📦 GitHub 全球红队渗透资源中转站。
旨在收录那些“好用却难找”的安全项目。
🔗 定时推送:GitHub Trending (Security)
🛠 必备清单:后渗透、远控、免杀、提权工具集
📅 更新频率:每日精选,绝不灌水。
⚠️ 本频道仅供安全研究与授权测试使用。
旨在收录那些“好用却难找”的安全项目。
🔗 定时推送:GitHub Trending (Security)
🛠 必备清单:后渗透、远控、免杀、提权工具集
📅 更新频率:每日精选,绝不灌水。
⚠️ 本频道仅供安全研究与授权测试使用。
🚨 GitHub 监控消息提醒
🚨 发现关键词: #YARA #rule #rules #malware
📦 项目名称: ClamShield
👤 项目作者: orloxgr
🛠 开发语言: TypeScript
⭐ Star数量: 7 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-29 16:54:29
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #YARA #rule #rules #malware
📦 项目名称: ClamShield
👤 项目作者: orloxgr
🛠 开发语言: TypeScript
⭐ Star数量: 7 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-29 16:54:29
📝 项目描述:
Windows security UI for ClamAV/YARA with real-time shield, scheduled scans, SecuriteInfo/SaneSecurity signatures, DNS protection, quarantine, VirusTotal checks, and auto-updates.🔗 点击访问项目地址
GitHub
GitHub - orloxgr/ClamShield: Windows security UI for ClamAV/YARA with real-time shield, scheduled scans, SecuriteInfo/SaneSecurity…
Windows security UI for ClamAV/YARA with real-time shield, scheduled scans, SecuriteInfo/SaneSecurity signatures, DNS protection, quarantine, VirusTotal checks, and auto-updates. - orloxgr/ClamShield
🚨 GitHub 监控消息提醒
🚨 发现关键词: #XSS #POC #Reflected
📦 项目名称: Web-Application-Penetration-Testing-
👤 项目作者: syedghulamm50
🛠 开发语言: Unknown
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-29 16:41:00
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #XSS #POC #Reflected
📦 项目名称: Web-Application-Penetration-Testing-
👤 项目作者: syedghulamm50
🛠 开发语言: Unknown
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-29 16:41:00
📝 项目描述:
A web penetration testing lab documenting manual exploitation of SQL Injection, Reflected XSS, and CSRF flaws. Showcases attack surface mapping and traffic interception using Burp Suite against an isolated OWASP Juice Shop environment, complete with step-by-step methodologies and real proof-of-concept (PoC) evidence.🔗 点击访问项目地址
🚨 GitHub 监控消息提醒
🚨 发现关键词: #Exchange #POC
📦 项目名称: Rag-green-exchange
👤 项目作者: ankit-1999
🛠 开发语言: Unknown
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-29 16:05:20
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #Exchange #POC
📦 项目名称: Rag-green-exchange
👤 项目作者: ankit-1999
🛠 开发语言: Unknown
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-29 16:05:20
📝 项目描述:
Rag Poc for green exchange🔗 点击访问项目地址
🚨 GitHub 监控消息提醒
🚨 发现关键词: #XSS #CVE #DOM
📦 项目名称: DOM-Based-XSS-in-Pocket-Mobile-Android-iOS-Unsanitized-WebView-HTML-Injection-since-13-Year
👤 项目作者: FUNFACTOR1
🛠 开发语言: Unknown
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-29 15:44:58
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #XSS #CVE #DOM
📦 项目名称: DOM-Based-XSS-in-Pocket-Mobile-Android-iOS-Unsanitized-WebView-HTML-Injection-since-13-Year
👤 项目作者: FUNFACTOR1
🛠 开发语言: Unknown
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-29 15:44:58
📝 项目描述:
0-click XSS (CWE-79) in Mozilla Pocket Android v8.33.0.0 via unsanitized $(document.body).html(content) in articleview-mobile.js. Background service triggers execution without user interaction. Java bridge exposed. Reported to Mozilla Security 2024-07-10. Won't Fix. CVE pending.🔗 点击访问项目地址
🚨 GitHub 监控消息提醒
🚨 发现关键词: #Shellcode #Loader
📦 项目名称: linux-shellcode-loaders
👤 项目作者: Fadouse
🛠 开发语言: C
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-29 15:28:40
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #Shellcode #Loader
📦 项目名称: linux-shellcode-loaders
👤 项目作者: Fadouse
🛠 开发语言: C
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-29 15:28:40
📝 项目描述:
Educational Linux x86_64 userland shellcode loader PoCs🔗 点击访问项目地址
GitHub
GitHub - Fadouse/linux-shellcode-loaders: Educational Linux x86_64 userland shellcode loader PoCs
Educational Linux x86_64 userland shellcode loader PoCs - Fadouse/linux-shellcode-loaders
🚨 GitHub 监控消息提醒
🚨 发现关键词: #CVE-2026 #RCE
📦 项目名称: cve-2026-9082-drupal
👤 项目作者: evidencebasedvulnerability
🛠 开发语言: Python
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-29 15:23:23
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #CVE-2026 #RCE
📦 项目名称: cve-2026-9082-drupal
👤 项目作者: evidencebasedvulnerability
🛠 开发语言: Python
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-29 15:23:23
📝 项目描述:
drupal-postgresql-rce🔗 点击访问项目地址
GitHub
evidencebasedvulnerability/cve-2026-9082-drupal
drupal-postgresql-rce. Contribute to evidencebasedvulnerability/cve-2026-9082-drupal development by creating an account on GitHub.
🚨 GitHub 监控消息提醒
🚨 发现关键词: #RCE #CVE
📦 项目名称: CVE-2026-36848
👤 项目作者: calligraf0
🛠 开发语言: Python
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-29 15:01:13
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #RCE #CVE
📦 项目名称: CVE-2026-36848
👤 项目作者: calligraf0
🛠 开发语言: Python
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-29 15:01:13
📝 项目描述:
Gigamon Unauth RCE (CVE-2026-36848)🔗 点击访问项目地址
GitHub
GitHub - calligraf0/CVE-2026-36848: Gigamon Unauth RCE (CVE-2026-36848)
Gigamon Unauth RCE (CVE-2026-36848). Contribute to calligraf0/CVE-2026-36848 development by creating an account on GitHub.
🚨 GitHub 监控消息提醒
🚨 发现关键词: #RCE #CVE
📦 项目名称: CVE-2025-61882-OracleEBS-RCE
👤 项目作者: WahyuAndikaPutra
🛠 开发语言: Python
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-29 15:05:40
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #RCE #CVE
📦 项目名称: CVE-2025-61882-OracleEBS-RCE
👤 项目作者: WahyuAndikaPutra
🛠 开发语言: Python
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-29 15:05:40
📝 项目描述:
无描述🔗 点击访问项目地址
🚨 GitHub 监控消息提醒
🚨 发现关键词: #Vulnerability Scanner
📦 项目名称: vulnerability-scanner
👤 项目作者: sujata0510
🛠 开发语言: HTML
⭐ Star数量: 1 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-29 14:52:23
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #Vulnerability Scanner
📦 项目名称: vulnerability-scanner
👤 项目作者: sujata0510
🛠 开发语言: HTML
⭐ Star数量: 1 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-29 14:52:23
📝 项目描述:
Web-based Vulnerability Scanner built with Python Flask that scans open ports, detects services, calculates risk score, visualizes results with charts, and generates downloadable PDF security reports.🔗 点击访问项目地址
GitHub
GitHub - sujata0510/vulnerability-scanner: Web-based Vulnerability Scanner built with Python Flask that scans open ports, detects…
Web-based Vulnerability Scanner built with Python Flask that scans open ports, detects services, calculates risk score, visualizes results with charts, and generates downloadable PDF security repor...
🚨 GitHub 监控消息提醒
🚨 发现关键词: #Burp #Extension
📦 项目名称: BurpSense
👤 项目作者: TheArqsz
🛠 开发语言: Java
⭐ Star数量: 3 | 🍴 Fork数量: 1
📅 更新时间: 2026-06-29 14:40:23
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #Burp #Extension
📦 项目名称: BurpSense
👤 项目作者: TheArqsz
🛠 开发语言: Java
⭐ Star数量: 3 | 🍴 Fork数量: 1
📅 更新时间: 2026-06-29 14:40:23
📝 项目描述:
VS Code extension that bridges Burp Suite security findings directly into your editor.🔗 点击访问项目地址
GitHub
GitHub - TheArqsz/BurpSense: VS Code extension that bridges Burp Suite security findings directly into your editor.
VS Code extension that bridges Burp Suite security findings directly into your editor. - TheArqsz/BurpSense
🚨 GitHub 监控消息提醒
🚨 发现关键词: #Burp #Plugin #Extension
📦 项目名称: BurpSuite-Just-Header-Injector
👤 项目作者: TheArqsz
🛠 开发语言: Java
⭐ Star数量: 7 | 🍴 Fork数量: 1
📅 更新时间: 2026-06-29 14:41:20
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #Burp #Plugin #Extension
📦 项目名称: BurpSuite-Just-Header-Injector
👤 项目作者: TheArqsz
🛠 开发语言: Java
⭐ Star数量: 7 | 🍴 Fork数量: 1
📅 更新时间: 2026-06-29 14:41:20
📝 项目描述:
A Burp Suite extension that allows you to automatically inject custom HTTP headers into all outgoing requests.🔗 点击访问项目地址
GitHub
GitHub - TheArqsz/BurpSuite-Just-Header-Injector: A Burp Suite extension that allows you to automatically inject custom HTTP headers…
A Burp Suite extension that allows you to automatically inject custom HTTP headers into all outgoing requests. - TheArqsz/BurpSuite-Just-Header-Injector
🚨 GitHub 监控消息提醒
🚨 发现关键词: #CVE-2026 #RCE
📦 项目名称: cve-2026-9082
👤 项目作者: evidencebasedvulnerability
🛠 开发语言: Python
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-29 14:55:40
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #CVE-2026 #RCE
📦 项目名称: cve-2026-9082
👤 项目作者: evidencebasedvulnerability
🛠 开发语言: Python
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-29 14:55:40
📝 项目描述:
drupal-postgresql-rce🔗 点击访问项目地址
GitHub
GitHub - evidencebasedvulnerability/cve-2026-9082: drupal-postgresql-rce
drupal-postgresql-rce. Contribute to evidencebasedvulnerability/cve-2026-9082 development by creating an account on GitHub.
🚨 GitHub 监控消息提醒
🚨 发现关键词: #XSS #DOM
📦 项目名称: dom-xss-web-messages
👤 项目作者: cyberexpert111
🛠 开发语言: Unknown
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-29 13:58:19
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #XSS #DOM
📦 项目名称: dom-xss-web-messages
👤 项目作者: cyberexpert111
🛠 开发语言: Unknown
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-29 13:58:19
📝 项目描述:
Professional bug bounty style write-up demonstrating exploitation of a DOM-Based Cross-Site Scripting (XSS) vulnerability via insecure postMessage() handling in the PortSwigger Web Security Academy lab.🔗 点击访问项目地址
GitHub
GitHub - cyberexpert111/dom-xss-web-messages: Professional bug bounty style write-up demonstrating exploitation of a DOM-Based…
Professional bug bounty style write-up demonstrating exploitation of a DOM-Based Cross-Site Scripting (XSS) vulnerability via insecure postMessage() handling in the PortSwigger Web Security Academy...
🚨 GitHub 监控消息提醒
🚨 发现关键词: #Exploit #CVE
📦 项目名称: graylog-cve-2024-24824-exploit
👤 项目作者: rootkiTED
🛠 开发语言: Python
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-29 13:57:03
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #Exploit #CVE
📦 项目名称: graylog-cve-2024-24824-exploit
👤 项目作者: rootkiTED
🛠 开发语言: Python
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-29 13:57:03
📝 项目描述:
Proof-of-concept exploit for CVE-2023-24824 demonstrating how an arbitrary class loading primitive can be transformed into remote code execution on vulnerable Graylog deployments.🔗 点击访问项目地址
GitHub
GitHub - rootkiTED/graylog-cve-2024-24824-exploit: Proof-of-concept exploit for CVE-2023-24824 demonstrating how an arbitrary class…
Proof-of-concept exploit for CVE-2023-24824 demonstrating how an arbitrary class loading primitive can be transformed into remote code execution on vulnerable Graylog deployments. - rootkiTED/grayl...
🚨 GitHub 监控消息提醒
🚨 发现关键词: #XSS #Stored
📦 项目名称: XSS-Defense-Bootcamp-Project
👤 项目作者: Akshaycyber006
🛠 开发语言: Unknown
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-29 12:34:58
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #XSS #Stored
📦 项目名称: XSS-Defense-Bootcamp-Project
👤 项目作者: Akshaycyber006
🛠 开发语言: Unknown
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-29 12:34:58
📝 项目描述:
A cybersecurity project analyzing the Samy Worm (MySpace) attack, explaining Stored XSS vulnerabilities, attack methodology, and modern prevention techniques.🔗 点击访问项目地址
GitHub
GitHub - Akshaycyber006/XSS-Defense-Bootcamp-Project: A cybersecurity project analyzing the Samy Worm (MySpace) attack, explaining…
A cybersecurity project analyzing the Samy Worm (MySpace) attack, explaining Stored XSS vulnerabilities, attack methodology, and modern prevention techniques. - Akshaycyber006/XSS-Defense-Bootcamp-...
🚨 GitHub 监控消息提醒
🚨 发现关键词: #Exploit #CVE
📦 项目名称: graylog-cve-2023-24824-exploit
👤 项目作者: rootkiTED
🛠 开发语言: Unknown
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-29 12:59:02
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #Exploit #CVE
📦 项目名称: graylog-cve-2023-24824-exploit
👤 项目作者: rootkiTED
🛠 开发语言: Unknown
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-29 12:59:02
📝 项目描述:
Proof-of-concept exploit for CVE-2023-24824 demonstrating how an arbitrary class loading primitive can be transformed into remote code execution on vulnerable Graylog deployments.🔗 点击访问项目地址
GitHub
GitHub - rootkiTED/graylog-cve-2023-24824-exploit: Proof-of-concept exploit for CVE-2023-24824 demonstrating how an arbitrary class…
Proof-of-concept exploit for CVE-2023-24824 demonstrating how an arbitrary class loading primitive can be transformed into remote code execution on vulnerable Graylog deployments. - rootkiTED/grayl...
🚨 GitHub 监控消息提醒
🚨 发现关键词: #Burp #Extension
📦 项目名称: VulnPilot
👤 项目作者: Chinesespeople
🛠 开发语言: Unknown
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-29 11:13:51
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #Burp #Extension
📦 项目名称: VulnPilot
👤 项目作者: Chinesespeople
🛠 开发语言: Unknown
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-29 11:13:51
📝 项目描述:
VulnPilot Burp Suite extension release🔗 点击访问项目地址
🚨 GitHub 监控消息提醒
🚨 发现关键词: #Vulnerability Scanner
📦 项目名称: Basic-Vulnerability-Scanner
👤 项目作者: KartikCodezz
🛠 开发语言: Unknown
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-29 11:39:37
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #Vulnerability Scanner
📦 项目名称: Basic-Vulnerability-Scanner
👤 项目作者: KartikCodezz
🛠 开发语言: Unknown
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-29 11:39:37
📝 项目描述:
无描述🔗 点击访问项目地址
GitHub
GitHub - KartikCodezz/Basic-Vulnerability-Scanner
Contribute to KartikCodezz/Basic-Vulnerability-Scanner development by creating an account on GitHub.
🚨 GitHub 监控消息提醒
🚨 发现关键词: #Vulnerability Scanner
📦 项目名称: Vulnerability-Scanner-Dashboard
👤 项目作者: marrcussenaonpoint2025
🛠 开发语言: Unknown
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-29 11:55:12
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #Vulnerability Scanner
📦 项目名称: Vulnerability-Scanner-Dashboard
👤 项目作者: marrcussenaonpoint2025
🛠 开发语言: Unknown
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-29 11:55:12
📝 项目描述:
A **Vulnerability Scanner** is a security tool that automatically scans computers, networks, or web applications to identify known security weaknesses, such as outdated software, misconfigurations, and missing security patches. It helps organizations detect and address vulnerabilities before attackers can exploit them.🔗 点击访问项目地址
GitHub
GitHub - marrcussenaonpoint2025/Vulnerability-Scanner-Dashboard: A **Vulnerability Scanner** is a security tool that automatically…
A **Vulnerability Scanner** is a security tool that automatically scans computers, networks, or web applications to identify known security weaknesses, such as outdated software, misconfigurations,...
🚨 GitHub 监控消息提醒
🚨 发现关键词: #CVE-2026 #RCE
📦 项目名称: By-Poloss..-..CVE-2026-48939
👤 项目作者: Polosss
🛠 开发语言: Unknown
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-29 11:11:43
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #CVE-2026 #RCE
📦 项目名称: By-Poloss..-..CVE-2026-48939
👤 项目作者: Polosss
🛠 开发语言: Unknown
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-29 11:11:43
📝 项目描述:
iCagenda Unauthenticated File Upload to RCE🔗 点击访问项目地址
GitHub
GitHub - Polosss/By-Poloss..-..CVE-2026-48939: iCagenda Unauthenticated File Upload to RCE
iCagenda Unauthenticated File Upload to RCE. Contribute to Polosss/By-Poloss..-..CVE-2026-48939 development by creating an account on GitHub.
