📦 GitHub 全球红队渗透资源中转站。
​旨在收录那些“好用却难找”的安全项目。
🔗 定时推送:GitHub Trending (Security)
🛠 必备清单:后渗透、远控、免杀、提权工具集
📅 更新频率:每日精选,绝不灌水。
⚠️ 本频道仅供安全研究与授权测试使用。
🚨 GitHub 监控消息提醒

🚨 发现关键词: #漏洞 #扫描

📦 项目名称: xlJEtJPKKf
👤 项目作者: kevinyang11101gg
🛠 开发语言: Unknown
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-06 08:14:01

📝 项目描述:
【Python计算机毕业设计分享】基于Python的注入漏洞扫描工具研究及防护实现,MySQL Python开发 毕业设计 实战项目【附源码、文档报告、代码讲解】

🔗 点击访问项目地址
🚨 GitHub 监控消息提醒

🚨 发现关键词: #0day #Exploit #RCE

📦 项目名称: CVE-2022-26265
👤 项目作者: sh4den
🛠 开发语言: Python
Star数量: 10 | 🍴 Fork数量: 1
📅 更新时间: 2026-07-06 08:38:41

📝 项目描述:
The first proof of concept of the Contao CMS RCE

🔗 点击访问项目地址 GitHub - sh4den/CVE-2022-26265: The first proof of concept of the Contao CMS RCE
🚨 GitHub 监控消息提醒

🚨 发现关键词: #XSS #POC

📦 项目名称: BenchmarkJava-lite-demo
👤 项目作者: speedofsound98
🛠 开发语言: HTML
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-06 08:39:51

📝 项目描述:
AppSecAI POC — minimal: SQLi, CMDi, XSS, hardcoded credentials (~8 findings, fast run)

🔗 点击访问项目地址 GitHub - speedofsound98/BenchmarkJava-lite-demo: AppSecAI POC — minimal: SQLi, CMDi, XSS, hardcoded credentials (~8 findings, fast…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #CVE-2026 #POC #Exploit #Nuclei

📦 项目名称: CVE-2026-21858
👤 项目作者: sh4den
🛠 开发语言: Python
Star数量: 3 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-06 08:39:07

📝 项目描述:
Proof of Concept: CVE-2026-21858 is vulnerability on n8n where unauthenticated remote attackers can access sensitive files.

🔗 点击访问项目地址 GitHub - sh4den/CVE-2026-21858: Proof of Concept: CVE-2026-21858 is vulnerability on n8n where unauthenticated remote attackers…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #CVE-2026 #POC #Exploit #Nuclei

📦 项目名称: CVE-2026-24061
👤 项目作者: sh4den
🛠 开发语言: Python
Star数量: 5 | 🍴 Fork数量: 1
📅 更新时间: 2026-07-06 08:39:09

📝 项目描述:
Proof of Concept: CVE-2026-24061 is a critical authentication bypass vulnerability in GNU inetutils-telnetd allowing unauthenticated remote attackers to gain instant root shell access via malicious NEW_ENVIRON telnet option exploitation.

🔗 点击访问项目地址 GitHub - sh4den/CVE-2026-24061: Proof of Concept: CVE-2026-24061 is a critical authentication bypass vulnerability in GNU inetutils…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #C2 #Beacon

📦 项目名称: redteam_agent
👤 项目作者: daoquynhthu
🛠 开发语言: C++
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-06 08:00:37

📝 项目描述:
A stealthy C2 agent for advanced red team operations, featuring indirect syscalls, memory/stack obfuscation, and HTTPS communication.

🔗 点击访问项目地址
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Nuclei #template #CVE

📦 项目名称: fuzzing-vps
👤 项目作者: george1-adel
🛠 开发语言: Shell
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-06 07:58:57

📝 项目描述:
🎯 One-click fuzzing VPS via GitHub Actions - Auto-installs ffuf, nuclei, httpx, subfinder + SecLists wordlists

🔗 点击访问项目地址
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Vulnerability Scanner

📦 项目名称: Bitcoin-ECDSA-Vulnerability-Scanner-
👤 项目作者: vatupelage
🛠 开发语言: Python
Star数量: 1 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-06 08:02:18

📝 项目描述:
This guide provides a complete, error-free implementation of a high-performance Bitcoin ECDSA vulnerability scanner in C++ for Ubuntu Linux. The scanner efficiently detects R-value reuse vulnerabilities while minimizing API calls.

🔗 点击访问项目地址 GitHub - vatupelage/Bitcoin-ECDSA-Vulnerability-Scanner-: This guide provides a complete, error-free implementation of a high-performance…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #XSS #POC

📦 项目名称: Real-Time-Bidding-POC
👤 项目作者: KChakritha143
🛠 开发语言: JavaScript
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-06 07:26:50

📝 项目描述:
Real-Time Bidding POC built with React, Node.js, Express, and Socket.IO. Supports live bid updates via WebSockets, real-time synchronization across users, input validation, loading and empty states, accessibility features, analytics logging, XSS protection, and auction reset functionality with a clean responsive interface.

🔗 点击访问项目地址 GitHub - KChakritha143/Real-Time-Bidding-POC: Real-Time Bidding POC built with React, Node.js, Express, and Socket.IO. Supports…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Confluence #POC

📦 项目名称: confluence-rag-ingestor
👤 项目作者: pradeep2Tech
🛠 开发语言: Java
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-06 06:48:17

📝 项目描述:
RAG ingestor written in Java, Spring AI

🔗 点击访问项目地址 GitHub - pradeep2Tech/confluence-rag-ingestor: RAG ingestor written in Java, Spring AI
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Docker #Exploit

📦 项目名称: SNEK_Blue-War-Hammer
👤 项目作者: kupfferscellwatchnight301
🛠 开发语言: C
Star数量: 0 | 🍴 Fork数量: 1
📅 更新时间: 2026-07-06 07:04:54

📝 项目描述:
Analyze Windows Defender update mechanisms and file access controls through secure, technical proof-of-concept research.

🔗 点击访问项目地址 GitHub - kupfferscellwatchnight301/SNEK_Blue-War-Hammer: Analyze Windows Defender update mechanisms and file access controls through…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Fortinet #CVE

📦 项目名称: Fortinet-Certified-Fundamentals-Cybersecurity
👤 项目作者: Deepanshumittal1006
🛠 开发语言: Unknown
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-06 06:49:38

📝 项目描述:
无描述

🔗 点击访问项目地址 GitHub - Deepanshumittal1006/Fortinet-Certified-Fundamentals-Cybersecurity
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Nuclei #template

📦 项目名称: nuclei-template
👤 项目作者: sudouday
🛠 开发语言: Unknown
Star数量: 2 | 🍴 Fork数量: 1
📅 更新时间: 2026-07-06 06:51:25

📝 项目描述:
Nuclei Templete for Fuzzing Webapplications

🔗 点击访问项目地址 GitHub - sudouday/nuclei-template: Nuclei Templete for Fuzzing Webapplications
🚨 GitHub 监控消息提醒

🚨 发现关键词: #XSS #DOM

📦 项目名称: flask-web-security-lab
👤 项目作者: Chanindhu
🛠 开发语言: HTML
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-06 05:49:05

📝 项目描述:
Flask web security lab demonstrating CSRF and DOM-based XSS vulnerabilities, exploitation demos, and mitigation techniques.

🔗 点击访问项目地址 GitHub - Chanindhu/flask-web-security-lab: Flask web security lab demonstrating CSRF and DOM-based XSS vulnerabilities, exploitation…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #BlueTeam #Response

📦 项目名称: bnb-table
👤 项目作者: xD4O
🛠 开发语言: JavaScript
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-06 05:59:05

📝 项目描述:
Local LAN-multiplayer + solo-with-AI table for Backdoors & Breaches (incident-response card game). Node + WebSockets, hidden GM objectives, Ollama narrator.

🔗 点击访问项目地址 GitHub - xD4O/bnb-table: Local LAN-multiplayer + solo-with-AI table for Backdoors & Breaches (incident-response card game). Node…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #YARA #rules

📦 项目名称: nhei-yara-rules
👤 项目作者: dtaoOfficial
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-06 06:03:44

📝 项目描述:
无描述

🔗 点击访问项目地址
🚨 GitHub 监控消息提醒

🚨 发现关键词: #YARA #rule

📦 项目名称: forerunner
👤 项目作者: im-tyler
🛠 开发语言: Go
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-06 04:04:10

📝 项目描述:
Enterprise EDR — multi-platform agents (Win/Linux/macOS) with YARA/Sigma/behavioral/ML detection, automated response, mTLS, React SOC portal.

🔗 点击访问项目地址 GitHub - im-tyler/forerunner: Enterprise EDR — multi-platform agents (Win/Linux/macOS) with YARA/Sigma/behavioral/ML detection…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Shiro #CVE

📦 项目名称: shiro
👤 项目作者: AlaudaDevops
🛠 开发语言: Java
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-06 03:41:19

📝 项目描述:
Apache Shiro fork with CVE backports for Nexus

🔗 点击访问项目地址 GitHub - AlaudaDevops/shiro: Apache Shiro fork with CVE backports for Nexus
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Burp #Extension

📦 项目名称: burpsuite-ai-scanner
👤 项目作者: Sdeveandteam
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-06 02:55:32

📝 项目描述:
Burp Suite Full Feature Extension with AI SQL Injection Scanner by sdev.

🔗 点击访问项目地址 GitHub - Sdeveandteam/burpsuite-ai-scanner: Burp Suite Full Feature Extension with AI SQL Injection Scanner by sdev.
🚨 GitHub 监控消息提醒

🚨 发现关键词: #C2 #Framework

📦 项目名称: LatAD
👤 项目作者: ApartsinProjects
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-06 01:51:04

📝 项目描述:
Physically-grounded anomaly detection for massively-multimodal CPS normal data (MIIM). Joint VaDE + 3 components (C1 generation, C2 basin, C3 ensemble). Paper + PoC.

🔗 点击访问项目地址 GitHub - ApartsinProjects/LatAD: Physically-grounded anomaly detection for massively-multimodal CPS normal data (MIIM). Joint VaDE…
Back to Top