📦 GitHub 全球红队渗透资源中转站。
​旨在收录那些“好用却难找”的安全项目。
🔗 定时推送:GitHub Trending (Security)
🛠 必备清单:后渗透、远控、免杀、提权工具集
📅 更新频率:每日精选,绝不灌水。
⚠️ 本频道仅供安全研究与授权测试使用。
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Burp #Extension

📦 项目名称: burpsuite-ai-scanner
👤 项目作者: Sdeveandteam
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-06 02:55:32

📝 项目描述:
Burp Suite Full Feature Extension with AI SQL Injection Scanner by sdev.

🔗 点击访问项目地址 GitHub - Sdeveandteam/burpsuite-ai-scanner: Burp Suite Full Feature Extension with AI SQL Injection Scanner by sdev.
N1国际】2026年世界杯注定投注
😀😀😀😀😀😀

😀世界杯·投注网址: N10849.com

TG最大信誉平台 玩家首选综合🔤
😘😘😘😘😘😘😘😘😘😘

😀每日返水😀😀😀返水无上限 大额无忧!

糖果大水:PP电子极速糖果 单注500爆得500万U巨奖
麻将大水:PG电子麻将胡了2 玩家进关爆510万U 😀

🌟🌟🌟🌟🌟🌟🌟🌟🌟决战世界杯 狂欢盛宴

👍 投注加赠
每日最高可获得👍👍👍👍👍加赠

👍 返水加赠
每日最高可领取👍👍👍👍

🍀 亏损包赔
每日最高包赔👍👍👍👍👍👍
每日存款彩金每日送不停,😀😀😀😀😀😀😀

USDT存出款 电子超高爆率!
#电子真人0审核包出款
😳😁😉😚 无风控 免实名 无需手机号

👍👍👍👍👍
😀Solaire千亿实体资本,菲律宾索莱尔 · 官方直营😘#真人视讯单注限红20万u一口 欢迎各位大佬来爆庄 

😀 申请客服@N1VIPKF 👍
➡️ 活动频道: @N1SVIP 😀
🔗 官方网址: N10849.com 🌐
🚨 GitHub 监控消息提醒

🚨 发现关键词: #C2 #Framework

📦 项目名称: LatAD
👤 项目作者: ApartsinProjects
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-06 01:51:04

📝 项目描述:
Physically-grounded anomaly detection for massively-multimodal CPS normal data (MIIM). Joint VaDE + 3 components (C1 generation, C2 basin, C3 ensemble). Paper + PoC.

🔗 点击访问项目地址 GitHub - ApartsinProjects/LatAD: Physically-grounded anomaly detection for massively-multimodal CPS normal data (MIIM). Joint VaDE…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #CVE-2026 #POC

📦 项目名称: New-Magento-PoC
👤 项目作者: thecodeb0ss
🛠 开发语言: Unknown
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-06 01:46:43

📝 项目描述:
The new vuln of Magento has a Arbitary file upload/Remote code execution conditions.

🔗 点击访问项目地址 GitHub - thecodeb0ss/New-Magento-PoC: The new vuln of Magento has a Arbitary file upload/Remote code execution conditions.
🚨 GitHub 监控消息提醒

🚨 发现关键词: #CVE-2026 #POC

📦 项目名称: CVE-2026-25555
👤 项目作者: thecodeb0ss
🛠 开发语言: Unknown
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-06 01:48:51

📝 项目描述:
OpenBullet2 through version 0.3.2 contains an authentication bypass vulnerability in the API key authentication middleware that allows unauthenticated attackers to gain admin access by supplying an empty X-Api-Key header value.

🔗 点击访问项目地址 GitHub - thecodeb0ss/CVE-2026-25555: OpenBullet2 through version 0.3.2 contains an authentication bypass vulnerability in the API…
【2028体育2026年世界杯注定投注
🇷🇪🇻🇪🇺🇸🇻🇳

免实名 专属网址: 2028vip3.com

支持USDT
OKpay等20多种虚拟币钱包 微信 支付宝 银行卡存取款

百家乐战神
真人收割机 大佬一天收割2000万💥
PG战神 西港大佬麻将胡了1 两万一拉 爆3400万💥

🌟🌟🌟🌟🌟🌟🌟🌟🌟 四年一度的足球巅峰盛事
👍天天返水加赠最高😃😃😃😃😃😃
每日最高可享😀‰返水奖励,天天领取,惊喜不断!

👍打码加赠最高😃😃😃😃😃😃
有效投注即可参与,奖励天天派发!

👍比赛有输赢,福利不缺席
亏损补助最高😃😃😃😃😃助您重整旗鼓 再战赛场!

#世界杯2026 #高赔盘口
多种玩法选择: 赛前 / 滚球 / 波胆 / 让分
赔率清晰透明: 每一分判断都有价值
结算迅速到账: 赢得安心,看得尽兴

U存U提 每日提款不限额 欢迎各位大佬娱乐体验❗️

➡️ 福利频道: @PG2028TY 😀
💬 官方客服@fanxi99 👍
😳 爆庄网址: 2028vip3.com 🔗
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Fortinet #POC

📦 项目名称: fortideceptor-attack-simulator
👤 项目作者: fatihpurtas
🛠 开发语言: Shell
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-06 01:03:32

📝 项目描述:
Generic attack-simulation toolkit that validates FortiDeceptor and other deception/honeypot solutions by triggering decoys and correlating the alerts they raise. Purple-team PoC.

🔗 点击访问项目地址
🚨 GitHub 监控消息提醒

🚨 发现关键词: #YARA #rule

📦 项目名称: yara-c-holloman3
👤 项目作者: wessorh
🛠 开发语言: C
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-05 23:41:54

📝 项目描述:
YARA 4.5.7 with in-tree holloman fingerprinting module

🔗 点击访问项目地址 GitHub - wessorh/yara-c-holloman3: YARA 4.5.7 with in-tree holloman fingerprinting module
🚨 GitHub 监控消息提醒

🚨 发现关键词: #XSS #Reflected

📦 项目名称: SECR4483-medichain-remediation
👤 项目作者: danialnur
🛠 开发语言: PHP
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-05 23:52:41

📝 项目描述:
Post-incident remediation of SQL injection, reflected XSS, weak hashing, and unauthenticated encryption in a PHP/MySQL EHR case study (SECR4483 Secure Programming).

🔗 点击访问项目地址 danialnur/SECR4483-medichain-remediation
🚨 GitHub 监控消息提醒

🚨 发现关键词: #CVE-2026 #Exploit #RCE

📦 项目名称: CVE-2026-9290
👤 项目作者: shinthink
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-05 23:18:38

📝 项目描述:
Pre-auth Local File Inclusion in WP User Manager <= 2.9.17 via path traversal in tab parameter (CVSS 7.5)

🔗 点击访问项目地址 GitHub - shinthink/CVE-2026-9290: Pre-auth Local File Inclusion in WP User Manager <= 2.9.17 via path traversal in tab parameter…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Docker #EXP

📦 项目名称: imagens
👤 项目作者: salnart
🛠 开发语言: JavaScript
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-05 23:05:02

📝 项目描述:
A self-hosted AI image generation platform with multi-provider failover, user management, and admin panel. Deploy with Docker.

🔗 点击访问项目地址 GitHub - salnart/imagens: A self-hosted AI image generation platform with multi-provider failover, user management, and admin panel.…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #C2 #Framework

📦 项目名称: Apex-C2
👤 项目作者: MichaelFowler1
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-05 22:53:26

📝 项目描述:
A Software-in-the-Loop (SITL) simulation framework for autonomous satellite self-healing. Features local-first Flight Software (FSW) with ML-based anomaly detection to autonomously recover from adversarial C2 command injections in a physics-accurate orbital environment.

🔗 点击访问项目地址 GitHub - MichaelFowler1/Apex-C2: A Software-in-the-Loop (SITL) simulation framework for autonomous satellite self-healing. Features…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #CVE-2026 #Exploit #RCE

📦 项目名称: CVE-2026-8713
👤 项目作者: shinthink
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-05 22:32:32

📝 项目描述:
Pre-auth path traversal to arbitrary file delete in Avada (Fusion) Builder <= 3.15.3 leading to RCE (CVSS 9.1)

🔗 点击访问项目地址 GitHub - shinthink/CVE-2026-8713: Pre-auth path traversal to arbitrary file delete in Avada (Fusion) Builder <= 3.15.3 leading…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #XSS #CVE

📦 项目名称: Zero-Day-Legacy
👤 项目作者: Ayham-Megdadi
🛠 开发语言: Unknown
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-05 21:55:08

📝 项目描述:
A vulnerable Boot-to-Root CTF lab machine simulating a hospital environment. Features a realistic 17-step attack chain including SQL Injection, XSS, Session Hijacking, SSH access, password cracking, privilege escalation via CVE-2021-3493, and full root compromise. Developed as a graduation project at Al-Najah National University (ANU), awarded 97%.

🔗 点击访问项目地址 GitHub - Ayham-Megdadi/Zero-Day-Legacy: A vulnerable Boot-to-Root CTF lab machine simulating a hospital environment. Features a…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #CVE-2026 #POC

📦 项目名称: http2-bomb
👤 项目作者: Manisso
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-05 21:33:58

📝 项目描述:
Proof of Concept (PoC) for CVE-2026-49975 – HTTP/2 server memory exhaustion attack leveraging HPACK amplification and connection retention (HTTP/2 Slowloris).

🔗 点击访问项目地址 GitHub - Manisso/http2-bomb: Proof of Concept (PoC) for CVE-2026-49975 – HTTP/2 server memory exhaustion attack leveraging HPACK…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #RCE #Remote Code Execution

📦 项目名称: judgecode
👤 项目作者: darshil-2005
🛠 开发语言: JavaScript
Star数量: 1 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-05 20:25:49

📝 项目描述:
A full-stack, distributed online judge platform. Features a secure, multi-language Remote Code Execution (RCE) sandbox using Docker, asynchronous task queues with Redis/BullMQ, and a responsive Next.js dashboard.

🔗 点击访问项目地址 GitHub - darshil-2005/judgecode: A full-stack, distributed online judge platform. Features a secure, multi-language Remote Code…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #RCE #POC

📦 项目名称: libextractor-ole2-rce
👤 项目作者: Haitam-lazaar
🛠 开发语言: C
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-05 20:53:33

📝 项目描述:
PoC for a Critical stack-based buffer overflow in GNU libextractor ≤ 1.14. A malicious .doc file triggers an unbounded VLA allocation causing unconditional DoS. In multi-threaded environments, it bypasses stack-clash protections for full RCE.

🔗 点击访问项目地址 GitHub - Haitam-lazaar/libextractor-ole2-rce: PoC for a Critical stack-based buffer overflow in GNU libextractor ≤ 1.14. A malicious…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Vulnerability Scanner

📦 项目名称: Network-Scanner
👤 项目作者: frangelbarrera
🛠 开发语言: JavaScript
Star数量: 18 | 🍴 Fork数量: 1
📅 更新时间: 2026-07-05 21:00:11

📝 项目描述:
AI-powered network scanner & vulnerability scanner — nmap + Python + Flask + React. CLI, Web UI, API & PDF reports for pentesting & recon.

🔗 点击访问项目地址 GitHub - frangelbarrera/Network-Scanner: AI-powered network scanner & vulnerability scanner — nmap + Python + Flask + React. CLI…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #CVE-2026 #Exploit #RCE

📦 项目名称: CVE-2026-27966
👤 项目作者: shinthink
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-05 20:18:09

📝 项目描述:
Pre-auth RCE scanner for Langflow < 1.8.0 — Route Injection + Vertex Injection → Code Execution (CVSS 9.8)

🔗 点击访问项目地址 GitHub - shinthink/CVE-2026-27966: Pre-auth RCE scanner for Langflow < 1.8.0 — Route Injection + Vertex Injection → Code Execution…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #CVE-2026 #Exploit #RCE

📦 项目名称: CVE-2026-48939
👤 项目作者: shinthink
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-05 20:57:03

📝 项目描述:
Pre-auth arbitrary file upload RCE exploit for iCagenda Joomla extension < 4.0.8 (CVSS 10.0)

🔗 点击访问项目地址 GitHub - shinthink/CVE-2026-48939: Pre-auth arbitrary file upload RCE exploit for iCagenda Joomla extension < 4.0.8 (CVSS 10.0)
Back to Top