Dongtai IAST is an open-source Interactive Application Security Testing (IAST) tool that enables real-time detection of common vulnerabilities in Java applications and third-party components through passive instrumentation. It is particularly suitable for use in the testing phase of the development pipeline.
agentFile = new File(IastProperties.class.getProtectionDomain().getCodeSource().getLocation().getFile());
basePath = agentFile.getParentFile().getPath();
报错日志
JAVA_Demo java -javaagent:agent.jar -Ddebug.name=true -Dproject.name='publiccms' -jar webgoat-server-8.0.0.M14.jar
Not running with JDK!
[cn.huoxian.dongtai.iast] The engine configuration file is initialized successfully. file is /Users/xxx/Documents/My%20Project/IAST/JAVA_Demo/config/iast.properties
开启延时加载模式,检测引擎将在10s后启动
Preflight Checklist
Version
1.0.3
Installation Type
Official Docker Compose
Service Name
DongTai-Engine
Describe the details of the bug and the steps to reproduce it
java环境1.8
由于path路径存在空格导致dongtai agent IastProperties geninstance 无法找到对应应用目录报错,且创建不存在目录
报错日志
Additional Information
No response
Logs
No response