📦 GitHub 全球红队渗透资源中转站。
​旨在收录那些“好用却难找”的安全项目。
🔗 定时推送:GitHub Trending (Security)
🛠 必备清单:后渗透、远控、免杀、提权工具集
📅 更新频率:每日精选,绝不灌水。
⚠️ 本频道仅供安全研究与授权测试使用。
🚨 GitHub 监控消息提醒

🚨 发现关键词: #POC #CVE

📦 项目名称: CVE-2026-15583-PoC
👤 项目作者: codeb0ssx
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-17 21:06:49

📝 项目描述:
Academic proof-of-concept demonstrating CVE-2026-15583 for authorized security research.

🔗 点击访问项目地址 GitHub - codeb0ssx/CVE-2026-15583-PoC: Academic proof-of-concept demonstrating CVE-2026-15583 for authorized security research.
🚨 GitHub 监控消息提醒

🚨 发现关键词: #RCE #POC

📦 项目名称: music-user-id-rce-poc-20260717
👤 项目作者: notdenied
🛠 开发语言: HTML
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-17 20:20:51

📝 项目描述:
Authorized Yandex Music user_id_host remote delivery security PoC

🔗 点击访问项目地址 GitHub - notdenied/music-user-id-rce-poc-20260717: Authorized Yandex Music user_id_host remote delivery security PoC
🚨 GitHub 监控消息提醒

🚨 发现关键词: #XSS #POC #Reflected #DOM

📦 项目名称: vex
👤 项目作者: Egzozzz
🛠 开发语言: Python
Star数量: 6 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-17 21:03:04

📝 项目描述:
vex is an AI-driven security suite designed for rapid vulnerability discovery. From SQLi and XSS to complex IDOR and broken access control flaws, vex leverages smart crawling and adaptive payload generation to streamline your security testing and reporting workflow.

🔗 点击访问项目地址
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Nuclei #template

📦 项目名称: bss-recon
👤 项目作者: ebuggy84
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-17 20:41:13

📝 项目描述:
19-module OSINT/recon security platform — CLI, scoring, OWASP/MITRE reporting, and web dashboard

🔗 点击访问项目地址 GitHub - ebuggy84/bss-recon: 19-module OSINT/recon security platform — CLI, scoring, OWASP/MITRE reporting, and web dashboard
🚨 GitHub 监控消息提醒

🚨 发现关键词: #CVE-2026 #Exploit

📦 项目名称: WordPress-KeepInMind-CVE-2026-9271-Exploit
👤 项目作者: CerberusMrXi
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-17 20:45:35

📝 项目描述:
WordPress KeepInMind CVE-2026-9271 Exploit - Tool detecting stored XSS in KeepInMind plugin v0.8.4.2 and below. Built by Sudeepa Wanigarathna, it simulates CSS injection to hijack admin accounts. Features safe testing, attack simulation, credential capture, bulk scanning, reporting. Essential for security researchers.

🔗 点击访问项目地址 GitHub - CerberusMrXi/WordPress-KeepInMind-CVE-2026-9271-Exploit: WordPress KeepInMind CVE-2026-9271 Exploit - Tool detecting stored…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #CVE-2026 #POC

📦 项目名称: CVE-2026-46442-PoC
👤 项目作者: chinaxploiter
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-17 20:57:56

📝 项目描述:
Academic proof-of-concept demonstrating CVE-2026-46442 for authorized security research.

🔗 点击访问项目地址
🚨 GitHub 监控消息提醒

🚨 发现关键词: #CVE-2026 #Exploit #RCE

📦 项目名称: CVE-2026-15409-15410-Framework
👤 项目作者: tc4dy
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-17 19:23:47

📝 项目描述:
CVE-2026-15409/15410 SonicWall SMA1000 multi-exploit framework 🔥 SSRF→Erlang RPC→RCE→root privesc. Features: --detect safe check, --exec, --read-file, --privesc, --rpc, interactive shell, batch threading, file write, ws-url override, pipe support.🛡️ KEV listed CVSS 10.0 actively exploited. Authorized testing only. Use Ethically, Stay Legal. 🔒

🔗 点击访问项目地址 GitHub - tc4dy/CVE-2026-15409-15410-Framework: ⚡ CVE-2026-15409/15410 SonicWall SMA1000 multi-exploit framework 🔥 SSRF→Erlang RPC→RCE→root…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Burp #Extension

📦 项目名称: Burp-nmap
👤 项目作者: chan770
🛠 开发语言: Java
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-17 18:53:41

📝 项目描述:
Burp Suite Pro extension: run nmap ssl-enum-ciphers and report weak TLS/SSL (TLS 1.0/1.1, weak ciphers) as native Burp issues

🔗 点击访问项目地址 GitHub - chan770/Burp-nmap: Burp Suite Pro extension: run nmap ssl-enum-ciphers and report weak TLS/SSL (TLS 1.0/1.1, weak ciphers)…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #XSS #Stored

📦 项目名称: Cyber_Security_Stored_XSS_Comment_Project
👤 项目作者: sonali8160
🛠 开发语言: HTML
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-17 18:24:06

📝 项目描述:
无描述

🔗 点击访问项目地址 GitHub - sonali8160/Cyber_Security_Stored_XSS_Comment_Project
🚨 GitHub 监控消息提醒

🚨 发现关键词: #XSS #Stored

📦 项目名称: dalfox-rs
👤 项目作者: santhreal
🛠 开发语言: Rust
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-17 18:55:06

📝 项目描述:
Type-safe asynchronous wrapper for the Dalfox XSS scanner (Dalfox ≥3) with JSON findings, stored XSS support, and multi-format result formatting

🔗 点击访问项目地址 GitHub - santhreal/dalfox-rs: Type-safe asynchronous wrapper for the Dalfox XSS scanner (Dalfox ≥3) with JSON findings, stored…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #YARA #malware

📦 项目名称: APEX-CENTRUM-ACE
👤 项目作者: ASEP6969
🛠 开发语言: Shell
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-17 18:02:38

📝 项目描述:
Apex Centrum (ACE) - autonomous read-only malware/trojan triage agent built on opencode + YARA

🔗 点击访问项目地址
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Nuclei #templates

📦 项目名称: nuclei-custom-templates
👤 项目作者: Caddyshack2175
🛠 开发语言: Unknown
Star数量: 5 | 🍴 Fork数量: 1
📅 更新时间: 2026-07-17 17:05:36

📝 项目描述:
Custom Nuclei templates for web testing.

🔗 点击访问项目地址 GitHub - Caddyshack2175/nuclei-custom-templates: Custom Nuclei templates for web testing.
🚨 GitHub 监控消息提醒

🚨 发现关键词: #XSS #POC #Stored #Reflected

📦 项目名称: Babafrar
👤 项目作者: mohithakur0602
🛠 开发语言: Shell
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-17 17:06:30

📝 项目描述:
XSS hunting framewor

🔗 点击访问项目地址 GitHub - mohithakur0602/Babafrar: XSS hunting framewor
🚨 GitHub 监控消息提醒

🚨 发现关键词: #渗透测试 #漏洞

📦 项目名称: pentest-gui
👤 项目作者: WAjkl
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-17 17:41:34

📝 项目描述:
16 个渗透测试工具的集成 GUI 平台,一键安装,开箱即用

🔗 点击访问项目地址 GitHub - WAjkl/pentest-gui: 16 个渗透测试工具的集成 GUI 平台,一键安装,开箱即用
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Vulnerability Scanner

📦 项目名称: vulnerability-scanner-python
👤 项目作者: SumitSonkusale
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-17 17:41:17

📝 项目描述:
Network vulnerability scanner that checks open ports, HTTP security headers, and known CVEs — built for pentest and security audit workflows

🔗 点击访问项目地址 GitHub - SumitSonkusale/vulnerability-scanner-python: Network vulnerability scanner that checks open ports, HTTP security headers…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #CVE-2026 #POC #Exploit #RCE

📦 项目名称: CVE-2026-15409-PoC-Exploit
👤 项目作者: tc4dy
🛠 开发语言: Python
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-17 17:59:03

📝 项目描述:
CVE-2026-15409/15410 SonicWall SMA1000 exploit framework 🔥 SSRF→Erlang RPC→RCE→root privesc. Features: --detect safe check, --exec, --read-file, --privesc, --rpc, interactive shell, batch threading, file write, ws-url override, pipe support.🛡️ KEV listed CVSS 10.0 actively exploited. Authorized testing only. Use Ethically, Stay Legal. 🔒

🔗 点击访问项目地址 GitHub - tc4dy/CVE-2026-15409-PoC-Exploit: ⚡ CVE-2026-15409/15410 SonicWall SMA1000 exploit framework 🔥 SSRF→Erlang RPC→RCE→root…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Burp #Extension

📦 项目名称: burp-suite-executor-scripts
👤 项目作者: owenihfyoung3284
🛠 开发语言: HTML
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-17 16:57:30

📝 项目描述:
A practical Burp Suite script library with reusable automation, extension samples, and hands-on security testing helpers collected in one organized repository.

🔗 点击访问项目地址 GitHub - owenihfyoung3284/burp-suite-executor-scripts: A practical Burp Suite script library with reusable automation, extension…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Burp #Plugin #Extension

📦 项目名称: JQ-Navigator
👤 项目作者: xtormin
🛠 开发语言: Java
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-17 17:01:54

📝 项目描述:
Burp Suite extension that turns JSON into a clickable tree — click any node to auto-generate the jq path, run it with an embedded jq engine (no external binary), and reuse it via history & saved templates.

🔗 点击访问项目地址 GitHub - xtormin/JQ-Navigator: Burp Suite extension that turns JSON into a clickable tree — click any node to auto-generate the…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Vulnerability Scanner

📦 项目名称: CyberSentinel-Advanced-Web-Vulnerability-Scanner
👤 项目作者: Suriya-cyber-cell
🛠 开发语言: Unknown
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-17 16:56:39

📝 项目描述:
CyberSentinel is an advanced web vulnerability scanner built using Python and Flask. It performs automated reconnaissance, identifies common security misconfigurations, analyzes HTTP headers, SSL/TLS configuration, detects exposed admin panels, scans for directory listing, and generates PDF, JSON, and HTML reports.

🔗 点击访问项目地址 GitHub - Suriya-cyber-cell/CyberSentinel-Advanced-Web-Vulnerability-Scanner: CyberSentinel is an advanced web vulnerability scanner…
🚨 GitHub 监控消息提醒

🚨 发现关键词: #Jenkins #POC

📦 项目名称: jenkins-kubernetes-agent-poc
👤 项目作者: Ashir-Qayyum
🛠 开发语言: JavaScript
Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-07-17 16:56:43

📝 项目描述:
无描述

🔗 点击访问项目地址
Back to Top