📦 GitHub 全球红队渗透资源中转站。
​旨在收录那些“好用却难找”的安全项目。
🔗 定时推送:GitHub Trending (Security)
🛠 必备清单:后渗透、远控、免杀、提权工具集
📅 更新频率:每日精选,绝不灌水。
⚠️ 本频道仅供安全研究与授权测试使用。
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Nuclei #templates #CVE

📦 项目名称: cve-reverser
👤 项目作者: qazbnm456
🛠 开发语言: Unknown
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 09:10:36

📝 项目描述:
An autonomous RLM agent that reverses disclosed CVEs from their public patches into local-lab PoCs and Nuclei detection templates.

🔗 点击访问项目地址
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Vulnerability Scanner

📦 项目名称: vulnerability-scanner
👤 项目作者: singhtanyarajput
🛠 开发语言: Unknown
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 09:34:26

📝 项目描述:
A Python-based vulnerability scanner for detecting open ports, insecure configurations, and basic web application security issues.

🔗 点击访问项目地址 GitHub - singhtanyarajput/vulnerability-scanner: A Python-based vulnerability scanner for detecting open ports, insecure configurations…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Vulnerability Scanner

📦 项目名称: vulnscanner
👤 项目作者: mail2raamag
🛠 开发语言: Java
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 09:49:19

📝 项目描述:
A Java-based command-line vulnerability scanner for web, host, and local system security assessment.

🔗 点击访问项目地址
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Burp #Plugin

📦 项目名称: AES-Decryptor-Burp-Plugin
👤 项目作者: KKalamari
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 09:19:08

📝 项目描述:
无描述

🔗 点击访问项目地址
🚨 GitHub 监控消息提醒

🚨 发现关键词: #CVE-2026 #RCE

📦 项目名称: CVE-2026-40860
👤 项目作者: oscerd
🛠 开发语言: Java
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 09:13:55

📝 项目描述:
Reproducer for CVE-2026-40860 — Apache Camel camel-jms/sjms/amqp JMS ObjectMessage unsafe deserialization (RCE)

🔗 点击访问项目地址 GitHub - oscerd/CVE-2026-40860: Reproducer for CVE-2026-40860 — Apache Camel camel-jms/sjms/amqp JMS ObjectMessage unsafe deserialization…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #CVE-2026 #POC #Exploit

📦 项目名称: CVE-2026-41940-PoC-Exploit
👤 项目作者: tc4dy
🛠 开发语言: Python
Star数量: 5 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 09:17:01

📝 项目描述:
🚀 CVE-2026-41940 cPanel/WHM Auth Bypass Exploit - Best Flow 💥 CRLF injection leads to auth bypass, session hijacking & account leak. Proxy, custom UA, keep-alive, retries, SSL verify, colored output, file save support. Advanced PoC for pentesters.

🔗 点击访问项目地址 GitHub - tc4dy/CVE-2026-41940-PoC-Exploit: 🚀 CVE-2026-41940 cPanel/WHM Auth Bypass Exploit - Best Flow 💥 CRLF injection leads to…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #C2 #Framework

📦 项目名称: simple-cerf-flashcard
👤 项目作者: ZakiLearn
🛠 开发语言: JavaScript
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 08:59:07

📝 项目描述:
A simple and interactive English vocabulary flashcard application designed to make learning more engaging through a flip-card experience. This project helps learners memorize English words based on the CEFR (Common European Framework of Reference for Languages) levels, from A1 (Beginner) to C2 (Proficient).

🔗 点击访问项目地址
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Nuclei #template #templates #CVE

📦 项目名称: exegol-stack
👤 项目作者: aurturito-se
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 08:55:16

📝 项目描述:
Containerized Exegol pentest suite for infrastructure audits — nmap, nuclei, nikto, testssl.sh via FastAPI sidecar

🔗 点击访问项目地址 GitHub - aurturito-se/exegol-stack: Containerized Exegol pentest suite for infrastructure audits — nmap, nuclei, nikto, testssl.sh…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #CVE-2026 #RCE

📦 项目名称: CVE-2026-40859
👤 项目作者: oscerd
🛠 开发语言: Java
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 08:56:03

📝 项目描述:
Reproducer for CVE-2026-40859 — Apache Camel camel-netty-http / camel-vertx-http producer-side unsafe deserialization of HTTP response bodies (RCE)

🔗 点击访问项目地址 GitHub - oscerd/CVE-2026-40859: Reproducer for CVE-2026-40859 — Apache Camel camel-netty-http / camel-vertx-http producer-side…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Exploit #CVE #RCE

📦 项目名称: CVE-2025-20720
👤 项目作者: shinthink
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 08:04:09

📝 项目描述:
CVE-2025-20720 — PolyShell: Magento 2 Unauthenticated Arbitrary File Upload RCE | GIF89a polyglot bypass | guest-cart REST API | 79.5% stores targeted

🔗 点击访问项目地址
🚨 GitHub 监控消息提醒

🚨 发现关键词: #XSS #漏洞 #Stored

📦 项目名称: user-management
👤 项目作者: Sevixs
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 07:53:39

📝 项目描述:
用户管理系统 — Flask 安全重构版(密码哈希/CSRF/XSS防护/会话安全)

🔗 点击访问项目地址
🚨 GitHub 监控消息提醒

🚨 发现关键词: #CVE-2026 #RCE

📦 项目名称: CVE-2026-40858
👤 项目作者: oscerd
🛠 开发语言: Java
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 07:33:40

📝 项目描述:
Reproducer for CVE-2026-40858 — Apache Camel camel-infinispan remote aggregation repository unsafe deserialization (RCE)

🔗 点击访问项目地址
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Nuclei #CVE

📦 项目名称: AVE
👤 项目作者: adysec
🛠 开发语言: JavaScript
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 07:02:41

📝 项目描述:
无描述

🔗 点击访问项目地址
🚨 GitHub 监控消息提醒

🚨 发现关键词: #XSS #CVE

📦 项目名称: CVE-2026-50980
👤 项目作者: bugresearch
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 06:50:13

📝 项目描述:
oPnael DNS-Based Cross-Site Scripting (XSS) & Session Hijacking

🔗 点击访问项目地址 GitHub - bugresearch/CVE-2026-50980: oPnael DNS-Based Cross-Site Scripting (XSS) & Session Hijacking
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Exploit #RCE

📦 项目名称: joomla-security-scanner
👤 项目作者: zkrana
🛠 开发语言: PHP
Star数量: 6 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 06:42:38

📝 项目描述:
Joomla security scanner for detecting malware, webshells, rogue admins, and exploit artifacts from SP Page Builder and JCE vulnerabilities.

🔗 点击访问项目地址 GitHub - zkrana/joomla-security-scanner: Joomla security scanner for detecting malware, webshells, rogue admins, and exploit artifacts…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Vulnerability Scanner

📦 项目名称: Web-Vulnerability-Scanner-Project
👤 项目作者: Riwanshi
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 06:00:16

📝 项目描述:
Web Vulnerability Scanner is a project designed to identify common web application security issues. The tool scans target websites for vulnerabilities such as SQL Injection, Cross-Site Scripting (XSS), and insecure HTTP configurations. It helps security analysts detect risks, improve security posture, and enhance web application protection.

🔗 点击访问项目地址 GitHub - Riwanshi/Web-Vulnerability-Scanner-Project: Web Vulnerability Scanner is a project designed to identify common web application…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Shellcode #Loader #Evasion #EDR

📦 项目名称: AceLdr
👤 项目作者: sexyiam
🛠 开发语言: C
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 05:55:43

📝 项目描述:
Staged Loader for red team purposes

🔗 点击访问项目地址 GitHub - sexyiam/AceLdr: Staged Loader for red team purposes
🚨 GitHub 监控消息提醒

🚨 发现关键词: #RCE #CVE #POC

📦 项目名称: CVE-2026-42271-LiteLLM-RCE
👤 项目作者: amnsecurity
🛠 开发语言: Python
Star数量: 2 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 05:41:27

📝 项目描述:
CVE-2026-42271 - LiteLLM AI Gateway MCP Command Injection RCE - PoC & Analysis | CVSS 8.8 | AMN SECURITY

🔗 点击访问项目地址 GitHub - amnsecurity/CVE-2026-42271-LiteLLM-RCE: CVE-2026-42271 - LiteLLM AI Gateway MCP Command Injection RCE - PoC & Analysis…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #RCE #CVE

📦 项目名称: reactorwatch-pentest
👤 项目作者: amnsecurity
🛠 开发语言: HTML
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 05:42:16

📝 项目描述:
☢️ ReactorWatch v3.2.1 — Nuclear Reactor Core Monitoring System Pentest | CVE-2025-55182 (React2Shell) Unauthenticated RCE → SQLite Exfil → MD5 Crack → SSH Pivot → CDP Root Escalation | CVSS 10.0 | AMN SECURITY

🔗 点击访问项目地址 GitHub - amnsecurity/reactorwatch-pentest: ☢️ ReactorWatch v3.2.1 — Nuclear Reactor Core Monitoring System Pentest | CVE-2025-55182…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Nuclei #CVE

📦 项目名称: voraxx-mcp-server
👤 项目作者: bharat3645
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 05:48:25

📝 项目描述:
Minimal, dependency-free MCP server for AI security agents — CVE lookup (OSV.dev), Shodan host recon, and local Nuclei scan orchestration over the Model Context Protocol.

🔗 点击访问项目地址 GitHub - bharat3645/voraxx-mcp-server: Minimal, dependency-free MCP server for AI security agents — CVE lookup (OSV.dev), Shodan…
Back to Top