📦 GitHub 全球红队渗透资源中转站。
​旨在收录那些“好用却难找”的安全项目。
🔗 定时推送:GitHub Trending (Security)
🛠 必备清单:后渗透、远控、免杀、提权工具集
📅 更新频率:每日精选,绝不灌水。
⚠️ 本频道仅供安全研究与授权测试使用。
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Kubernetes #POC

📦 项目名称: javv-poc
👤 项目作者: Danube-Labs
🛠 开发语言: HTML
Star数量: 2 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-07 23:00:46

📝 项目描述:
Just Another Vulnerability Viewer - Kubernetes-runtime-native vulnerability triage, dashboards, and CSV reporting for Trivy and Grype scans.

🔗 点击访问项目地址 GitHub - Danube-Labs/javv-poc: Just Another Vulnerability Viewer - Kubernetes-runtime-native vulnerability triage, dashboards,…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #CVE-2026 #POC #漏洞

📦 项目名称: CVE-2026-53359-Kernel-Fix
👤 项目作者: chuzhongyun
🛠 开发语言: Unknown
Star数量: 1 | 🍴 Fork数量: 1
📅 更新时间: 2026-07-07 22:14:11

📝 项目描述:
Linux 内核升级指南 - 修复 CVE-2026-53359

🔗 点击访问项目地址 GitHub - chuzhongyun/CVE-2026-53359-Kernel-Fix: Linux Kernel 7.1.3 Upgrade Guide for CVE-2026-53359 Fix - CentOS Stream 8 KVM Shadow…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #RCE #CVE

📦 项目名称: CVE-2026-12277
👤 项目作者: moritakaaz
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-07 20:14:02

📝 项目描述:
Frontend File Manager Plugin (WordPress) <= 23.6 - Unauthenticated Arbitrary File Deletion to RCE

🔗 点击访问项目地址 moritakaaz/CVE-2026-12277
🚨 GitHub 监控消息提醒

🚨 发现关键词: #RCE #CVE #Remote Code Execution

📦 项目名称: CVE-2019-9978-Social-Warfare-WordPress-RCE
👤 项目作者: TokyoHunter
🛠 开发语言: Unknown
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-07 20:14:55

📝 项目描述:
A complete walkthrough and exploit for CVE-2019-9978 - Unauthenticated Remote Code Execution in Social Warfare WordPress plugin ≤ 3.5.2. Includes vulnerable code analysis and payload examples.

🔗 点击访问项目地址 GitHub - TokyoHunter/CVE-2019-9978-Social-Warfare-WordPress-RCE: A complete walkthrough and exploit for CVE-2019-9978 - Unauthenticated…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #CVE-2026 #POC

📦 项目名称: cve-2026-20896-gitea-poc
👤 项目作者: szybnev
🛠 开发语言: Go
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-07 20:31:29

📝 项目描述:
CVE-2026-20896 Gitea Docker X-WEBAUTH-USER auth bypass checker

🔗 点击访问项目地址 GitHub - szybnev/cve-2026-20896-gitea-poc: CVE-2026-20896 Gitea Docker X-WEBAUTH-USER auth bypass checker
🚨 GitHub 监控消息提醒

🚨 发现关键词: #RCE #CVE

📦 项目名称: mcp-audit
👤 项目作者: Danush-Aries
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-07 19:54:13

📝 项目描述:
Static security auditor for Claude Code / MCP config — flags supply-chain, credential, and RCE risk before an agent runs. Offline CLI.

🔗 点击访问项目地址 GitHub - Danush-Aries/mcp-audit: Static security auditor for Claude Code / MCP config — flags supply-chain, credential, and RCE…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Vulnerability Scanner

📦 项目名称: GoUpload
👤 项目作者: HaakimSec
🛠 开发语言: Unknown
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-07 20:04:08

📝 项目描述:
High-performance file upload vulnerability scanner written in Go

🔗 点击访问项目地址
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Exploit #CVE

📦 项目名称: cve-2023-4911-exploit-optimized
👤 项目作者: jarpex
🛠 开发语言: C
Star数量: 1 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-07 20:03:11

📝 项目描述:
Pure C exploit for CVE-2023-4911 (Looney Tunables) — x86_64 & aarch64 implementations. Multi-processing brute-forcing, dynamic calibration, integrated ELF parser.

🔗 点击访问项目地址 GitHub - jarpex/cve-2023-4911-exploit-optimized
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Exploit #CVE #RCE

📦 项目名称: CVE-2019-9978---Social-Warfare-WordPress-RCE
👤 项目作者: TokyoHunter
🛠 开发语言: Unknown
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-07 20:03:15

📝 项目描述:
A complete walkthrough and exploit for CVE-2019-9978 - Unauthenticated Remote Code Execution in Social Warfare WordPress plugin ≤ 3.5.2. Includes vulnerable code analysis and payload examples.

🔗 点击访问项目地址 GitHub - TokyoHunter/CVE-2019-9978---Social-Warfare-WordPress-RCE: A complete walkthrough and exploit for CVE-2019-9978 - Unauthenticated…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #XSS #CVE #Stored

📦 项目名称: CVE-2026-36214
👤 项目作者: WesWrench
🛠 开发语言: Unknown
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-07 19:35:17

📝 项目描述:
Stored Cross-Site Scripting (XSS) in osTicket via Vulnerable Bootstrap Tooltip Component

🔗 点击访问项目地址 GitHub - WesWrench/CVE-2026-36214: Stored Cross-Site Scripting (XSS) in osTicket via Vulnerable Bootstrap Tooltip Component
🚨 GitHub 监控消息提醒

🚨 发现关键词: #C2 #Framework

📦 项目名称: ObfuscationResearchSuite
👤 项目作者: pxrnxdxmxn
🛠 开发语言: C++
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-07 19:02:01

📝 项目描述:
Educational Windows security research framework for studying obfuscation, evasion techniques, payload generation, and modular C2 architecture in isolated laboratory environments.

🔗 点击访问项目地址 GitHub - pxrnxdxmxn/ObfuscationResearchSuite: Educational Windows security research framework for studying obfuscation, evasion…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Vulnerability Scanner

📦 项目名称: network-vulnerability-scanner
👤 项目作者: Akshithreddygopu
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-07 18:45:20

📝 项目描述:
Multithreaded Python vulnerability scanner that detects open ports, grabs service banners, and flags outdated/vulnerable software versions with a severity-rated report (JSON + text).

🔗 点击访问项目地址 GitHub - Akshithreddygopu/network-vulnerability-scanner: Multithreaded Python vulnerability scanner that detects open ports, grabs…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #漏洞 #扫描 #CVE

📦 项目名称: dayv
👤 项目作者: Kirky-X
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-07 17:44:17

📝 项目描述:
多语言依赖分析引擎 - 7 生态系统(PyPI/npm/Maven/crates/RubyGems/Packagist/NuGet)依赖关系/冲突/漏洞分析

🔗 点击访问项目地址 GitHub - Kirky-X/dayv: 多语言依赖分析引擎 - 7 生态系统(PyPI/npm/Maven/crates/RubyGems/Packagist/NuGet)依赖关系/冲突/漏洞分析
🚨 GitHub 监控消息提醒

🚨 发现关键词: #SSTI #RCE

📦 项目名称: Reaper
👤 项目作者: d3xm0s
🛠 开发语言: Ruby
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-07 17:19:21

📝 项目描述:
Pure-Ruby web vulnerability scanner - crawls a target, injects every param/header/JSON field and confirms SSTI/SQLi/XSS/SSRF/XXE/LFI/RCE against each parameter's own baseline. Zero gems. Authorized testing only.

🔗 点击访问项目地址
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Burp #Extension

📦 项目名称: s3-request-signer
👤 项目作者: BlackFan
🛠 开发语言: Java
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-07 17:45:29

📝 项目描述:
A Burp Suite and Caido extension for generating signed S3 requests.

🔗 点击访问项目地址 GitHub - BlackFan/s3-request-signer: A Burp Suite and Caido extension for generating signed S3 requests.
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Vulnerability Scanner

📦 项目名称: Reconnaissance-Vulnerability
👤 项目作者: AnkireddyRashmitha
🛠 开发语言: Unknown
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-07 16:50:13

📝 项目描述:
A web-based Reconnaissance & Vulnerability Scanner built with HTML, CSS, and JavaScript. Features simulated Nmap and Nikto scans, open port analysis, vulnerability reports, risk summaries, and security recommendations for educational purposes.

🔗 点击访问项目地址
🚨 GitHub 监控消息提醒

🚨 发现关键词: #漏洞 #POC #复现 #CVE

📦 项目名称: cve-poc-collection
👤 项目作者: Baiye-2004
🛠 开发语言: Unknown
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-07 17:00:18

📝 项目描述:
CVE漏洞复现与PoC开发合集

🔗 点击访问项目地址 Baiye-2004/cve-poc-collection
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Confluence #POC

📦 项目名称: CodeGraph_POC
👤 项目作者: Xebecrocks
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-07 16:37:33

📝 项目描述:
This is a simple POC in which the git repo is connected to the confluence and a codegraph is maintained as runbooks in the confluence for each file. Whenever any new PR is raised then the code is automatically synced with the Confluence runbooks and updated. This is for ease of code documentation with proper explanation of each file.

🔗 点击访问项目地址 GitHub - Xebecrocks/CodeGraph_POC: This is a simple POC in which the git repo is connected to the confluence and a codegraph is…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #CVE-2026 #RCE

📦 项目名称: VTIGER-CRM-RCE-CVE-2026-23697
👤 项目作者: JivaSecurity
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-07 16:26:33

📝 项目描述:
Vtiger CRM 8.3.0 Authenticated RCE via .phar Upload

🔗 点击访问项目地址 GitHub - JivaSecurity/VTIGER-CRM-RCE-CVE-2026-23697: Vtiger CRM 8.3.0 Authenticated RCE via .phar Upload
Back to Top