📦 GitHub 全球红队渗透资源中转站。
旨在收录那些“好用却难找”的安全项目。
🔗 定时推送:GitHub Trending (Security)
🛠 必备清单:后渗透、远控、免杀、提权工具集
📅 更新频率:每日精选,绝不灌水。
⚠️ 本频道仅供安全研究与授权测试使用。
旨在收录那些“好用却难找”的安全项目。
🔗 定时推送:GitHub Trending (Security)
🛠 必备清单:后渗透、远控、免杀、提权工具集
📅 更新频率:每日精选,绝不灌水。
⚠️ 本频道仅供安全研究与授权测试使用。
🚨 GitHub 监控消息提醒
🚨 发现关键词: #SSRF #metadata
📦 项目名称: My-SSRF-Learning-Notes
👤 项目作者: Raunaksplanet
🛠 开发语言: Unknown
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-13 18:28:52
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #SSRF #metadata
📦 项目名称: My-SSRF-Learning-Notes
👤 项目作者: Raunaksplanet
🛠 开发语言: Unknown
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-13 18:28:52
📝 项目描述:
无描述🔗 点击访问项目地址
GitHub
GitHub - Raunaksplanet/My-SSRF-Learning-Notes
Contribute to Raunaksplanet/My-SSRF-Learning-Notes development by creating an account on GitHub.
🚨 GitHub 监控消息提醒
🚨 发现关键词: #SSRF #metadata
📦 项目名称: ssrfmcp
👤 项目作者: cognis-digital
🛠 开发语言: Python
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-11 20:05:39
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #SSRF #metadata
📦 项目名称: ssrfmcp
👤 项目作者: cognis-digital
🛠 开发语言: Python
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-11 20:05:39
📝 项目描述:
Consent-based SSRF probe harness for MCP servers that fetch URLs🔗 点击访问项目地址
GitHub
GitHub - cognis-digital/ssrfmcp: Consent-based SSRF probe harness for MCP servers that fetch URLs
Consent-based SSRF probe harness for MCP servers that fetch URLs - cognis-digital/ssrfmcp
🚨 GitHub 监控消息提醒
🚨 发现关键词: #SSRF #metadata
📦 项目名称: cyber-toolkit
👤 项目作者: Alirewa
🛠 开发语言: TypeScript
⭐ Star数量: 1 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-10 23:24:55
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #SSRF #metadata
📦 项目名称: cyber-toolkit
👤 项目作者: Alirewa
🛠 开发语言: TypeScript
⭐ Star数量: 1 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-10 23:24:55
📝 项目描述:
🛡️ Self-hosted bug bounty & penetration testing toolkit — 11 security tools (WHOIS/DNS/SSL/JWT/…), 14 interactive hacking labs (XSS/SQLi/IDOR/SSRF/…), findings tracker. No login, no cloud. One command on Windows.🔗 点击访问项目地址
GitHub
GitHub - Alirewa/cyber-toolkit: 🛡️ Self-hosted bug bounty & penetration testing toolkit — 11 security tools (WHOIS/DNS/SSL/JWT/…)…
🛡️ Self-hosted bug bounty & penetration testing toolkit — 11 security tools (WHOIS/DNS/SSL/JWT/…), 14 interactive hacking labs (XSS/SQLi/IDOR/SSRF/…), findings tracker. No login, no cloud. ...
🚨 GitHub 监控消息提醒
🚨 发现关键词: #SSRF #metadata
📦 项目名称: ssrf-lab
👤 项目作者: renansj
🛠 开发语言: Python
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-10 19:18:16
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #SSRF #metadata
📦 项目名称: ssrf-lab
👤 项目作者: renansj
🛠 开发语言: Python
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-10 19:18:16
📝 项目描述:
Lab de SSRF com Docker - aplicação Flask vulnerável, serviços internos, mock de metadata AWS. Material de apoio: https://renansj.dev/ssrf🔗 点击访问项目地址
GitHub
GitHub - renansj/ssrf-lab: Lab de SSRF com Docker - aplicação Flask vulnerável, serviços internos, mock de metadata AWS. Material…
Lab de SSRF com Docker - aplicação Flask vulnerável, serviços internos, mock de metadata AWS. Material de apoio: https://renansj.dev/ssrf - renansj/ssrf-lab
🚨 GitHub 监控消息提醒
🚨 发现关键词: #SSRF #metadata
📦 项目名称: fastapi_boilerplate
👤 项目作者: prajwalmahajan101
🛠 开发语言: Python
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-09 12:47:07
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #SSRF #metadata
📦 项目名称: fastapi_boilerplate
👤 项目作者: prajwalmahajan101
🛠 开发语言: Python
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-09 12:47:07
📝 项目描述:
Production-grade FastAPI + async SQLAlchemy starter: response envelope, typed exceptions, Redis-backed resilience (circuit breaker + retry + cache + rate-limit, in-memory fallback), structured logging with request-id, API audit log, SSRF-safe HTTP, security middleware, AWS Secrets Manager, Alembic, Docker, pre-commit.🔗 点击访问项目地址
🚨 GitHub 监控消息提醒
🚨 发现关键词: #SSRF #metadata
📦 项目名称: mcp-searxng-relay
👤 项目作者: littleoffice
🛠 开发语言: Go
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-09 09:11:44
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #SSRF #metadata
📦 项目名称: mcp-searxng-relay
👤 项目作者: littleoffice
🛠 开发语言: Go
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-09 09:11:44
📝 项目描述:
Hardened MCP web search through your own SearXNG — bearer auth, per-identity audit logs, SSRF-protected fetching, reproducible container builds. Supports Claude Desktop, Docker, and Kubernetes. GPL-3.0.🔗 点击访问项目地址
GitHub
GitHub - littleoffice/mcp-searxng-relay: Hardened MCP web search through your own SearXNG — bearer auth, per-identity audit logs…
Hardened MCP web search through your own SearXNG — bearer auth, per-identity audit logs, SSRF-protected fetching, reproducible container builds. Supports Claude Desktop, Docker, and Kubernetes. GPL...
🚨 GitHub 监控消息提醒
🚨 发现关键词: #SSRF #metadata
📦 项目名称: all-converter
👤 项目作者: simonpierreboucher02
🛠 开发语言: JavaScript
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-08 03:22:34
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #SSRF #metadata
📦 项目名称: all-converter
👤 项目作者: simonpierreboucher02
🛠 开发语言: JavaScript
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-08 03:22:34
📝 项目描述:
Convert anything, from anywhere — universal file conversion platform (Node.js + FFmpeg/ImageMagick/LibreOffice/Pandoc...). SSRF-protected URL import, 9 categories.🔗 点击访问项目地址
GitHub
GitHub - simonpierreboucher02/all-converter: Convert anything, from anywhere — universal file conversion platform (Node.js + F…
Convert anything, from anywhere — universal file conversion platform (Node.js + FFmpeg/ImageMagick/LibreOffice/Pandoc...). SSRF-protected URL import, 9 categories. - simonpierreboucher02/all-converter
🚨 GitHub 监控消息提醒
🚨 发现关键词: #SSRF #metadata
📦 项目名称: SSRF_Hunter
👤 项目作者: Mostafa-Maklad
🛠 开发语言: Python
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-07 23:34:43
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #SSRF #metadata
📦 项目名称: SSRF_Hunter
👤 项目作者: Mostafa-Maklad
🛠 开发语言: Python
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-07 23:34:43
📝 项目描述:
Automated SSRF detection tool — bypass techniques, cloud metadata, OOB confirmation, JSON evidence output🔗 点击访问项目地址
GitHub
GitHub - Mostafa-Maklad/SSRF_Hunter: Automated SSRF detection tool — bypass techniques, cloud metadata, OOB confirmation, JSON…
Automated SSRF detection tool — bypass techniques, cloud metadata, OOB confirmation, JSON evidence output - Mostafa-Maklad/SSRF_Hunter
🚨 GitHub 监控消息提醒
🚨 发现关键词: #SSRF #metadata
📦 项目名称: laravel-ssrf-pin
👤 项目作者: kent013
🛠 开发语言: PHP
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-07 11:25:19
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #SSRF #metadata
📦 项目名称: laravel-ssrf-pin
👤 项目作者: kent013
🛠 开发语言: PHP
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-07 11:25:19
📝 项目描述:
SSRF-safe outbound HTTP for Laravel — validates URLs/IPs and pins each connection to the checked IP via libcurl CURLOPT_RESOLVE, re-checking every redirect hop to defeat DNS rebinding (TOCTOU)🔗 点击访问项目地址
GitHub
GitHub - kent013/laravel-ssrf-pin: SSRF-safe outbound HTTP for Laravel — validates URLs/IPs and pins each connection to the checked…
SSRF-safe outbound HTTP for Laravel — validates URLs/IPs and pins each connection to the checked IP via libcurl CURLOPT_RESOLVE, re-checking every redirect hop to defeat DNS rebinding (TOCTOU) - ke...
🚨 GitHub 监控消息提醒
🚨 发现关键词: #SSRF #metadata
📦 项目名称: aidlc-urlmeta-demo
👤 项目作者: owen10380
🛠 开发语言: Python
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-05 15:48:15
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #SSRF #metadata
📦 项目名称: aidlc-urlmeta-demo
👤 项目作者: owen10380
🛠 开发语言: Python
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-05 15:48:15
📝 项目描述:
AI-DLC demo: URL metadata service (realistic SSRF) for Secure AI-DLC gate test🔗 点击访问项目地址
GitHub
GitHub - owen10380/aidlc-urlmeta-demo: AI-DLC demo: URL metadata service (realistic SSRF) for Secure AI-DLC gate test
AI-DLC demo: URL metadata service (realistic SSRF) for Secure AI-DLC gate test - owen10380/aidlc-urlmeta-demo
🚨 GitHub 监控消息提醒
🚨 发现关键词: #SSRF #metadata
📦 项目名称: pdf-analyzer
👤 项目作者: THILLAINATARAJAN-B
🛠 开发语言: Java
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-05 06:37:35
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #SSRF #metadata
📦 项目名称: pdf-analyzer
👤 项目作者: THILLAINATARAJAN-B
🛠 开发语言: Java
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-05 06:37:35
📝 项目描述:
AI-powered PDF analysis pipeline — extracts, OCRs, and summarizes any PDF using Google Gemini & OpenAI. Handles scanned PDFs, academic papers, password detection, and SSRF-safe URL validation. Built with Spring Boot 3.2 + Angular 17.🔗 点击访问项目地址
GitHub
GitHub - THILLAINATARAJAN-B/pdf-analyzer: AI-powered PDF analysis pipeline — extracts, OCRs, and summarizes any PDF using Google…
AI-powered PDF analysis pipeline — extracts, OCRs, and summarizes any PDF using Google Gemini & OpenAI. Handles scanned PDFs, academic papers, password detection, and SSRF-safe URL validati...
🚨 GitHub 监控消息提醒
🚨 发现关键词: #SSRF #metadata
📦 项目名称: truss
👤 项目作者: nao1215
🛠 开发语言: Rust
⭐ Star数量: 6 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-04 15:42:11
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #SSRF #metadata
📦 项目名称: truss
👤 项目作者: nao1215
🛠 开发语言: Rust
⭐ Star数量: 6 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-04 15:42:11
📝 项目描述:
Rust image toolkit for CLI, HTTP, and WASM with signed URLs, SSRF protection, and AVIF/WebP/SVG support.🔗 点击访问项目地址
GitHub
GitHub - nao1215/truss: Rust image toolkit for CLI, HTTP, and WASM with signed URLs, SSRF protection, and AVIF/WebP/SVG support.
Rust image toolkit for CLI, HTTP, and WASM with signed URLs, SSRF protection, and AVIF/WebP/SVG support. - nao1215/truss
🚨 GitHub 监控消息提醒
🚨 发现关键词: #SSRF #metadata
📦 项目名称: AntiSSRF-rs
👤 项目作者: finn79426
🛠 开发语言: Rust
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-04 08:56:49
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #SSRF #metadata
📦 项目名称: AntiSSRF-rs
👤 项目作者: finn79426
🛠 开发语言: Rust
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-04 08:56:49
📝 项目描述:
Microsoft's SSRF Prevention Library for Rust🔗 点击访问项目地址
GitHub
GitHub - finn79426/AntiSSRF-rs: Microsoft's SSRF Prevention Library for Rust
Microsoft's SSRF Prevention Library for Rust. Contribute to finn79426/AntiSSRF-rs development by creating an account on GitHub.
🚨 GitHub 监控消息提醒
🚨 发现关键词: #SSRF #metadata
📦 项目名称: springboot-kafka-flink-postgres-minio-pipeline
👤 项目作者: erancha
🛠 开发语言: Java
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-04 09:02:27
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #SSRF #metadata
📦 项目名称: springboot-kafka-flink-postgres-minio-pipeline
👤 项目作者: erancha
🛠 开发语言: Java
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-04 09:02:27
📝 项目描述:
A production-leaning streaming pipeline that reflects a clear understanding of distributed-systems failure modes: idempotent upserts, bounded timeouts on every external I/O path, DLQ routing, SSRF defense, exactly-once reasoning, and real observability. The depth is backed by 100+ tests, including Testcontainers integration suites.🔗 点击访问项目地址
🚨 GitHub 监控消息提醒
🚨 发现关键词: #SSRF #metadata
📦 项目名称: bugbounty-hunter
👤 项目作者: mrch4n725
🛠 开发语言: Python
⭐ Star数量: 1 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-03 18:41:25
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #SSRF #metadata
📦 项目名称: bugbounty-hunter
👤 项目作者: mrch4n725
🛠 开发语言: Python
⭐ Star数量: 1 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-03 18:41:25
📝 项目描述:
Automatic bug bounty detection system, written by in python. DETECTS: XSS, SQLi, LFI, SSRF, Open Redirect, Headers🔗 点击访问项目地址
GitHub
GitHub - mrch4n725/bugbounty-hunter: Automatic bug bounty detection system, written by in python. DETECTS: XSS, SQLi, LFI, SSRF…
Automatic bug bounty detection system, written by in python. DETECTS: XSS, SQLi, LFI, SSRF, Open Redirect, Headers - mrch4n725/bugbounty-hunter
🚨 GitHub 监控消息提醒
🚨 发现关键词: #SSRF #metadata
📦 项目名称: web-enumerator
👤 项目作者: guravr058-cmd
🛠 开发语言: Python
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-01 09:57:31
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #SSRF #metadata
📦 项目名称: web-enumerator
👤 项目作者: guravr058-cmd
🛠 开发语言: Python
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-01 09:57:31
📝 项目描述:
Web Security Suite: all‑in‑one web enum & attack testing (70+ vulns: XSS, SQLi, SSRF, etc.) on Kali Linux. Flask UI shows exploitation steps, CVSS, risk score, auto‑updates from GitHub. Authorized testing only.🔗 点击访问项目地址
GitHub
GitHub - guravr058-cmd/web-enumerator: Web Security Suite: all‑in‑one web enum & attack testing (70+ vulns: XSS, SQLi, SSRF, etc.)…
Web Security Suite: all‑in‑one web enum & attack testing (70+ vulns: XSS, SQLi, SSRF, etc.) on Kali Linux. Flask UI shows exploitation steps, CVSS, risk score, auto‑updates from GitHub. Aut...
🚨 GitHub 监控消息提醒
🚨 发现关键词: #SSRF #metadata
📦 项目名称: domain-fuzzer
👤 项目作者: noobzhax
🛠 开发语言: Python
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-01 10:04:01
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #SSRF #metadata
📦 项目名称: domain-fuzzer
👤 项目作者: noobzhax
🛠 开发语言: Python
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-06-01 10:04:01
📝 项目描述:
Domain Security Fuzzer v1.0.0 — Automated multi-module web security scanner (headers, secrets, ports, SQLi, XSS, SSRF, XXE, LFI)🔗 点击访问项目地址
GitHub
GitHub - noobzhax/domain-fuzzer: Domain Security Fuzzer v1.0.0 — Automated multi-module web security scanner (headers, secrets…
Domain Security Fuzzer v1.0.0 — Automated multi-module web security scanner (headers, secrets, ports, SQLi, XSS, SSRF, XXE, LFI) - noobzhax/domain-fuzzer
🚨 GitHub 监控消息提醒
🚨 发现关键词: #SSRF #metadata
📦 项目名称: Green-path
👤 项目作者: Mohit-kumar101
🛠 开发语言: Java
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-05-31 08:06:10
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #SSRF #metadata
📦 项目名称: Green-path
👤 项目作者: Mohit-kumar101
🛠 开发语言: Java
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-05-31 08:06:10
📝 项目描述:
Production-style URL shortener built with Spring Boot & MongoDB — QR codes, click analytics, API auth, SSRF-safe redirects, Docker & CI.🔗 点击访问项目地址
GitHub
GitHub - Mohit-kumar101/Green-path: Production-style URL shortener built with Spring Boot & MongoDB — QR codes, click analytics…
Production-style URL shortener built with Spring Boot & MongoDB — QR codes, click analytics, API auth, SSRF-safe redirects, Docker & CI. - Mohit-kumar101/Green-path
