📦 GitHub 全球红队渗透资源中转站。
​旨在收录那些“好用却难找”的安全项目。
🔗 定时推送:GitHub Trending (Security)
🛠 必备清单:后渗透、远控、免杀、提权工具集
📅 更新频率:每日精选,绝不灌水。
⚠️ 本频道仅供安全研究与授权测试使用。
🚨 GitHub 监控消息提醒

🚨 发现关键词: #XSS #CVE

📦 项目名称: CVE-2026-50980
👤 项目作者: bugresearch
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 06:50:13

📝 项目描述:
oPnael DNS-Based Cross-Site Scripting (XSS) & Session Hijacking

🔗 点击访问项目地址 GitHub - bugresearch/CVE-2026-50980: oPnael DNS-Based Cross-Site Scripting (XSS) & Session Hijacking
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Exploit #RCE

📦 项目名称: joomla-security-scanner
👤 项目作者: zkrana
🛠 开发语言: PHP
Star数量: 6 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 06:42:38

📝 项目描述:
Joomla security scanner for detecting malware, webshells, rogue admins, and exploit artifacts from SP Page Builder and JCE vulnerabilities.

🔗 点击访问项目地址 GitHub - zkrana/joomla-security-scanner: Joomla security scanner for detecting malware, webshells, rogue admins, and exploit artifacts…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Vulnerability Scanner

📦 项目名称: Web-Vulnerability-Scanner-Project
👤 项目作者: Riwanshi
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 06:00:16

📝 项目描述:
Web Vulnerability Scanner is a project designed to identify common web application security issues. The tool scans target websites for vulnerabilities such as SQL Injection, Cross-Site Scripting (XSS), and insecure HTTP configurations. It helps security analysts detect risks, improve security posture, and enhance web application protection.

🔗 点击访问项目地址 GitHub - Riwanshi/Web-Vulnerability-Scanner-Project: Web Vulnerability Scanner is a project designed to identify common web application…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Shellcode #Loader #Evasion #EDR

📦 项目名称: AceLdr
👤 项目作者: sexyiam
🛠 开发语言: C
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 05:55:43

📝 项目描述:
Staged Loader for red team purposes

🔗 点击访问项目地址 GitHub - sexyiam/AceLdr: Staged Loader for red team purposes
🚨 GitHub 监控消息提醒

🚨 发现关键词: #RCE #CVE #POC

📦 项目名称: CVE-2026-42271-LiteLLM-RCE
👤 项目作者: amnsecurity
🛠 开发语言: Python
Star数量: 2 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 05:41:27

📝 项目描述:
CVE-2026-42271 - LiteLLM AI Gateway MCP Command Injection RCE - PoC & Analysis | CVSS 8.8 | AMN SECURITY

🔗 点击访问项目地址 GitHub - amnsecurity/CVE-2026-42271-LiteLLM-RCE: CVE-2026-42271 - LiteLLM AI Gateway MCP Command Injection RCE - PoC & Analysis…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #RCE #CVE

📦 项目名称: reactorwatch-pentest
👤 项目作者: amnsecurity
🛠 开发语言: HTML
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 05:42:16

📝 项目描述:
☢️ ReactorWatch v3.2.1 — Nuclear Reactor Core Monitoring System Pentest | CVE-2025-55182 (React2Shell) Unauthenticated RCE → SQLite Exfil → MD5 Crack → SSH Pivot → CDP Root Escalation | CVSS 10.0 | AMN SECURITY

🔗 点击访问项目地址 GitHub - amnsecurity/reactorwatch-pentest: ☢️ ReactorWatch v3.2.1 — Nuclear Reactor Core Monitoring System Pentest | CVE-2025-55182…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Nuclei #CVE

📦 项目名称: voraxx-mcp-server
👤 项目作者: bharat3645
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 05:48:25

📝 项目描述:
Minimal, dependency-free MCP server for AI security agents — CVE lookup (OSV.dev), Shodan host recon, and local Nuclei scan orchestration over the Model Context Protocol.

🔗 点击访问项目地址 GitHub - bharat3645/voraxx-mcp-server: Minimal, dependency-free MCP server for AI security agents — CVE lookup (OSV.dev), Shodan…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #CVE-2026 #POC #RCE

📦 项目名称: CVE-2026-45659-SharePoint-RCE
👤 项目作者: amnsecurity
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 05:41:29

📝 项目描述:
CVE-2026-45659 - Microsoft SharePoint Deserialization RCE - PoC & Analysis | CVSS 8.8 | AMN SECURITY

🔗 点击访问项目地址 GitHub - amnsecurity/CVE-2026-45659-SharePoint-RCE: CVE-2026-45659 - Microsoft SharePoint Deserialization RCE - PoC & Analysis…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #CVE-2026 #POC

📦 项目名称: CVE-2026-8451-CitrixBleed
👤 项目作者: amnsecurity
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 05:41:33

📝 项目描述:
CVE-2026-8451 - Citrix NetScaler SAML Memory Overread (CitrixBleed) - PoC & Analysis | CVSS 8.8 | AMN SECURITY

🔗 点击访问项目地址 GitHub - amnsecurity/CVE-2026-8451-CitrixBleed: CVE-2026-8451 - Citrix NetScaler SAML Memory Overread (CitrixBleed) - PoC & Analysis…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #XSS #CVE #Reflected

📦 项目名称: CVE-2026-29519-Lucee-Reflected-XSS
👤 项目作者: L4V4D0
🛠 开发语言: Unknown
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 04:34:48

📝 项目描述:
Proof of Concept for Reflected XSS in Lucee CFML (CVE-2026-29519)

🔗 点击访问项目地址 GitHub - L4V4D0/CVE-2026-29519-Lucee-Reflected-XSS: Proof of Concept for Reflected XSS in Lucee CFML (CVE-2026-29519)
🚨 GitHub 监控消息提醒

🚨 发现关键词: #XSS #Reflected

📦 项目名称: dvwa-web-application-security-assessment
👤 项目作者: Shreyasi-Techie
🛠 开发语言: Unknown
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 04:58:40

📝 项目描述:
Web Application Security Testing of DVWA in an Authorized Laboratory Environment

🔗 点击访问项目地址
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Fscan #内网 #漏洞

📦 项目名称: fscan_parse
👤 项目作者: gmeier909
🛠 开发语言: HTML
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-09 16:37:35

📝 项目描述:
一个fscan项目解析网站工具

🔗 点击访问项目地址
🚨 GitHub 监控消息提醒

🚨 发现关键词: #CVE-2026 #POC #Exploit

📦 项目名称: CVE-2026-46331
👤 项目作者: aexdyhaxor
🛠 开发语言: C
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 03:13:42

📝 项目描述:
A Proof of Concept (PoC) exploit for CVE-2026-46331

🔗 点击访问项目地址 GitHub - aexdyhaxor/CVE-2026-46331: A Proof of Concept (PoC) exploit for CVE-2026-46331
🚨 GitHub 监控消息提醒

🚨 发现关键词: #POC #CVE

📦 项目名称: SploitScanData
👤 项目作者: w4n95
🛠 开发语言: Unknown
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 03:03:37

📝 项目描述:
SploitScan - CVE-PoC Monitoring Data (Auto-updated by GitHub Actions)

🔗 点击访问项目地址
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Vulnerability Scanner

📦 项目名称: W3BSP1D3R
👤 项目作者: S1YOL
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 02:46:16

📝 项目描述:
Web vulnerability scanner in Python — 26 test modules, headless-browser (JS/SPA) crawling, REST/JSON API fuzzing, 5 report formats, OWASP Top 10 mapping, enterprise auth, REST API server, and 140 tests. Built for authorised pentesting and CI/CD.

🔗 点击访问项目地址 GitHub - S1YOL/W3BSP1D3R: Web vulnerability scanner in Python — 26 test modules, headless-browser (JS/SPA) crawling, REST/JSON…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #SSRF #metadata

📦 项目名称: go-scanner-core
👤 项目作者: anatolykoptev
🛠 开发语言: Go
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 02:40:17

📝 项目描述:
SSRF-safe scan/egress authorization + tamper-evident audit for Go — the guardrail that stops outbound tools (scanners, crawlers, fetchers) from reaching internal infra or running unauthorized/dangerous operations.

🔗 点击访问项目地址 GitHub - anatolykoptev/go-scanner-core: SSRF-safe scan/egress authorization + tamper-evident audit for Go — the guardrail that…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #漏洞 #复现

📦 项目名称: DVWA-Pentest-Report
👤 项目作者: well-of-little
🛠 开发语言: Unknown
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 02:20:06

📝 项目描述:
西电网安生产实习-漏洞复现实战笔记

🔗 点击访问项目地址 well-of-little/DVWA-Pentest-Report
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Vulnerability Scanner

📦 项目名称: W3BSPID3R
👤 项目作者: S1YOL
🛠 开发语言: Python
Star数量: 1 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 02:02:38

📝 项目描述:
Enterprise web vulnerability scanner — 17 test modules, 5 report formats, YAML config, OWASP mapping, REST API, webhooks, and 122 tests. Built for authorised pentesting and CI/CD pipelines.

🔗 点击访问项目地址 GitHub - S1YOL/W3BSPID3R: Enterprise web vulnerability scanner — 17 test modules, 5 report formats, YAML config, OWASP mapping…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #CVE-2026 #POC

📦 项目名称: CVE-2026-56423-MISP-deleteSelection-BrokenAccessControl
👤 项目作者: BiiTts
🛠 开发语言: Shell
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 01:50:12

📝 项目描述:
PoC for CVE-2026-56423: MISP deleteSelection broken access control (CWE-862, contributor hard-deletes other orgs' Event Reports/Sharing Groups, CVSS 8.8)

🔗 点击访问项目地址 GitHub - BiiTts/CVE-2026-56423-MISP-deleteSelection-BrokenAccessControl: PoC for CVE-2026-56423: MISP deleteSelection broken access…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #XSS #Stored

📦 项目名称: PentTest-DEPI-R4-2026
👤 项目作者: zeroXmoRamadan
🛠 开发语言: PHP
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 00:59:46

📝 项目描述:
An educational, intentionally vulnerable Laravel security lab for practicing web penetration testing and secure code review (SQLi, Stored XSS, Path Traversal, CSRF, IDOR). Graduation project for DEPI Round 4 - Infrastructure & Security - Vulnerability Analyst and Penetration Tester Track.

🔗 点击访问项目地址 GitHub - zeroXmoRamadan/PentTest-DEPI-R4-2026: An educational, intentionally vulnerable Laravel security lab for practicing web…
Back to Top