，不仅是发现漏洞的有效方法，也是发现漏洞的最直接方法。尽管DAST有时弊病百出，比如效果严重依赖有技术壁垒的爬虫技术、会产生大量的脏数据、特定漏洞无法检测等诸多问题。但DAST的出现直接推动了安全漏洞的出现。下一代DAST必然会因为成本较低而继续发展壮大！作者：[0e0w](https://github.com/0e0w)\n\n本项目创建于2022年1月17日，最近的一次更新时间为2022年10月28日。\n\n- [01-DAST资源](https://github.com/ASTTeam/DAST#01-dast%E8%B5%84%E6%BA%90)\n- [02-DAST工具](https://github.com/ASTTeam/DAST#02-dast%E5%B7%A5%E5%85%B7)\n- [03-DAST原理](https://github.com/ASTTeam/DAST#03-dast%E5%8E%9F%E7%90%86)\n- [04-DAST开发](https://github.com/ASTTeam/DAST#04-dast%E5%BC%80%E5%8F%91)\n- [05-DAST未来](https://github.com/ASTTeam/DAST#05-dast%E6%9C%AA%E6%9D%A5)\n- [06-DAST参考](https://github.com/ASTTeam/DAST#06-dast%E5%8F%82%E8%80%83)\n\n## 01-DAST资源\n\n一、书籍资源\n\n二、学术论文\n\n三、视频资源\n\n四、优秀资源\n\n五、英文资源\n\n六、其他资源\n- [ ] https://github.com/banzaicloud/dast-operator\n- [ ] https://github.com/analysis-tools-dev/dynamic-analysis\n- [ ] https://github.com/zaproxy/action-full-scan\n- [ ] https://github.com/probr/probr-core\n- [ ] https://github.com/yufei1900/DAST_segmentation\n- [ ] https://github.com/jacksingleton/dast-pipeline\n- [ ] https://github.com/zaproxy/zaproxy\n- [ ] https://github.com/we45/ThreatPlaybook\n- [ ] https://github.com/probr/probr-core\n- [ ] https://github.com/Yelp/fuzz-lightyear\n- [ ] https://github.com/secdec/attack-surface-detector-zap\n- [ ] https://github.com/yufei1900/DAST_segmentation\n- [ ] https://github.com/mvnnn/DAStudentWeb\n- [ ] https://github.com/tristanlatr/burpa\n- [ ] https://github.com/crashtest-security/github-action\n- [ ] https://github.com/julietavuan/dast\n- [ ] https://github.com/MettupalliInc/DAST\n\n## 02-DAST工具\n\n一、优秀工具\n- AWVS\n- NESSUS\n- Xray\n- BurpSuite\n- https://www.zaproxy.org\n\n二、开源工具\n\n三、商业产品\n\n四、其他工具\n- https://github.com/Hypdncy/NessusToReport\n- https://github.com/analysis-tools-dev/dynamic-analysis\n\n## 03-DAST原理\n\n一、DAST基础\n\n二、DAST分类\n- 主动扫描\n- 被动扫描\n  - https://github.com/0e0w/PassivesScan\n\n## 04-DAST开发\n\n- 如何开发一款优秀的DAST工具？\n\n## 05-DAST未来\n\n- 什么样的DAST是未来有竞争力的产品？\n\n## 06-DAST参考\n\n- http://github.com/Goqi\n\n[![Stargazers over time](https://starchart.cc//ASTTeam/DAST.svg)](https://starchart.cc/ASTTeam/DAST)\n\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fastteam%2Fdast","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fastteam%2Fdast","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fastteam%2Fdast/lists"}