DongTai-engine

Whit is DongTai-Engine?

DongTai-Engine is used to process the data collected by the DongTai probe, and its functions are as follows：

Analyze whether there are vulnerabilities in HTTP/HTTPS/RPC requests based on method pool data and taint tracking algorithms
Handle vulnerability verification requests regularly
Regularly update the vulnerabilities in the components
Regularly clean up expired log data
Regularly maintain the status of the probe detection engine

Deploy

Basic services：MySql、Redis

The basic service configuration is as follows：

service name	ip	port	additional
MySql	127.0.0.1	3306	account：dongtai password：dongtai-iast database name：dongtai_webapi
Redis	127.0.0.1	6379	password：123456 Redis db：0

Official image

Pull image

$ docker pull registry.cn-beijing.aliyuncs.com/huoxian_pub/dongtai-engine:latest

Create a configuration file：/etc/dongtai/config.ini，The content is as follows：

[mysql]
host = 127.0.0.1
port = 3306
name = dongtai_webapi
user = dongtai
password = dongtai-iast

[redis]
host = 127.0.0.1
port = 6379
password = 123456
db = 0

; The following content unused, keep the default
[engine]
url = http://engine_url


[smtp]
server = server
user = user
password = password
from_addr = from_addr
ssl = False
cc_addr = cc_addr

[aliyun_oss]
access_key = access_key
access_key_secret = access_key

Start the dongtai-engine container and map the configuration file

$ docker run -d --name dongtai-engine -v /etc/dongtai/config.ini:/opt/dongtai/engine/conf/config.ini --restart=always secnium/iast-saas-engine:latest

Start the dongtai-engine-task container and map the configuration file

$ docker run -d --name dongtai-engine-task -v /etc/dongtai/config.ini:/opt/dongtai/engine/conf/config.ini --restart=always secnium/iast-saas-engine:latest bash /opt/dongtai/engine/docker/entrypoint.sh

Build custom image

Build image

$ docker build -t secnium/iast-saas-engine:latest .

Create a configuration file：/etc/dongtai/config.ini，The content is as follows：

[mysql]
host = 127.0.0.1
port = 3306
name = dongtai_webapi
user = dongtai
password = dongtai-iast

[redis]
host = 127.0.0.1
port = 6379
password = 123456
db = 0

; The following content unused, keep the default
[engine]
url = http://engine_url

[smtp]
server = server
user = user
password = password
from_addr = from_addr
ssl = False
cc_addr = cc_addr

[aliyun_oss]
access_key = access_key
access_key_secret = access_key

Start the dongtai-engine container and map the configuration file

$ docker run -d --name dongtai-engine -v /etc/dongtai/config.ini:/opt/dongtai/engine/conf/config.ini --restart=always secnium/iast-saas-engine:latest

Start the dongtai-engine-task container and map the configuration file

$ docker run -d --name dongtai-engine-task -v /etc/dongtai/config.ini:/opt/dongtai/engine/conf/config.ini --restart=always secnium/iast-saas-engine:latest bash /opt/dongtai/engine/docker/entrypoint.sh

Contributing

Contributions are welcomed and greatly appreciated. See CONTRIBUTING.md for details on submitting patches and the contribution workflow.

Any questions? Let's discuss in #DongTai discussions

Name		Name	Last commit message	Last commit date
Latest commit History 421 Commits
.github		.github
bin		bin
conf		conf
core		core
deploy		deploy
docker		docker
i18n		i18n
lingzhi_engine		lingzhi_engine
logs		logs
signals		signals
templates		templates
test		test
upload/reports		upload/reports
vuln		vuln
.dockerignore		.dockerignore
.gitignore		.gitignore
CONTRIBUTING.md		CONTRIBUTING.md
Dockerfile		Dockerfile
DockerfileTest		DockerfileTest
LICENSE		LICENSE
README.md		README.md
README_CN.md		README_CN.md
manage.py		manage.py
requirements-prod.txt		requirements-prod.txt
requirements-test.txt		requirements-test.txt

License

HXSecurity/DongTai-engine

Folders and files

Latest commit

History

Repository files navigation

DongTai-engine

Whit is DongTai-Engine?

Deploy

Official image

Build custom image

Contributing

More resources

About

Topics

Resources

License

Code of conduct

Stars

Watchers

Forks

Languages