📦 GitHub 全球红队渗透资源中转站。
​旨在收录那些“好用却难找”的安全项目。
🔗 定时推送:GitHub Trending (Security)
🛠 必备清单:后渗透、远控、免杀、提权工具集
📅 更新频率:每日精选,绝不灌水。
⚠️ 本频道仅供安全研究与授权测试使用。
🚨 GitHub 监控消息提醒

🚨 发现关键词: #XSS #Stored

📦 项目名称: PentTest-DEPI-R4-2026
👤 项目作者: zeroXmoRamadan
🛠 开发语言: PHP
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 00:59:46

📝 项目描述:
An educational, intentionally vulnerable Laravel security lab for practicing web penetration testing and secure code review (SQLi, Stored XSS, Path Traversal, CSRF, IDOR). Graduation project for DEPI Round 4 - Infrastructure & Security - Vulnerability Analyst and Penetration Tester Track.

🔗 点击访问项目地址 GitHub - zeroXmoRamadan/PentTest-DEPI-R4-2026: An educational, intentionally vulnerable Laravel security lab for practicing web…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #NTLM Relay #AD

📦 项目名称: ghostlink-writeup
👤 项目作者: amnsecurity
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 01:01:48

📝 项目描述:
Ghostlink HTB — Full Chain AD + Gogs Exploitation | MQTT → NTLM Relay → Path Traversal → CVE-2025-8110 → ADCS ESC11 → DCSync | AMN SECURITY

🔗 点击访问项目地址 GitHub - amnsecurity/ghostlink-writeup: Ghostlink HTB — Full Chain AD + Gogs Exploitation | MQTT → NTLM Relay → Path Traversal…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #POC #RCE

📦 项目名称: cpm-poc-sdwebui-ext
👤 项目作者: Honeymalik007
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 00:57:27

📝 项目描述:
CPM PoC: evil Stable Diffusion WebUI extension (JHU 601.441 research)

🔗 点击访问项目地址 GitHub - Honeymalik007/cpm-poc-sdwebui-ext: CPM PoC: evil Stable Diffusion WebUI extension (JHU 601.441 research)
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Burp #Extension

📦 项目名称: burp-mcp-companion
👤 项目作者: tcyph3r
🛠 开发语言: Kotlin
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-10 00:29:31

📝 项目描述:
Burp Suite extension exposing a security-aware MCP server over SSE, giving AI assistants structured access to Burp's scanner, sitemap, scope, cookies, and annotations

🔗 点击访问项目地址 GitHub - tcyph3r/burp-mcp-companion: Burp Suite extension exposing a security-aware MCP server over SSE, giving AI assistants structured…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Burp #Plugin #Extension

📦 项目名称: burpsuite-executor-scripts
👤 项目作者: caleb-hughes2000
🛠 开发语言: HTML
Star数量: 7 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-09 22:50:37

📝 项目描述:
Security researcher's BurpSuite plugin collection 2026: non-BApp extensions, custom Java plugins, request tools, SQLMap integration, Shiro & WAF scanners, Python automation scripts. Handpicked for advanced pentesting workflows.

🔗 点击访问项目地址 GitHub - caleb-hughes2000/burpsuite-executor-scripts: Security researcher's BurpSuite plugin collection 2026: non-BApp extensions…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #XSS #POC

📦 项目名称: xss-poc
👤 项目作者: iagosantostech
🛠 开发语言: HTML
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-09 22:41:47

📝 项目描述:
无描述

🔗 点击访问项目地址 GitHub - iagosantostech/xss-poc
🚨 GitHub 监控消息提醒

🚨 发现关键词: #CVE-2026 #Exploit

📦 项目名称: oppo-ghostlock
👤 项目作者: pubglite55
🛠 开发语言: C
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-09 22:57:26

📝 项目描述:
OPPO Find N2 GhostLock (CVE-2026-43499) exploit adaptation

🔗 点击访问项目地址
🚨 GitHub 监控消息提醒

🚨 发现关键词: #XSS #Stored #Reflected #DOM

📦 项目名称: fintech-vuln-app
👤 项目作者: Cookies307
🛠 开发语言: JavaScript
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-09 21:17:46

📝 项目描述:
A deliberately vulnerable FinTech web application for web application penetration testing practice.

🔗 点击访问项目地址 GitHub - Cookies307/fintech-vuln-app: A deliberately vulnerable FinTech web application for web application penetration testing…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #CVE-2026 #POC

📦 项目名称: CVE-2026-49230-APISIX-jwe-decrypt-Auth-Bypass
👤 项目作者: BiiTts
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-09 21:49:01

📝 项目描述:
PoC for CVE-2026-49230: Apache APISIX jwe-decrypt authentication bypass (missing AES-GCM tag validation, CWE-354, CVSS 9.1)

🔗 点击访问项目地址 GitHub - BiiTts/CVE-2026-49230-APISIX-jwe-decrypt-Auth-Bypass: PoC for CVE-2026-49230: Apache APISIX jwe-decrypt authentication…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #CVE-2026 #Exploit

📦 项目名称: CVE-2026-12400-Exploit
👤 项目作者: 0x00phantom-hat
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-09 21:56:46

📝 项目描述:
无描述

🔗 点击访问项目地址 GitHub - 0x00phantom-hat/CVE-2026-12400-Exploit
🚨 GitHub 监控消息提醒

🚨 发现关键词: #C2 #Beacon #Command and Control

📦 项目名称: netsupport-rat-analysis
👤 项目作者: nzubeio
🛠 开发语言: Unknown
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-09 20:58:38

📝 项目描述:
A malware traffic analysis investigation of a NetSupport RAT infection using Wireshark, including IOC identification, C2 analysis, and incident documentation.

🔗 点击访问项目地址 GitHub - nzubeio/netsupport-rat-analysis: A malware traffic analysis investigation of a NetSupport RAT infection using Wireshark…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Sliver #C2

📦 项目名称: sliver-gui
👤 项目作者: Gubarz
🛠 开发语言: Svelte
Star数量: 6 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-09 19:59:41

📝 项目描述:
A fast, reactive graphical interface for managing Sliver C2 operations, powered by Wails and Svelte.

🔗 点击访问项目地址 GitHub - Gubarz/sliver-gui: A fast, reactive graphical interface for managing Sliver C2 operations, powered by Wails and Svelte.
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Vulnerability Scanner

📦 项目名称: network-vulnerability-scanner
👤 项目作者: avishkar-jadhav
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-09 19:55:32

📝 项目描述:
A Python-based Network Vulnerability Scanner for TCP port scanning, service detection, risk analysis, and report generation.

🔗 点击访问项目地址 GitHub - avishkar-jadhav/network-vulnerability-scanner: A Python-based Network Vulnerability Scanner for TCP port scanning, service…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Vulnerability Scanner

📦 项目名称: vulnscanner
👤 项目作者: moblank9
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-09 20:00:00

📝 项目描述:
VulnScanner is a modular, asynchronous vulnerability scanner that goes far beyond simple port scanning. **WARNING: This tool is intended ONLY for authorized security assessments.**

🔗 点击访问项目地址
🚨 GitHub 监控消息提醒

🚨 发现关键词: #YARA #malware

📦 项目名称: ransomware-defense-framework
👤 项目作者: mrezwanulbari
🛠 开发语言: YARA
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-09 20:02:31

📝 项目描述:
Comprehensive ransomware prevention, detection, and response framework aligned with CISA advisories

🔗 点击访问项目地址
🚨 GitHub 监控消息提醒

🚨 发现关键词: #YARA #rules

📦 项目名称: cybersecurity-defense-frameworks
👤 项目作者: mrezwanulbari
🛠 开发语言: YARA
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-09 20:02:46

📝 项目描述:
Defense-in-depth reference framework with YARA/Sigma detection templates and incident playbook structures for enterprise SOC teams

🔗 点击访问项目地址
🚨 GitHub 监控消息提醒

🚨 发现关键词: #POC #CVE #RCE

📦 项目名称: CVE-2026-61343-poc-librebooking-rce
👤 项目作者: nmagill123
🛠 开发语言: Unknown
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-09 20:00:49

📝 项目描述:
Librebooking Admin RCE PoC CVE-2026-61343

🔗 点击访问项目地址 GitHub - nmagill123/CVE-2026-61343-poc-librebooking-rce: Librebooking Admin RCE PoC CVE-2026-61343
🚨 GitHub 监控消息提醒

🚨 发现关键词: #CVE-2026 #漏洞

📦 项目名称: KVM-Januscape
👤 项目作者: xj2268-TA
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-09 19:05:03

📝 项目描述:
CVE-2026-53359漏洞补丁

🔗 点击访问项目地址 GitHub - xj2268-TA/KVM-Januscape: CVE-2026-53359漏洞补丁
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Vulnerability Scanner

📦 项目名称: vuln-scanner
👤 项目作者: tearz52
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-09 18:22:39

📝 项目描述:
Simple vulnerability scanner for reconnaisance.

🔗 点击访问项目地址 GitHub - tearz52/vuln-scanner: Simple vulnerability scanner for reconnaisance.
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Vulnerability Scanner

📦 项目名称: poutine
👤 项目作者: boostsecurityio
🛠 开发语言: Go
Star数量: 489 | 🍴 Fork数量: 40
📅 更新时间: 2026-07-09 18:40:38

📝 项目描述:
poutine, a supply chain vulnerability scanner for build pipelines

🔗 点击访问项目地址 GitHub - boostsecurityio/poutine: poutine, a supply chain vulnerability scanner for build pipelines
Back to Top