12392
📦 GitHub 全球红队渗透资源中转站。 旨在收录那些“好用却难找”的安全项目。 🔗 定时推送:GitHub Trending (Security) 🛠 必备清单:后渗透、远控、免杀、提权工具集 📅 更新频率:每日精选,绝不灌水。 ⚠️ 本频道仅供安全研究与授权测试使用。
GitHub监控消息提醒!!!
更新了:CVE-2025
描述:CVE-2025-55182 RCE vulnerability in Next.js/React RSC servers (fully working exploit and scanner)
URL:https://github.com/l0n3m4n/CVE-2025-55182-Clean
标签:#CVE-2025
GitHub监控消息提醒!!!
更新了:免杀
描述:将你提供的shellcode进行免杀生成exe文件
URL:https://github.com/GXB-BIT/MSshellCode
标签:#免杀
GitHub监控消息提醒!!!
更新了:反序列化
描述:Phigros 存档序列化/反序列化
URL:https://github.com/Shua-github/Phi-Save-Codec
标签:#反序列化
GitHub监控消息提醒!!!
更新了:CVE-2025
描述:A curated list of resources regarding CVE-2025-55182, the critical Remote Code Execution (RCE) vulnerability in React Server Components known as \"React2Shell\".
URL:https://github.com/websecuritylabs/React2Shell-Library
标签:#CVE-2025
GitHub监控消息提醒!!!
更新了:应急响应
描述:本系统为大型商场应急预案管理系统,基于SpringBoot和Vue技术构建,主要功能包括员工登录、个人信息修改、预案查看等。系统核心在于提高应急响应效率,确保员工和管理员在紧急情况下快速有效地执行预案,强化商场安全管理。通过整合SSM框架和MySQL数据库,提供稳定可靠的数据支持,实现前后端一体化设计,便于远程部署与调试,为商场运营保驾护航。
URL:https://github.com/kevinyang5771323/IsMdKBMNTx
标签:#应急响应
GitHub监控消息提醒!!!
更新了:CVE-2025
描述:High-fidelity RCE scanner for CVE-2025-55182 affecting Next.js RSC. Supports mass scanning, command execution, and automated recon pipelines. Built for pentesters, researchers, and bounty hunters.
URL:https://github.com/satriarizka/CVE-2025-55182-Simple-Scanner
标签:#CVE-2025
GitHub监控消息提醒!!!
更新了:CVE-2025
描述:Step-by-step walkthrough of CVE-2025-55182 (React2Shell) by tracing React's Flight protocol internals.
URL:https://github.com/kavienanj/CVE-2025-55182
标签:#CVE-2025
GitHub监控消息提醒!!!
更新了:RCE
描述:Python RCE exploit for Sendmail with ClamAV-Milter <0.91.2 (CVE-2007-4560). Remote root command injection via SMTP RCPT TO headers.
URL:https://github.com/strikoder/sendmail-clamav-exploit-CVE-2007-4560
标签:#RCE
GitHub监控消息提醒!!!
更新了:RCE
描述:Python RCE exploit for Sendmail with ClamAV-Milter <0.91.2 (CVE-2007-4560). Remote root command injection via SMTP RCPT TO headers.
URL:https://github.com/strikoder/sendmail-clamav-exploit-CVE-2007-4560-
标签:#RCE
GitHub监控消息提醒!!!
更新了:RCE
描述:A standalone GUI tool to detect and demonstrate the **React Server Components Remote Code Execution (RCE)** vulnerability (CVE-2025-55182) in Next.js applications.
URL:https://github.com/SainiONHacks/-CVE-2025-55182-Scanner-
标签:#RCE
GitHub监控消息提醒!!!
更新了:CVE-2025
描述:🔥 React2Shell Toolkit - CVE-2025-55182 & CVE-2025-66478
URL:https://github.com/cybertechajju/R2C-CVE-2025-55182-66478
标签:#CVE-2025
GitHub监控消息提醒!!!
更新了:CVE-2025
描述:PoC for React2Shell (CVE-2025-55182)
URL:https://github.com/xkey8/react2shell
标签:#CVE-2025
GitHub监控消息提醒!!!
更新了:CVE-2025
描述:PoC for CVE-2025-65271
URL:https://github.com/1337Skid/CVE-2025-65271
标签:#CVE-2025
GitHub监控消息提醒!!!
更新了:CVE-2025
描述:Critical RCE vulnerability scanner for React Server Components (CVE-2025-55182). Automated exploitation framework with multi-payload support, proxy capabilities, and interactive command execution.
URL:https://github.com/AliHzSec/CVE-2025-55182
标签:#CVE-2025
GitHub监控消息提醒!!!
更新了:CVE-2025
描述:This is an easy to use PoC script to exploit React2Shell-CVE-2025-55182 Nextjs vulnerability. This will help to gain a reverse shell.
URL:https://github.com/ihhgimhana/React2Shell-CVE-2025-55182-PoC-Reverse-Shell
标签:#CVE-2025
GitHub监控消息提醒!!!
更新了:信息收集
描述:NeoScan 是一个综合性自动扫描信息收集系统,采用分布式架构设计,支持多种扫描类型和智能任务调度,主要用于网络安全评估、资产发现和漏洞检测。
URL:https://github.com/PengZhang0/QT-based-wireless-sensing-system-for-IoT
标签:#信息收集
GitHub监控消息提醒!!!
更新了:信息收集
描述:一款基于ChatGPT开发的,使用360Quake,Gemini,AWVS等工具的红队信息收集/攻击面/漏洞/AI分析系统
URL:https://github.com/sylvieverykawaii/Lucifina
标签:#信息收集
GitHub监控消息提醒!!!
更新了:CVE-2025
描述:* React2Shell-CVE-2025-55182
URL:https://github.com/ihsansencan/React2Shell-CVE-2025-55182
标签:#CVE-2025
GitHub监控消息提醒!!!
更新了:漏洞EXP
描述:[漏洞复现] 全球首款基于RSC特性绕WAF的CVE-2025-55182 React RCE 漏洞 EXP
URL:https://github.com/xcanwin/CVE-2025-55182-React-RCE
标签:#漏洞EXP
GitHub监控消息提醒!!!
更新了:hvv
描述:🛡️ Exploit Akamai's RepositoryService XXE vulnerability (CVE-2025-49493) with this testbed, aiding in secure coding practices and vulnerability assessments.
URL:https://github.com/NerdySoftPaw/VRRAPI-HACS
标签:#hvv
GitHub监控消息提醒!!!
更新了:RCE
描述:CS-Cart Authenticated RCE & LFI Exploitation Tool | Template Editor File Upload Vulnerability + PHPMailer Local File Inclusion | Proof of Concept for CS-Cart 1.3.3
URL:https://github.com/strikoder/cscart-rce-lfi-exploit
标签:#RCE
GitHub监控消息提醒!!!
更新了:CVE-2025
描述:react2shell CVE-2025-55182 PoC
URL:https://github.com/surajhacx/react2shellpoc
标签:#CVE-2025
GitHub监控消息提醒!!!
更新了:CVE-2025
描述:Torito React2Shell Scanner & Exploit Tool (CVE-2025-55182 / 66478)
URL:https://github.com/ToritoIO/Torito-R2S
标签:#CVE-2025
GitHub监控消息提醒!!!
更新了:RCE
描述:A standalone GUI tool to detect and demonstrate the **React Server Components Remote Code Execution (RCE)** vulnerability (CVE-2025-55182) in Next.js applications.
URL:https://github.com/SainiONHacks/CVE-2025-55182-Scanner
标签:#RCE
GitHub监控消息提醒!!!
更新了:CVE-2025
描述:🔥 React2Shell Toolkit - CVE-2025-55182 & CVE-2025-66478
URL:https://github.com/M4xSec/CVE-2025-55182-React2Shell-RCE-Shell
标签:#CVE-2025
GitHub监控消息提醒!!!
更新了:渗透测试
描述:AI 自动化渗透测试
URL:https://github.com/kk12-30/RedAgent
标签:#渗透测试
GitHub监控消息提醒!!!
更新了:CVE-2025
描述:A sophisticated exploitation framework for CVE-2025-9074, targeting unauthenticated Docker API endpoints with an integrated interactive command shell.
URL:https://github.com/xwpdx0/poc-2025-9074
标签:#CVE-2025
GitHub监控消息提醒!!!
更新了:CVE-2025
描述:A complete framework for exploiting the vulnerability CVE-2025-55182
URL:https://github.com/zr0n/react2shell
标签:#CVE-2025
GitHub监控消息提醒!!!
更新了:CVE-2025
描述:CVE-2025-55182-POC
URL:https://github.com/zxz3650/CVE-2025-55182-POC
标签:#CVE-2025
GitHub监控消息提醒!!!
更新了:CVE-2025
描述:This is CVE-2025-55182 exploit
URL:https://github.com/LemonTeatw1/CVE-2025-55182-exploit
标签:#CVE-2025