📦 GitHub 全球红队渗透资源中转站。
​旨在收录那些“好用却难找”的安全项目。
🔗 定时推送:GitHub Trending (Security)
🛠 必备清单:后渗透、远控、免杀、提权工具集
📅 更新频率:每日精选,绝不灌水。
⚠️ 本频道仅供安全研究与授权测试使用。
🚨 GitHub 监控消息提醒

🚨 发现关键词: #SSRF #metadata

📦 项目名称: distributed-scheduler
👤 项目作者: Kulnoorbajwa
🛠 开发语言: Go
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-15 19:39:37

📝 项目描述:
Distributed job scheduler in Go: gRPC scheduler/worker, PostgreSQL, leader-election HA, recurring cron jobs, dead-letter forensics, rate limiting, and security hardening (command allowlisting, SSRF protection, secret scrubbing).

🔗 点击访问项目地址 GitHub - Kulnoorbajwa/distributed-scheduler: Distributed job scheduler in Go: gRPC scheduler/worker, PostgreSQL, leader-election…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #SSRF #metadata

📦 项目名称: safe-url-fetch
👤 项目作者: kylemillerbuilds
🛠 开发语言: Python
Star数量: 1 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-15 20:41:09

📝 项目描述:
SSRF-safe fetch for user-supplied URLs: scheme allowlist, resolve-all-IPs is_global check, and per-hop redirect re-validation. The guard I put in front of every server-side URL fetch.

🔗 点击访问项目地址 GitHub - kylemillerbuilds/safe-url-fetch: SSRF-safe fetch for user-supplied URLs: scheme allowlist, resolve-all-IPs is_global check…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Vulnerability Scanner

📦 项目名称: mpv_cpp_npm_audit
👤 项目作者: mpv7
🛠 开发语言: C++
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-15 20:32:58

📝 项目描述:
C++ dependency vulnerability scanner (npm audit analog for CMake projects)

🔗 点击访问项目地址 GitHub - mpv7/mpv_cpp_npm_audit: C++ dependency vulnerability scanner (npm audit analog for CMake projects)
🚨 GitHub 监控消息提醒

🚨 发现关键词: #XSS #DOM

📦 项目名称: JS-Tap
👤 项目作者: hoodoer
🛠 开发语言: JavaScript
Star数量: 455 | 🍴 Fork数量: 49
📅 更新时间: 2026-06-15 19:58:11

📝 项目描述:
JavaScript beacons and C2 to be used for XSS payload or post exploitation implants on webapp servers or desktop software to monitor users and maintain persistence. Browser extension, electron app, and node/bun app implants are included.

🔗 点击访问项目地址 GitHub - hoodoer/JS-Tap: JavaScript beacons and C2 to be used for XSS payload or post exploitation implants on webapp servers or…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #BlueTeam #Trace

📦 项目名称: LOLBAS
👤 项目作者: LOLBAS-Project
🛠 开发语言: XSLT
Star数量: 8616 | 🍴 Fork数量: 1139
📅 更新时间: 2026-06-15 19:50:25

📝 项目描述:
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

🔗 点击访问项目地址 GitHub - LOLBAS-Project/LOLBAS: Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
🚨 GitHub 监控消息提醒

🚨 发现关键词: #CVE-2026 #POC #Exploit

📦 项目名称: CVE-2026-53519-PoC
👤 项目作者: tar-xz
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-15 19:47:32

📝 项目描述:
PoC exploit for CVE-2026-53519.

🔗 点击访问项目地址 GitHub - tar-xz/CVE-2026-53519-PoC: PoC exploit for CVE-2026-53519.
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Vulnerability Scanner

📦 项目名称: vuln-scanner
👤 项目作者: KrishSingh06
🛠 开发语言: Unknown
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-15 18:58:35

📝 项目描述:
Simple vulnerability scanner for web apps

🔗 点击访问项目地址
🚨 GitHub 监控消息提醒

🚨 发现关键词: #YARA #rule #rules #malware

📦 项目名称: lcs-yara-signatures
👤 项目作者: marine902
🛠 开发语言: YARA
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-15 18:20:21

📝 项目描述:
无描述

🔗 点击访问项目地址 GitHub - marine902/lcs-yara-signatures
🚨 GitHub 监控消息提醒

🚨 发现关键词: #渗透测试 #漏洞

📦 项目名称: oWQSkQCKpK
👤 项目作者: doomispawd
🛠 开发语言: Unknown
Star数量: 1 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-15 15:31:15

📝 项目描述:
【Java计算机毕业设计分享】基于Shiro框架的渗透测试管理系统,MySQL Java开发 毕业设计 实战项目【附源码、文档报告、代码讲解】

🔗 点击访问项目地址 GitHub - doomispawd/oWQSkQCKpK: 【Java计算机毕业设计分享】基于Shiro框架的渗透测试管理系统,MySQL Java开发 毕业设计 实战项目【附源码、文档报告、代码讲解】
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Burp #Extension

📦 项目名称: Pentesting-Rate-Limits-with-Precision
👤 项目作者: cyrilshaji38
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-15 18:49:27

📝 项目描述:
A Turbo Intruder script that addresses the limitations of Burp Suite Intruder.

🔗 点击访问项目地址
🚨 GitHub 监控消息提醒

🚨 发现关键词: #SSRF #metadata

📦 项目名称: url-validator
👤 项目作者: craftcms
🛠 开发语言: PHP
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-15 17:30:36

📝 项目描述:
Validate URLs and IP addresses against SSRF, DNS rebinding, and cloud-metadata attacks.

🔗 点击访问项目地址 GitHub - craftcms/url-validator: Validate URLs and IP addresses against SSRF, DNS rebinding, and cloud-metadata attacks.
🚨 GitHub 监控消息提醒

🚨 发现关键词: #YARA #rule #rules #APT #malware

📦 项目名称: blazehash
👤 项目作者: SecurityRonin
🛠 开发语言: Rust
Star数量: 5 | 🍴 Fork数量: 1
📅 更新时间: 2026-06-15 17:37:22

📝 项目描述:
Forensic file hasher — BLAKE3 at 1,640 MB/s, 25 hash algorithms, Ed25519 + post-quantum signing, Bitcoin timestamps, YARA scanning, 50+ remote backends. hashdeep for the modern era.

🔗 点击访问项目地址
🚨 GitHub 监控消息提醒

🚨 发现关键词: #YARA #rule #rules

📦 项目名称: ioc_yara_scanner
👤 项目作者: AbdulShabazz
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-15 17:50:15

📝 项目描述:
无描述

🔗 点击访问项目地址 GitHub - AbdulShabazz/ioc_yara_scanner
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Vulnerability Scanner

📦 项目名称: argus
👤 项目作者: bryansparks
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-15 17:57:26

📝 项目描述:
Vulnerability scanner built with Armature

🔗 点击访问项目地址 GitHub - bryansparks/argus: Vulnerability scanner built with Armature
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Vulnerability Scanner

📦 项目名称: Vulnerability-Scanner-
👤 项目作者: midnightmaggie
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-15 18:01:46

📝 项目描述:
Python-based Vulnerability Scanner using Nmap to detect open ports, identify service versions, check weak configurations, and generate vulnerability reports.

🔗 点击访问项目地址 GitHub - midnightmaggie/Vulnerability-Scanner-: Python-based Vulnerability Scanner using Nmap to detect open ports, identify service…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Bypass #UAC

📦 项目名称: uac-bypass-toolkit-v1-1
👤 项目作者: slabbayak-223211-bot
🛠 开发语言: HTML
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-15 18:00:05

📝 项目描述:
Skip UAC Prompt 1.1 Workaround Guide for Windows 2026

🔗 点击访问项目地址
🚨 GitHub 监控消息提醒

🚨 发现关键词: #XSS #POC #CVE

📦 项目名称: vulnerability-disclosures
👤 项目作者: chndlrx
🛠 开发语言: JavaScript
Star数量: 1 | 🍴 Fork数量: 1
📅 更新时间: 2026-06-15 16:38:00

📝 项目描述:
Public disclosures of software vulnerabilities discovered and responsibly reported by Chandler Johnson. Includes CVEs, technical writeups, and proof-of-concepts.

🔗 点击访问项目地址 GitHub - chndlrx/vulnerability-disclosures: Public disclosures of software vulnerabilities discovered and responsibly reported…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #YARA #rules

📦 项目名称: Cyber-Stack
👤 项目作者: credkellar-boop
🛠 开发语言: Python
Star数量: 2 | 🍴 Fork数量: 1
📅 更新时间: 2026-06-15 16:41:31

📝 项目描述:
A high-performance offensive security & AI orchestration monorepo. Bridges Red Team infrastructure (SQLMap, YARA) with local AI (Llama 3) via ultra-low-level kernel networking (eBPF, XDP, DPDK) and async I/O (⁠io_uring⁠). Built for maximum throughput and memory-safe vulnerability auditing.

🔗 点击访问项目地址 GitHub - credkellar-boop/Cyber-Stack: A high-performance offensive security & AI orchestration monorepo. Bridges Red Team infrastructure…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #YARA #rules #malware

📦 项目名称: etherhiding-etherrat-kit
👤 项目作者: yankywilson
🛠 开发语言: YARA
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-15 16:42:29

📝 项目描述:
CTI assessment and detection pack for a distributed EtherHiding C2 resolver kit (EtherRAT family): 24+9 on-chain resolver contracts, ~30 operator wallets, 52 panels, hijacked-aged-domain delivery. ICD-203 briefing + IOCs + YARA/Sigma/Suricata/KQL.

🔗 点击访问项目地址 GitHub - yankywilson/etherhiding-etherrat-kit: CTI assessment and detection pack for a distributed EtherHiding C2 resolver kit…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Vulnerability Scanner

📦 项目名称: Vulnerability-Scanner
👤 项目作者: Vknidhi
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-15 16:51:36

📝 项目描述:
Python-based Vulnerability Scanner that identifies open ports, detects basic security risks, and generates automated security reports using socket programming and multithreading.

🔗 点击访问项目地址 GitHub - Vknidhi/Vulnerability-Scanner: Python-based Vulnerability Scanner that identifies open ports, detects basic security risks…
Back to Top