📦 GitHub 全球红队渗透资源中转站。
旨在收录那些“好用却难找”的安全项目。
🔗 定时推送:GitHub Trending (Security)
🛠 必备清单:后渗透、远控、免杀、提权工具集
📅 更新频率:每日精选,绝不灌水。
⚠️ 本频道仅供安全研究与授权测试使用。
旨在收录那些“好用却难找”的安全项目。
🔗 定时推送:GitHub Trending (Security)
🛠 必备清单:后渗透、远控、免杀、提权工具集
📅 更新频率:每日精选,绝不灌水。
⚠️ 本频道仅供安全研究与授权测试使用。
GitHub监控消息提醒!!!
更新了:RCE
描述:灵当CRM getLogInfo.php 文件上传致RCE的poc
URL:https://github.com/1424306324/-CRM-getLogInfo.php-RCE-poc
标签:#RCE
更新了:RCE
描述:灵当CRM getLogInfo.php 文件上传致RCE的poc
URL:https://github.com/1424306324/-CRM-getLogInfo.php-RCE-poc
标签:#RCE
GitHub监控消息提醒!!!
更新了:信息收集
描述:一款面向SRC漏洞挖掘中,页面信息收集场景的浏览器扩展,自动收集页面及相关资源中的敏感信息与可疑线索,支持基础扫描、深度递归扫描、批量 API 测试及结果导出与自定义正则配置
URL:https://github.com/yumyum-05/longxinzhiyou
标签:#信息收集
更新了:信息收集
描述:一款面向SRC漏洞挖掘中,页面信息收集场景的浏览器扩展,自动收集页面及相关资源中的敏感信息与可疑线索,支持基础扫描、深度递归扫描、批量 API 测试及结果导出与自定义正则配置
URL:https://github.com/yumyum-05/longxinzhiyou
标签:#信息收集
GitHub监控消息提醒!!!
更新了:CVE-2025
描述:CVE-2025-25256: Fortinet FortiSIEM OS Command Injection CVE PoC (Proof of Concept)
URL:https://github.com/JMS-Security/CVE-2025-25256-PoC
标签:#CVE-2025
更新了:CVE-2025
描述:CVE-2025-25256: Fortinet FortiSIEM OS Command Injection CVE PoC (Proof of Concept)
URL:https://github.com/JMS-Security/CVE-2025-25256-PoC
标签:#CVE-2025
GitHub监控消息提醒!!!
更新了:红队
描述:A.I.G (AI-Infra-Guard) 是腾讯朱雀实验室推出的 AI 红队安全测试平台,支持AI基础设施漏洞扫描、MCP Server风险检测与大模型安全体检。
URL:https://github.com/Tencent/AI-Infra-Guard
标签:#红队
更新了:红队
描述:A.I.G (AI-Infra-Guard) 是腾讯朱雀实验室推出的 AI 红队安全测试平台,支持AI基础设施漏洞扫描、MCP Server风险检测与大模型安全体检。
URL:https://github.com/Tencent/AI-Infra-Guard
标签:#红队
GitHub监控消息提醒!!!
更新了:webshell
描述:serial port webshell simulation
URL:https://github.com/skyrover001/com_ws
标签:#webshell
更新了:webshell
描述:serial port webshell simulation
URL:https://github.com/skyrover001/com_ws
标签:#webshell
GitHub监控消息提醒!!!
更新了:CVE-2025
描述:This PoC is for authorized study and testing. CVE-2025-8088 is actively exploited, and misuse may violate laws or cause harm. Update to WinRAR 7.13+ to avoid suspicious RARs.
URL:https://github.com/ghostn4444/CVE-2025-8088
标签:#CVE-2025
更新了:CVE-2025
描述:This PoC is for authorized study and testing. CVE-2025-8088 is actively exploited, and misuse may violate laws or cause harm. Update to WinRAR 7.13+ to avoid suspicious RARs.
URL:https://github.com/ghostn4444/CVE-2025-8088
标签:#CVE-2025
GitHub监控消息提醒!!!
更新了:CVE-2025
描述:🚀 Demonstrate the WinRAR CVE-2025-8088 exploit with a PoC RAR archive that installs a VBScript on startup, showcasing its impact on vulnerable systems.
URL:https://github.com/amel-62/WinRAR-CVE-2025-8088-PoC-RAR
标签:#CVE-2025
更新了:CVE-2025
描述:🚀 Demonstrate the WinRAR CVE-2025-8088 exploit with a PoC RAR archive that installs a VBScript on startup, showcasing its impact on vulnerable systems.
URL:https://github.com/amel-62/WinRAR-CVE-2025-8088-PoC-RAR
标签:#CVE-2025
GitHub监控消息提醒!!!
更新了:CVE-2025
描述:🛠️ Demonstrate CVE-2025-55188, a 7-Zip vulnerability allowing symlink attacks to overwrite files, highlighting crucial security risks for users.
URL:https://github.com/rhllsingh/CVE-2025-55188-7z-exploit
标签:#CVE-2025
更新了:CVE-2025
描述:🛠️ Demonstrate CVE-2025-55188, a 7-Zip vulnerability allowing symlink attacks to overwrite files, highlighting crucial security risks for users.
URL:https://github.com/rhllsingh/CVE-2025-55188-7z-exploit
标签:#CVE-2025
GitHub监控消息提醒!!!
更新了:RCE
描述:Estudo de caso de uma análise de segurança ofensiva (Red Team) que resultou na descoberta de múltiplas vulnerabilidades, incluindo uma crítica de RCE.
URL:https://github.com/NaassonRibeiro/estudo-de-caso-de-seguranca-red-team
标签:#RCE
更新了:RCE
描述:Estudo de caso de uma análise de segurança ofensiva (Red Team) que resultou na descoberta de múltiplas vulnerabilidades, incluindo uma crítica de RCE.
URL:https://github.com/NaassonRibeiro/estudo-de-caso-de-seguranca-red-team
标签:#RCE
GitHub监控消息提醒!!!
更新了:信息收集
描述:一款面向SRC漏洞挖掘中,页面信息收集场景的浏览器扩展,自动收集页面及相关资源中的敏感信息与可疑线索,支持基础扫描、深度递归扫描、批量 API 测试及结果导出与自定义正则配置
URL:https://github.com/Team-intN18-SoybeanSeclab/Phantom
标签:#信息收集
更新了:信息收集
描述:一款面向SRC漏洞挖掘中,页面信息收集场景的浏览器扩展,自动收集页面及相关资源中的敏感信息与可疑线索,支持基础扫描、深度递归扫描、批量 API 测试及结果导出与自定义正则配置
URL:https://github.com/Team-intN18-SoybeanSeclab/Phantom
标签:#信息收集
GitHub监控消息提醒!!!
更新了:RCE
描述:2025 RCEC Internship Summer Project Code and Related Files
URL:https://github.com/rebeccajhuwin99/2025rcecIntern
标签:#RCE
更新了:RCE
描述:2025 RCEC Internship Summer Project Code and Related Files
URL:https://github.com/rebeccajhuwin99/2025rcecIntern
标签:#RCE
GitHub监控消息提醒!!!
更新了:RCE
描述:Simple PHP Backdoor with RCE
URL:https://github.com/SyedGhufranRaza/CVE-2018-7600-Remote-Code-Execution
标签:#RCE
更新了:RCE
描述:Simple PHP Backdoor with RCE
URL:https://github.com/SyedGhufranRaza/CVE-2018-7600-Remote-Code-Execution
标签:#RCE
GitHub监控消息提醒!!!
更新了:RCE
描述:Simple PHP Backdoor with RCE
URL:https://github.com/agt0lger/simple-php-backdockered
标签:#RCE
更新了:RCE
描述:Simple PHP Backdoor with RCE
URL:https://github.com/agt0lger/simple-php-backdockered
标签:#RCE
GitHub监控消息提醒!!!
更新了:Cobalt Strike
描述:Robust Cobalt Strike shellcode loader with multiple advanced evasion features
URL:https://github.com/sweetpotatohack/AKUMA-BeaconGen
标签:#Cobalt Strike
更新了:Cobalt Strike
描述:Robust Cobalt Strike shellcode loader with multiple advanced evasion features
URL:https://github.com/sweetpotatohack/AKUMA-BeaconGen
标签:#Cobalt Strike
GitHub监控消息提醒!!!
更新了:反序列化
描述:用于序列化和反序列化《脑叶公司》存档的命令行工具
URL:https://github.com/SOgz12Z3Ce/LobotomyCorpSaveManager
标签:#反序列化
更新了:反序列化
描述:用于序列化和反序列化《脑叶公司》存档的命令行工具
URL:https://github.com/SOgz12Z3Ce/LobotomyCorpSaveManager
标签:#反序列化
GitHub监控消息提醒!!!
更新了:RCE
描述:Simulation of an IP fragmentation attack to bypass intermediate security systems and exploit a RCE-vulnerable UDP server.
URL:https://github.com/egeharputluu/ip_fragmentation_attack_to_rce_vulnerable_server_simulation
标签:#RCE
更新了:RCE
描述:Simulation of an IP fragmentation attack to bypass intermediate security systems and exploit a RCE-vulnerable UDP server.
URL:https://github.com/egeharputluu/ip_fragmentation_attack_to_rce_vulnerable_server_simulation
标签:#RCE
GitHub监控消息提醒!!!
更新了:CVE-2025
描述:Exploit for CVE-2025-5777: Citrix NetScaler Memory Disclosure (CitrixBleed 2)
URL:https://github.com/ndr-repo/CVE-2025-5777
标签:#CVE-2025
更新了:CVE-2025
描述:Exploit for CVE-2025-5777: Citrix NetScaler Memory Disclosure (CitrixBleed 2)
URL:https://github.com/ndr-repo/CVE-2025-5777
标签:#CVE-2025