📦 GitHub 全球红队渗透资源中转站。
​旨在收录那些“好用却难找”的安全项目。
🔗 定时推送:GitHub Trending (Security)
🛠 必备清单:后渗透、远控、免杀、提权工具集
📅 更新频率:每日精选,绝不灌水。
⚠️ 本频道仅供安全研究与授权测试使用。
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Burp #Extension

📦 项目名称: ReqVars
👤 项目作者: bytejmp
🛠 开发语言: Java
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-03 14:02:57

📝 项目描述:
Burp Suite extension that replaces placeholders with real values at send time. Keep secrets out of screenshots, switch identities with tabs, track JWT expiry.

🔗 点击访问项目地址
GitHub
GitHub - bytejmp/ReqVars: Burp Suite extension that replaces placeholders with real values at send time. Keep secrets out of screenshots…
Burp Suite extension that replaces placeholders with real values at send time. Keep secrets out of screenshots, switch identities with tabs, track JWT expiry. - bytejmp/ReqVars
Burp Extension
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Spring #POC

📦 项目名称: path-Finder-spring-backend
👤 项目作者: cpu-once
🛠 开发语言: Java
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-03 12:27:48

📝 项目描述:
无描述

🔗 点击访问项目地址
GitHub
GitHub - cpu-once/path-Finder-spring-backend
Contribute to cpu-once/path-Finder-spring-backend development by creating an account on GitHub.
Spring POC
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Sigma #rules

📦 项目名称: droid
👤 项目作者: certeu
🛠 开发语言: Python
Star数量: 46 | 🍴 Fork数量: 5
📅 更新时间: 2026-06-03 13:59:03

📝 项目描述:
A pySigma wrapper to manage detection rules.

🔗 点击访问项目地址
GitHub
GitHub - certeu/droid: A pySigma wrapper to manage detection rules.
GitHub - certeu/droid: A pySigma wrapper to manage detection rules.
A pySigma wrapper to manage detection rules. Contribute to certeu/droid development by creating an account on GitHub.
Sigma rules
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Kubernetes #RBAC

📦 项目名称: k8-duck-family
👤 项目作者: nebullii
🛠 开发语言: CSS
Star数量: 1 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-03 13:07:16

📝 项目描述:
A playful Kubernetes learning project for practicing pods, containers, RBAC, ConfigMaps, and kubectl with a duck-family theme.

🔗 点击访问项目地址
GitHub
GitHub - nebullii/k8-duck-family: A playful Kubernetes learning project for practicing pods, containers, RBAC, ConfigMaps, and…
GitHub - nebullii/k8-duck-family: A playful Kubernetes learning project for practicing pods, containers, RBAC, ConfigMaps, and…
A playful Kubernetes learning project for practicing pods, containers, RBAC, ConfigMaps, and kubectl with a duck-family theme. - nebullii/k8-duck-family
Kubernetes RBAC
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Kubernetes #RBAC

📦 项目名称: project-armory
👤 项目作者: McIndi
🛠 开发语言: Jinja
Star数量: 1 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-03 13:04:38

📝 项目描述:
Open-source reference architecture for running AI agents safely inside regulated enterprises. End-to-end secure Kubernetes platform: Keycloak OIDC, OpenBao secrets, private PKI, BeeAI agent runtime, provisioned with Ansible and OpenTofu. Clone it, run it in a Vagrant VM, audit it.

🔗 点击访问项目地址
GitHub
GitHub - McIndi/project-armory: Open-source reference architecture for running AI agents safely inside regulated enterprises. End…
Open-source reference architecture for running AI agents safely inside regulated enterprises. End-to-end secure Kubernetes platform: Keycloak OIDC, OpenBao secrets, private PKI, BeeAI agent runtime...
Kubernetes RBAC
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Exploit #CVE

📦 项目名称: WideOpen
👤 项目作者: daw1012345
🛠 开发语言: JavaScript
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-03 12:54:32

📝 项目描述:
E2E exploit for a vulnerability in the Widevine CDM

🔗 点击访问项目地址
GitHub
GitHub - daw1012345/WideOpen: E2E exploit for a vulnerability in the Widevine CDM
GitHub - daw1012345/WideOpen: E2E exploit for a vulnerability in the Widevine CDM
E2E exploit for a vulnerability in the Widevine CDM - daw1012345/WideOpen
Exploit CVE
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Sigma #rules

📦 项目名称: piechart-sigma-plugin
👤 项目作者: emanmontanez
🛠 开发语言: CSS
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-03 13:03:24

📝 项目描述:
Testing first React app for Sigma Computing

🔗 点击访问项目地址
GitHub
GitHub - emanmontanez/piechart-sigma-plugin: Testing first React app for Sigma Computing
Testing first React app for Sigma Computing. Contribute to emanmontanez/piechart-sigma-plugin development by creating an account on GitHub.
Sigma rules
🚨 GitHub 监控消息提醒

🚨 发现关键词: #YARA #rule #malware

📦 项目名称: Smart-YARA-Rule-Generator
👤 项目作者: mokhtarnine
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-03 13:03:14

📝 项目描述:
smart YARA its tools for make malware analysis

🔗 点击访问项目地址
GitHub
GitHub - mokhtarnine/Smart-YARA-Rule-Generator: smart YARA its tools for make malware analysis
GitHub - mokhtarnine/Smart-YARA-Rule-Generator: smart YARA its tools for make malware analysis
smart YARA its tools for make malware analysis . Contribute to mokhtarnine/Smart-YARA-Rule-Generator development by creating an account on GitHub.
YARA rule malware
🚨 GitHub 监控消息提醒

🚨 发现关键词: #POC #CVE

📦 项目名称: Wazuh-Deployment-Vulnerability-Monitoring-PoC
👤 项目作者: AdityaBhatt3010
🛠 开发语言: Unknown
Star数量: 1 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-03 12:05:41

📝 项目描述:
Wazuh, SIEM, Vulnerability Management: Deploying a Wazuh Manager and Agent to enable centralized security monitoring, asset inventory, and CVE-based vulnerability detection across endpoints.

🔗 点击访问项目地址
GitHub
GitHub - AdityaBhatt3010/Wazuh-Deployment-Vulnerability-Monitoring-PoC: Wazuh, SIEM, Vulnerability Management: Deploying a Wazuh…
Wazuh, SIEM, Vulnerability Management: Deploying a Wazuh Manager and Agent to enable centralized security monitoring, asset inventory, and CVE-based vulnerability detection across endpoints. - Adit...
POC CVE
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Burp #Extension

📦 项目名称: Discover-API-workflows-by-visualizing-request-sequences-in-Burp-Suite
👤 项目作者: 0xGhostCAT
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-03 11:54:55

📝 项目描述:
A Burp Suite extension that turns your API traffic into a live, interactive flow graph, and lets you send any captured request straight to Repeater.

🔗 点击访问项目地址
GitHub
0xGhostCAT - Overview
Cyber Security researcher | Bug Bounty Hunter. 0xGhostCAT has 2 repositories available. Follow their code on GitHub.
Burp Extension
🚨 GitHub 监控消息提醒

🚨 发现关键词: #SQL注入 #漏洞

📦 项目名称: SQL-injection
👤 项目作者: 3436533165
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-03 02:39:11

📝 项目描述:
用于sql注入的测试服务端。

🔗 点击访问项目地址
GitHub
GitHub - 3436533165/SQL-injection: 用于sql注入的测试服务端。
GitHub - 3436533165/SQL-injection: 用于sql注入的测试服务端。
用于sql注入的测试服务端。. Contribute to 3436533165/SQL-injection development by creating an account on GitHub.
SQL注入 漏洞
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Fastjson #漏洞 #反序列化

📦 项目名称: fastjson-convert-jackson
👤 项目作者: lyalexzz
🛠 开发语言: Java
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-03 09:37:00

📝 项目描述:
fastjson1.*转Jackson

🔗 点击访问项目地址
GitHub
GitHub - lyalexzz/fastjson-convert-jackson: fastjson1.*转Jackson
fastjson1.*转Jackson. Contribute to lyalexzz/fastjson-convert-jackson development by creating an account on GitHub.
Fastjson 漏洞 反序列化
🚨 GitHub 监控消息提醒

🚨 发现关键词: #GitLab #CVE

📦 项目名称: S2OPC
👤 项目作者: systerel
🛠 开发语言: C
Star数量: 23 | 🍴 Fork数量: 6
📅 更新时间: 2026-06-03 11:03:19

📝 项目描述:
Mirror repository for open-source OPC-UA Toolkit designed with security and embedded devices in mind. Main repository is on gitlab:

🔗 点击访问项目地址
GitHub
GitHub - systerel/S2OPC: Mirror repository for open-source OPC-UA Toolkit designed with security and embedded devices in mind.…
GitHub - systerel/S2OPC: Mirror repository for open-source OPC-UA Toolkit designed with security and embedded devices in mind.…
Mirror repository for open-source OPC-UA Toolkit designed with security and embedded devices in mind. Main repository is on gitlab: - systerel/S2OPC
GitLab CVE
🚨 GitHub 监控消息提醒

🚨 发现关键词: #BlueTeam #Detection

📦 项目名称: LOOBins
👤 项目作者: infosecB
🛠 开发语言: Astro
Star数量: 540 | 🍴 Fork数量: 68
📅 更新时间: 2026-06-03 10:56:59

📝 项目描述:
Living Off the Orchard: macOS Binaries (LOOBins) is designed to provide detailed information on various built-in "living off the land" macOS binaries and how they can be used by threat actors for malicious purposes.

🔗 点击访问项目地址
GitHub
GitHub - infosecB/LOOBins: Living Off the Orchard: macOS Binaries (LOOBins) is designed to provide detailed information on various…
GitHub - infosecB/LOOBins: Living Off the Orchard: macOS Binaries (LOOBins) is designed to provide detailed information on various…
Living Off the Orchard: macOS Binaries (LOOBins) is designed to provide detailed information on various built-in "living off the land" macOS binaries and how they can be used by t...
BlueTeam Detection
🚨 GitHub 监控消息提醒

🚨 发现关键词: #XSS #Reflected

📦 项目名称: XSS-Scaner
👤 项目作者: bnthedev
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-03 10:45:43

📝 项目描述:
Modern GUI-based XSS scanner focused on fast reflected XSS detection, payload testing and practical security workflows.

🔗 点击访问项目地址
GitHub
GitHub - bnthedev/XSS-Scaner: Modern GUI-based XSS scanner focused on fast reflected XSS detection, payload testing and practical…
GitHub - bnthedev/XSS-Scaner: Modern GUI-based XSS scanner focused on fast reflected XSS detection, payload testing and practical…
Modern GUI-based XSS scanner focused on fast reflected XSS detection, payload testing and practical security workflows. - bnthedev/XSS-Scaner
XSS Reflected
🚨 GitHub 监控消息提醒

🚨 发现关键词: #钓鱼 #邮件 #红队 #Phishing

📦 项目名称: Phishing_Email_Analyzer
👤 项目作者: aliex23k65
🛠 开发语言: Unknown
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-03 10:37:33

📝 项目描述:
一个基于 AI Agent 的钓鱼邮件智能分析 Skill,以红队视角帮助企业员工识别和应对社会工程学攻击。

🔗 点击访问项目地址
GitHub
GitHub - aliex23k65/Phishing_Email_Analyzer: 一个基于 AI Agent 的钓鱼邮件智能分析 Skill,以红队视角帮助企业员工识别和应对社会工程学攻击。
一个基于 AI Agent 的钓鱼邮件智能分析 Skill,以红队视角帮助企业员工识别和应对社会工程学攻击。 - aliex23k65/Phishing_Email_Analyzer
钓鱼 邮件 红队 Phishing
🚨 GitHub 监控消息提醒

🚨 发现关键词: #CVE-2026 #Exploit

📦 项目名称: CopyFail
👤 项目作者: 1neptune
🛠 开发语言: Go
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-03 09:14:15

📝 项目描述:
go CVE-2026-31431 (CopyFail) local privilege escalation exploit

🔗 点击访问项目地址
GitHub
GitHub - 1neptune/CopyFail: go CVE-2026-31431 (CopyFail) local privilege escalation exploit
GitHub - 1neptune/CopyFail: go CVE-2026-31431 (CopyFail) local privilege escalation exploit
go CVE-2026-31431 (CopyFail) local privilege escalation exploit - 1neptune/CopyFail
CVE Exploit
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Burp #Extension

📦 项目名称: BurpFireStream
👤 项目作者: exploitradam
🛠 开发语言: Java
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-03 09:42:55

📝 项目描述:
A Burp Suite extension for inspecting and manipulating Google Cloud Firestore traffic.

🔗 点击访问项目地址
GitHub
GitHub - exploitradam/BurpFireStream: A Burp Suite extension for inspecting and manipulating Google Cloud Firestore traffic.
GitHub - exploitradam/BurpFireStream: A Burp Suite extension for inspecting and manipulating Google Cloud Firestore traffic.
A Burp Suite extension for inspecting and manipulating Google Cloud Firestore traffic. - exploitradam/BurpFireStream
Burp Extension
🚨 GitHub 监控消息提醒

🚨 发现关键词: #C2 #Framework

📦 项目名称: Leviathan-c2
👤 项目作者: veeramani110400
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-03 10:05:21

📝 项目描述:
A lightweight C2 framework

🔗 点击访问项目地址
GitHub
GitHub - veeramani110400/Leviathan-c2: A lightweight C2 framework
A lightweight C2 framework . Contribute to veeramani110400/Leviathan-c2 development by creating an account on GitHub.
C2 Framework
🚨 GitHub 监控消息提醒

🚨 发现关键词: #YARA #malware

📦 项目名称: Alien-YARA
👤 项目作者: manwar
🛠 开发语言: Perl
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-03 10:03:25

📝 项目描述:
Find or download and install the YARA malware analysis library

🔗 点击访问项目地址
GitHub
GitHub - manwar/Alien-YARA: Find or download and install the YARA malware analysis library
Find or download and install the YARA malware analysis library - manwar/Alien-YARA
YARA malware
Before
After
Back to Top