📦 GitHub 全球红队渗透资源中转站。
​旨在收录那些“好用却难找”的安全项目。
🔗 定时推送:GitHub Trending (Security)
🛠 必备清单:后渗透、远控、免杀、提权工具集
📅 更新频率:每日精选,绝不灌水。
⚠️ 本频道仅供安全研究与授权测试使用。
🚨 GitHub 监控消息提醒

🚨 发现关键词: #XSS #Attack

📦 项目名称: -AI-powered-threat-detection-system-
👤 项目作者: sanjugangatkar068-eng
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-04-29 06:00:59

📝 项目描述:
AI-Powered NIDS with Isolation Forest ML + Llama 3.2 chatbot. Detects SQLi, XSS, network anomalies. Local LLM via Ollama explains threats. Flask + Scikit-learn. Fully offline cybersecurity tool.

🔗 点击访问项目地址
GitHub
GitHub - sanjugangatkar068-eng/-AI-powered-threat-detection-system-: AI-Powered NIDS with Isolation Forest ML + Llama 3.2 chatbot.…
AI-Powered NIDS with Isolation Forest ML + Llama 3.2 chatbot. Detects SQLi, XSS, network anomalies. Local LLM via Ollama explains threats. Flask + Scikit-learn. Fully offline cybersecurity tool. - ...
XSS Attack
🚨 GitHub 监控消息提醒

🚨 发现关键词: #攻防 #演练 #渗透

📦 项目名称: AsrProxy
👤 项目作者: AJings3c
🛠 开发语言: Go
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-04-29 05:59:14

📝 项目描述:
多小队 SOCKS5 出口代理网关:按用户分流到独立上游 IP 子池,内嵌实时管理后台与审计日志,面向红蓝攻防中的流量隔离与运营监控

🔗 点击访问项目地址
GitHub
GitHub - AJings3c/AsrProxy: 多小队 SOCKS5 出口代理网关:按用户分流到独立上游 IP 子池,内嵌实时管理后台与审计日志,面向红蓝攻防中的流量隔离与运营监控
GitHub - AJings3c/AsrProxy: 多小队 SOCKS5 出口代理网关:按用户分流到独立上游 IP 子池,内嵌实时管理后台与审计日志,面向红蓝攻防中的流量隔离与运营监控
多小队 SOCKS5 出口代理网关:按用户分流到独立上游 IP 子池,内嵌实时管理后台与审计日志,面向红蓝攻防中的流量隔离与运营监控 - AJings3c/AsrProxy
攻防 演练 渗透
🚨 GitHub 监控消息提醒

🚨 发现关键词: #RCE #执行 #Remote

📦 项目名称: BUUCTF.GeekGrandChallenge_2019_RCEME
👤 项目作者: hengdonghui
🛠 开发语言: None
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-04-29 04:54:52

📝 项目描述:
BUUCTF.GeekGrandChallenge_2019_RCEME

🔗 点击访问项目地址
GitHub
GitHub - hengdonghui/BUUCTF.GeekGrandChallenge_2019_RCEME: BUUCTF.GeekGrandChallenge_2019_RCEME
GitHub - hengdonghui/BUUCTF.GeekGrandChallenge_2019_RCEME: BUUCTF.GeekGrandChallenge_2019_RCEME
BUUCTF.GeekGrandChallenge_2019_RCEME. Contribute to hengdonghui/BUUCTF.GeekGrandChallenge_2019_RCEME development by creating an account on GitHub.
RCE 执行 Remote
🚨 GitHub 监控消息提醒

🚨 发现关键词: #XSS #Payload

📦 项目名称: ethical-hacking-ctf
👤 项目作者: celtadenya
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-04-29 03:59:55

📝 项目描述:
CTF writeup - XSS email exfiltration, SQL injection, CI/CD abuse & privilege escalation

🔗 点击访问项目地址
GitHub
GitHub - celtadenya/ethical-hacking-ctf: CTF writeup - XSS email exfiltration, SQL injection, CI/CD abuse & privilege escalation
GitHub - celtadenya/ethical-hacking-ctf: CTF writeup - XSS email exfiltration, SQL injection, CI/CD abuse & privilege escalation
CTF writeup - XSS email exfiltration, SQL injection, CI/CD abuse & privilege escalation - celtadenya/ethical-hacking-ctf
XSS Payload
🚨 GitHub 监控消息提醒

🚨 发现关键词: #信息收集

📦 项目名称: -PRISM
👤 项目作者: yuxing28
🛠 开发语言: TypeScript
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-04-29 03:04:52

📝 项目描述:
这是一个名为 "智镜 PRISM" 的 AI 决策辅助系统,基于 Next.js 16 + React 19 构建。用户输入决策问题后,系统通过 DeepSeek API 进行结构化分析(含多维评分、红队对抗、信息收集等模式),并将分析结果以流式方式呈现,同时在侧边栏显示雷达图和仪表盘。

🔗 点击访问项目地址
GitHub
GitHub - yuxing28/-PRISM: 这是一个名为 "智镜 PRISM" 的 AI 决策辅助系统,基于 Next.js 16 + React 19 构建。用户输入决策问题后,系统通过 DeepSeek API 进行结构化分析(含多维评分、…
这是一个名为 "智镜 PRISM" 的 AI 决策辅助系统,基于 Next.js 16 + React 19 构建。用户输入决策问题后,系统通过 DeepSeek API 进行结构化分析(含多维评分、红队对抗、信息收集等模式),并将分析结果以流式方式呈现,同时在侧边栏显示雷达图和仪表盘。 - yuxing28/-PRISM
信息收集
🚨 GitHub 监控消息提醒

🚨 发现关键词: #溯源 #IP

📦 项目名称: eaa
👤 项目作者: 232252
🛠 开发语言: Rust
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-04-29 01:59:01

📝 项目描述:
EAA - Event-Sourced Conduct Score System for Education | 事件溯源操行分管理系统

🔗 点击访问项目地址
GitHub
GitHub - 232252/eaa: EAA - Event-Sourced Conduct Score System for Education | 事件溯源操行分管理系统
GitHub - 232252/eaa: EAA - Event-Sourced Conduct Score System for Education | 事件溯源操行分管理系统
EAA - Event-Sourced Conduct Score System for Education | 事件溯源操行分管理系统 - 232252/eaa
溯源 IP
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Burp #Plugin #Extension

📦 项目名称: BurpInjector
👤 项目作者: Cliftonnonexplosive880
🛠 开发语言: None
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-04-29 00:55:40

📝 项目描述:
Detect URL path and XFF injection flaws in Burp Suite while collecting and normalizing endpoints for faster testing and scan coverage

🔗 点击访问项目地址
GitHub
GitHub - Cliftonnonexplosive880/BurpInjector: Detect URL path and XFF injection flaws in Burp Suite while collecting and normalizing…
GitHub - Cliftonnonexplosive880/BurpInjector: Detect URL path and XFF injection flaws in Burp Suite while collecting and normalizing…
Detect URL path and XFF injection flaws in Burp Suite while collecting and normalizing endpoints for faster testing and scan coverage - Cliftonnonexplosive880/BurpInjector
Burp Plugin Extension
🚨 GitHub 监控消息提醒

🚨 发现关键词: #C2 #Client

📦 项目名称: C2dricLeroy
👤 项目作者: C2dricLeroy
🛠 开发语言: None
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-04-29 01:03:07

📝 项目描述:
无描述

🔗 点击访问项目地址
GitHub
GitHub - C2dricLeroy/C2dricLeroy
Contribute to C2dricLeroy/C2dricLeroy development by creating an account on GitHub.
C2 Client
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Shellcode #Loader

📦 项目名称: EmuC0re
👤 项目作者: Khandiaz6262
🛠 开发语言: None
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-04-29 00:55:41

📝 项目描述:
Run PS5 emulators as native x86_64 shellcode via LuaC0re JIT, enabling homebrew apps from userland with NES support up to firmware 13.00

🔗 点击访问项目地址
GitHub
GitHub - Khandiaz6262/EmuC0re: Run PS5 emulators as native x86_64 shellcode via LuaC0re JIT, enabling homebrew apps from userland…
Run PS5 emulators as native x86_64 shellcode via LuaC0re JIT, enabling homebrew apps from userland with NES support up to firmware 13.00 - Khandiaz6262/EmuC0re
Shellcode Loader
🚨 GitHub 监控消息提醒

🚨 发现关键词: #XSS #Payload #Attack

📦 项目名称: exynos990-payloads
👤 项目作者: tupopacherryy9
🛠 开发语言: C
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-04-29 00:56:10

📝 项目描述:
Provide a minimal open source BL1 replacement payload for Exynos990 devices, sent as a Houston payload for EPBL-EL3_MON loading

🔗 点击访问项目地址
GitHub
GitHub - tupopacherryy9/exynos990-payloads: Provide a minimal open source BL1 replacement payload for Exynos990 devices, sent as…
GitHub - tupopacherryy9/exynos990-payloads: Provide a minimal open source BL1 replacement payload for Exynos990 devices, sent as…
Provide a minimal open source BL1 replacement payload for Exynos990 devices, sent as a Houston payload for EPBL-EL3_MON loading - tupopacherryy9/exynos990-payloads
XSS Payload Attack
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Bypass #AV

📦 项目名称: uno-q-mipi-camera-imx219
👤 项目作者: mcmchris
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-04-29 01:00:54

📝 项目描述:
A custom V4L2 RAW capture pipeline and Python Software ISP for the IMX219 camera. Bypasses hardware memory limits to capture full 8MP 10-bit frames, applying JSON color profiles (PiSP) for precise colorimetry, AWB, and hardware exposure control.

🔗 点击访问项目地址
GitHub
GitHub - mcmchris/uno-q-mipi-camera-imx219: A custom V4L2 RAW capture pipeline and Python Software ISP for the IMX219 camera. Bypasses…
A custom V4L2 RAW capture pipeline and Python Software ISP for the IMX219 camera. Bypasses hardware memory limits to capture full 8MP 10-bit frames, applying JSON color profiles (PiSP) for precise ...
Bypass AV
🚨 GitHub 监控消息提醒

🚨 发现关键词: #XSS #Scanner #Attack

📦 项目名称: recon-x
👤 项目作者: bytezora
🛠 开发语言: Go
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-04-28 23:55:08

📝 项目描述:
recon-x — fast attack-surface scanner for bug bounty & pentests. 35 modules: subdomains, ports, CVEs, XSS, SSRF, LFI, JWT, SQLi and more.

🔗 点击访问项目地址
GitHub
GitHub - bytezora/recon-x: Fast attack-surface recon and CVE assurance scanner for authorized bug bounty, pentest and DevSecOps…
GitHub - bytezora/recon-x: Fast attack-surface recon and CVE assurance scanner for authorized bug bounty, pentest and DevSecOps…
Fast attack-surface recon and CVE assurance scanner for authorized bug bounty, pentest and DevSecOps workflows. - bytezora/recon-x
XSS Scanner Attack
🚨 GitHub 监控消息提醒

🚨 发现关键词: #CVE-2026

📦 项目名称: CVE-2026-Exploit-PoC-atau-Log4j-v3-Patch
👤 项目作者: andararauf423-sketch
🛠 开发语言: HTML
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-04-28 23:58:56

📝 项目描述:
Official Repository for Public Security Document Validation - Cyber Crime Investigation Division

🔗 点击访问项目地址
GitHub
GitHub - andararauf423-sketch/vidio_trend: Official Repository for Public Security Document Validation - Cyber Crime Investigation…
GitHub - andararauf423-sketch/vidio_trend: Official Repository for Public Security Document Validation - Cyber Crime Investigation…
Official Repository for Public Security Document Validation - Cyber Crime Investigation Division - andararauf423-sketch/vidio_trend
CVE
🚨 GitHub 监控消息提醒

🚨 发现关键词: #CVE-2026

📦 项目名称: nifi-CVE-2026-39816-poc
👤 项目作者: ZeroPathAI
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-04-28 22:41:25

📝 项目描述:
POC for CVE-2026-39816 which allows NiFi users without execute code permissions to run arbitrary scripts

🔗 点击访问项目地址
GitHub
GitHub - ZeroPathAI/nifi-CVE-2026-39816-poc: POC for CVE-2026-39816 which allows NiFi users without execute code permissions to…
POC for CVE-2026-39816 which allows NiFi users without execute code permissions to run arbitrary scripts - ZeroPathAI/nifi-CVE-2026-39816-poc
CVE
🚨 GitHub 监控消息提醒

🚨 发现关键词: #CSRF

📦 项目名称: CSRF-Training
👤 项目作者: travisjjjbell
🛠 开发语言: R
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-04-28 21:55:20

📝 项目描述:
无描述

🔗 点击访问项目地址
GitHub
GitHub - travisjjjbell/CSRF-Training
Contribute to travisjjjbell/CSRF-Training development by creating an account on GitHub.
CSRF
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Bypass #AV #Patch

📦 项目名称: open-antigravity-patcher
👤 项目作者: luca8107
🛠 开发语言: Python
Star数量: 2 | 🍴 Fork数量: 0
📅 更新时间: 2026-04-28 22:01:02

📝 项目描述:
Unlock and modify software features by applying patches to bypass restrictions and enable full access using open-source tools.

🔗 点击访问项目地址
GitHub
GitHub - luca8107/open-antigravity-patcher: Unlock and modify software features by applying patches to bypass restrictions and…
GitHub - luca8107/open-antigravity-patcher: Unlock and modify software features by applying patches to bypass restrictions and…
Unlock and modify software features by applying patches to bypass restrictions and enable full access using open-source tools. - luca8107/open-antigravity-patcher
Bypass AV Patch
🚨 GitHub 监控消息提醒

🚨 发现关键词: #C2 #Server #Client #Command #Control

📦 项目名称: interlock-rat-threat-simulation
👤 项目作者: makhansingh2026
🛠 开发语言: PowerShell
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-04-28 21:02:56

📝 项目描述:
Educational lab simulation of the Interlock RAT — Python C2, PowerShell payloads, Suricata/Zeek/Wazuh detection rules. Seneca SPR600.

🔗 点击访问项目地址
GitHub
GitHub - makhansingh2026/interlock-rat-threat-simulation: Educational lab simulation of the Interlock RAT — Python C2, PowerShell…
GitHub - makhansingh2026/interlock-rat-threat-simulation: Educational lab simulation of the Interlock RAT — Python C2, PowerShell…
Educational lab simulation of the Interlock RAT — Python C2, PowerShell payloads, Suricata/Zeek/Wazuh detection rules. Seneca SPR600. - makhansingh2026/interlock-rat-threat-simulation
C2 Server Client Command Control
🚨 GitHub 监控消息提醒

🚨 发现关键词: #CVE-2026

📦 项目名称: CVE-2026-3854
👤 项目作者: 5kr1pt
🛠 开发语言: None
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-04-28 20:17:47

📝 项目描述:
无描述

🔗 点击访问项目地址
GitHub
GitHub - 5kr1pt/CVE-2026-3854
GitHub - 5kr1pt/CVE-2026-3854
Contribute to 5kr1pt/CVE-2026-3854 development by creating an account on GitHub.
CVE
🚨 GitHub 监控消息提醒

🚨 发现关键词: #XSS #Attack

📦 项目名称: WAFdetection
👤 项目作者: Itzme-Jayy
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-04-28 19:01:41

📝 项目描述:
WAF firewall detecting SQLi and XSS attacks.

🔗 点击访问项目地址
GitHub
GitHub - Itzme-Jayy/WAFdetection: WAF firewall detecting SQLi and XSS attacks.
WAF firewall detecting SQLi and XSS attacks. Contribute to Itzme-Jayy/WAFdetection development by creating an account on GitHub.
XSS Attack
🚨 GitHub 监控消息提醒

🚨 发现关键词: #CVE-2026

📦 项目名称: cve_2026_35414
👤 项目作者: dehobbs
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-04-28 18:59:35

📝 项目描述:
无描述

🔗 点击访问项目地址
GitHub
GitHub - dehobbs/cve_2026_35414
Contribute to dehobbs/cve_2026_35414 development by creating an account on GitHub.
CVE
Before
After
Back to Top