[ { "link": "https://github.com/parseurl/relayProxy", "name": "relayProxy", "created_at": "2026-05-19T13:18:03Z", "description": "Proxy本地代理服务器,未经授权无法使用,兼容大部分主流框架。", "author": "parseurl", "language": null, "keyword": "未授权" }, { "link": "https://github.com/xiaomuge898/retail-bot-research", "name": "retail-bot-research", "created_at": "2025-10-03T18:49:11Z", "description": "> 一个用于研究 **电商平台人机交互检测** / **自动化行为模拟** / **逆向执行** 的实验性项目。 > 本项目仅供 **研究、学习与测试环境** 使用,禁止在未授权的真实平台上进行绕过或攻击行为。 ", "author": "xiaomuge898", "language": "JavaScript", "keyword": "未授权" }, { "link": "https://github.com/yatq21/APIExtractor", "name": "APIExtractor", "created_at": "2026-05-18T02:27:04Z", "description": "在渗透测试,src挖掘等场景中,api安全是很重要的一部分,但基于浏览器插件的提取再手动去拼接跑接口的过程太过繁琐。因此该工具旨在自动化提取 API 端点并检测未授权访问漏洞。", "author": "yatq21", "language": "Go", "keyword": "未授权" }, { "link": "https://github.com/alantang1977/iptv_api", "name": "iptv_api", "created_at": "2025-03-17T06:47:10Z", "description": "🪅合法性提醒:使用的 IPTV 接口需符合《广播电视管理条例》等法律法规,避免爬取未经授权的版权内容,否则可能面临法律风险。AI通过抓取其它直播源集成一个总直播源,直播内容通过demo自定义进行运行爬取。每天自动更...", "author": "alantang1977", "language": "Python", "keyword": "未授权" }, { "link": "https://github.com/timwhitez/Frog-Auth", "name": "Frog-Auth", "created_at": "2020-10-23T04:43:36Z", "description": "🐸Unauthorized Detection Framework未授权访问检测框架", "author": "timwhitez", "language": "Python", "keyword": "未授权" }, { "link": "https://github.com/qilimary/Advanced-Chinese-chat-bot", "name": "Advanced-Chinese-chat-bot", "created_at": "2024-08-08T07:43:50Z", "description": "自己手搓代码实现的聊天机器人,不使用第三方库。现已支持角色扮演 ,成语接龙, 计算,聊天, 记忆功能, 推理机制,学习机制等。闭源项目。请注意,本源码的版权归我所有,仅限于当前项目的开发使用,未经授权不得...", "author": "qilimary", "language": "Python", "keyword": "未授权" }, { "link": "https://github.com/yexinyii/campus-api-docs", "name": "campus-api-docs", "created_at": "2026-05-05T09:18:33Z", "description": "分为两大模块,api 是高校脱敏接口文档集合,lab 是基于这些接口复刻的校园系统安全靶场,内置未授权访问、水平 / 垂直越权、参数篡改等典型漏洞,支持 Docker 一键部署,是接口渗透测试与安全实训的实战平台。", "author": "yexinyii", "language": "Python", "keyword": "未授权" }, { "link": "https://github.com/CONG1368/property-rental-system", "name": "property-rental-system", "created_at": "2026-05-14T11:16:31Z", "description": "物业租赁综合管理系统 — Vue3+Express+Electron 全栈桌面应用。⚠ 未经版权人书面授权禁止商用,目前仅做个人研究用途。", "author": "CONG1368", "language": "TypeScript", "keyword": "未授权" }, { "link": "https://github.com/hello0matter/authorized-batch-validator", "name": "authorized-batch-validator", "created_at": "2026-05-15T13:03:20Z", "description": "未授权的burp反链 服务器检测", "author": "hello0matter", "language": "Python", "keyword": "未授权" }, { "link": "https://github.com/iammm0/secbot", "name": "secbot", "created_at": "2025-12-29T02:34:33Z", "description": "⚠️ 本工具仅用于授权的安全测试。未经授权使用本工具进行网络攻击是违法的。一个智能化的自动化渗透测试机器人,具备AI驱动的安全测试能力。", "author": "iammm0", "language": "TypeScript", "keyword": "未授权" }, { "link": "https://github.com/Qiu-Sec/pentest-web-plugin", "name": "pentest-web-plugin", "created_at": "2026-04-30T07:03:56Z", "description": "网站渗透测试 Skill — 目标识别、CDN/WAF检测、指纹架构、API发现、端口扫描、未授权与漏洞验证", "author": "Qiu-Sec", "language": null, "keyword": "未授权" }, { "link": "https://github.com/bneichen/zheshiyigesifuyuanma", "name": "zheshiyigesifuyuanma", "created_at": "2026-05-13T23:03:49Z", "description": "禁止未授权私自取拿", "author": "bneichen", "language": null, "keyword": "未授权" }, { "link": "https://github.com/lopleec/L0ck", "name": "L0ck", "created_at": "2026-05-08T04:57:31Z", "description": "A security-first macOS encryption app that locks files into device-bound .l0ck containers using Keychain-backed keys, protected preview flows, and system-level safeguards against unauthorized deletion or movement.一款以安全为核心的 macOS 加密应用,使用钥匙串支持的密钥将文...", "author": "lopleec", "language": "Swift", "keyword": "未授权" }, { "link": "https://github.com/willsafe/Unauth-Vuln-Scanner", "name": "Unauth-Vuln-Scanner", "created_at": "2026-04-10T07:37:11Z", "description": "jar包版-未授权漏洞检测工具", "author": "willsafe", "language": "Java", "keyword": "未授权" }, { "link": "https://github.com/tangkaixing/web-login-js-burp-audit", "name": "web-login-js-burp-audit", "created_at": "2026-05-11T09:55:32Z", "description": "当用户提供 Web URL、登录页、H5/前端静态包、本地前端目录或备份包地址,并要求使用 Burp 访问分析、落地前端 JS、审计敏感信息/接口、做最小化验证并在当前工作目录输出 Markdown 报告时使用。重点适用于登录框渗透测试、前...", "author": "tangkaixing", "language": null, "keyword": "未授权" }, { "link": "https://github.com/lexxgpt/chatgpt-plus-tutorial", "name": "chatgpt-plus-tutorial", "created_at": "2025-12-07T09:18:05Z", "description": "2026年国内如何安全订阅ChatGPT Plus?本终极指南深度剖析了五种主流支付路径:从最便捷的官方授权代充,到海外虚拟信用卡(VCC)和苹果礼品卡的DIY方案。我们提供详尽的优劣对比与安全操作指引,助您选择最适合的方案,轻...", "author": "lexxgpt", "language": null, "keyword": "未授权" }, { "link": "https://github.com/mhtsec/Docker-Registry-exp", "name": "Docker-Registry-exp", "created_at": "2025-11-06T09:14:40Z", "description": "一款功能强大的Docker Registry 5000端口未授权浏览、下载和安全测试工具,集成了镜像管理、认证爆破、敏感信息搜索等多项实用功能。", "author": "mhtsec", "language": null, "keyword": "未授权" }, { "link": "https://github.com/AngrySpongebob/RedisUnauthScanner", "name": "RedisUnauthScanner", "created_at": "2026-04-20T05:30:20Z", "description": "可视化redis未授权漏洞扫描", "author": "AngrySpongebob", "language": "Python", "keyword": "未授权" }, { "link": "https://github.com/Ad1euDa1e/VueCrack", "name": "VueCrack", "created_at": "2025-08-15T03:00:45Z", "description": "红队浏览器插件-检测VUE站点未授权漏洞", "author": "Ad1euDa1e", "language": "JavaScript", "keyword": "未授权" }, { "link": "https://github.com/sunrui007/CryptoVault", "name": "CryptoVault", "created_at": "2026-05-06T10:18:27Z", "description": "密域安全管理系统 (CryptoVault) 是一款致力于提供安全、可靠的加密存储与文件管理的桌面端应用。系统旨在确保用户的核心数据免受未经授权的访问与泄露,为个人与企业提供金融级的本地数据防护。", "author": "sunrui007", "language": null, "keyword": "未授权" }, { "link": "https://github.com/sxc3030-eng/semantic-compressor", "name": "semantic-compressor", "created_at": "2026-05-19T13:23:39Z", "description": "POC: compress a database into a human-readable recipe + minimal anchors. Regenerate with statistical fidelity. Ratio up to 20:1, 100% fidelity, deterministic Python.", "author": "sxc3030-eng", "language": "Python", "keyword": "POC" }, { "link": "https://github.com/shivam-heaptrace/gha-poc", "name": "gha-poc", "created_at": "2026-05-19T13:25:29Z", "description": null, "author": "shivam-heaptrace", "language": null, "keyword": "POC" }, { "link": "https://github.com/kimble125/k-webtoon-hit-predictor", "name": "k-webtoon-hit-predictor", "created_at": "2026-05-07T12:46:02Z", "description": "웹툰 흥행 요인을 8축으로 점수화하고, 강한 축을 숏폼 제작 포인트로 변환하는 PoC", "author": "kimble125", "language": "Python", "keyword": "POC" }, { "link": "https://github.com/Tekkatron/gitops", "name": "gitops", "created_at": "2026-05-12T14:59:24Z", "description": "Example GitOps repo for PoC", "author": "Tekkatron", "language": null, "keyword": "POC" }, { "link": "https://github.com/xs2tariqrasheed/elite_ivr_ai_agent_poc", "name": "elite_ivr_ai_agent_poc", "created_at": "2026-05-04T17:47:16Z", "description": null, "author": "xs2tariqrasheed", "language": "Python", "keyword": "POC" }, { "link": "https://github.com/alokkumardalei-wq/everestctl-poc", "name": "everestctl-poc", "created_at": "2026-05-18T16:10:17Z", "description": "POC for CNCF OpenEverest LFX mentorship (2026 Term 2): everestctl as a database-management CLI", "author": "alokkumardalei-wq", "language": "Go", "keyword": "POC" }, { "link": "https://github.com/euuu-dayy/pocket-hours", "name": "pocket-hours", "created_at": "2026-05-18T04:34:45Z", "description": null, "author": "euuu-dayy", "language": "JavaScript", "keyword": "POC" }, { "link": "https://github.com/cadenk0/PocketPal", "name": "PocketPal", "created_at": "2026-04-10T02:23:16Z", "description": null, "author": "cadenk0", "language": "TypeScript", "keyword": "POC" }, { "link": "https://github.com/Kzis/claude-ai-agent-poc", "name": "claude-ai-agent-poc", "created_at": "2026-04-14T15:31:53Z", "description": null, "author": "Kzis", "language": "TypeScript", "keyword": "POC" }, { "link": "https://github.com/Gerberayale521/pwnkit", "name": "pwnkit", "created_at": "2026-04-19T19:32:54Z", "description": "Run autonomous AI pentesting agents to find and fix security gaps before attackers do", "author": "Gerberayale521", "language": null, "keyword": "POC" }, { "link": "https://github.com/JuanLadeira/docagent", "name": "docagent", "created_at": "2026-03-21T02:42:27Z", "description": "Agente RAG local com Qwen2.5 + LangChain — PoC de aprendizado de agentes de IA", "author": "JuanLadeira", "language": "Python", "keyword": "POC" }, { "link": "https://github.com/Kuhle-alt/cape-events-poc", "name": "cape-events-poc", "created_at": "2026-05-18T13:21:06Z", "description": "PoC for a City's events management platform", "author": "Kuhle-alt", "language": "TypeScript", "keyword": "POC" }, { "link": "https://github.com/pamechaminaxi/insurance-api-poc", "name": "insurance-api-poc", "created_at": "2026-05-15T13:10:10Z", "description": null, "author": "pamechaminaxi", "language": "PHP", "keyword": "POC" }, { "link": "https://github.com/erolisdev/c_bin_pocketbase", "name": "c_bin_pocketbase", "created_at": "2025-05-13T15:22:40Z", "description": null, "author": "erolisdev", "language": "Go", "keyword": "POC" }, { "link": "https://github.com/Jainamfornax/lightdash_poc", "name": "lightdash_poc", "created_at": "2026-04-10T10:22:47Z", "description": null, "author": "Jainamfornax", "language": "JavaScript", "keyword": "POC" }, { "link": "https://github.com/thepictishbeast/PlausiDen-Forge", "name": "PlausiDen-Forge", "created_at": "2026-05-04T06:37:46Z", "description": "Unified frontend builder — Loom design tokens + CMS content + Crawler audits + strict-mode build pipeline. SkillShots used as the PoC surface.", "author": "thepictishbeast", "language": "Rust", "keyword": "POC" }, { "link": "https://github.com/StockholmStar/MVP_for_AI-based_PoC", "name": "MVP_for_AI-based_PoC", "created_at": "2026-05-19T11:53:43Z", "description": null, "author": "StockholmStar", "language": "Python", "keyword": "POC" }, { "link": "https://github.com/Constricting-seedsman397/movement-segmentation-poc", "name": "movement-segmentation-poc", "created_at": "2026-04-17T23:24:46Z", "description": "Integrate dense instance segmentation masks into movement for better 2D tracking and occlusion handling", "author": "Constricting-seedsman397", "language": "Jupyter Notebook", "keyword": "POC" }, { "link": "https://github.com/u3621195/pocketmatch", "name": "pocketmatch", "created_at": "2026-05-13T01:26:19Z", "description": null, "author": "u3621195", "language": "JavaScript", "keyword": "POC" }, { "link": "https://github.com/Vehicle-Security/PoCLab", "name": "PoCLab", "created_at": "2026-05-17T01:09:13Z", "description": "Reproduce and defend against kernel vulnerabilities", "author": "Vehicle-Security", "language": "C", "keyword": "POC" }, { "link": "https://github.com/Marathe-2/catchclaw", "name": "catchclaw", "created_at": "2024-07-03T14:10:57Z", "description": "Provide multi-platform AI agent security assessment with 78 exploit modules, ATT&CK mapping, and attack graph visualization.", "author": "Marathe-2", "language": null, "keyword": "RCE" }, { "link": "https://github.com/xsscx/fuzz", "name": "fuzz", "created_at": "2015-02-01T02:06:13Z", "description": "Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT", "author": "xsscx", "language": "HTML", "keyword": "RCE" }, { "link": "https://github.com/instructure/canvas-rce-api", "name": "canvas-rce-api", "created_at": "2018-05-21T15:14:09Z", "description": null, "author": "instructure", "language": "JavaScript", "keyword": "RCE" }, { "link": "https://github.com/DyniePro/CVE-2026-25643", "name": "CVE-2026-25643", "created_at": "2026-03-07T20:23:08Z", "description": "Exploit Frigate NVR ≤0.16.3 to execute commands remotely by abusing a configuration flaw without needing shell access or output capture.", "author": "DyniePro", "language": "Python", "keyword": "RCE" }, { "link": "https://github.com/oscar-mine/R2SAE", "name": "R2SAE", "created_at": "2026-04-12T15:12:25Z", "description": "Firefox extension for detecting and exploiting CVE-2025-55182 — Prototype Pollution RCE in Next.js React Server Actions", "author": "oscar-mine", "language": "JavaScript", "keyword": "RCE" }, { "link": "https://github.com/tianarsamm/CVE-2025-69985", "name": "CVE-2025-69985", "created_at": "2025-04-10T09:18:30Z", "description": "Exploit CVE-2025-69985 to bypass authentication and execute remote commands on FUXA versions ≤ 1.2.8 via the /api/runscript endpoint.", "author": "tianarsamm", "language": "Python", "keyword": "RCE" }, { "link": "https://github.com/Maxime288/CVE-2026-8838-RCE", "name": "CVE-2026-8838-RCE", "created_at": "2026-05-19T12:41:29Z", "description": null, "author": "Maxime288", "language": "Python", "keyword": "RCE" }, { "link": "https://github.com/jokierpro/Top-Conference-Best-Papers", "name": "Top-Conference-Best-Papers", "created_at": "2026-02-21T08:36:27Z", "description": "🏆 Discover top ML/NLP research by exploring Best Paper winners from major venues (2022-2026) to enhance your understanding of high-impact work.", "author": "jokierpro", "language": null, "keyword": "RCE" }, { "link": "https://github.com/epha4real/fnos-rce-chain", "name": "fnos-rce-chain", "created_at": "2025-05-11T11:56:24Z", "description": "🚨 Exploit unauthorized remote code execution in Flycow OS <= 1.15 with a simplified attack chain analysis.", "author": "epha4real", "language": "Python", "keyword": "RCE" }, { "link": "https://github.com/hyu164/Terrminus-CVE-2026-2406", "name": "Terrminus-CVE-2026-2406", "created_at": "2025-04-16T07:20:12Z", "description": "🔍 Analyze and detect CVE-2026-2406 vulnerabilities in Telnet to enhance security and prevent unauthorized access with this professional research engine.", "author": "hyu164", "language": "Python", "keyword": "RCE" }, { "link": "https://github.com/Asadmiani/phantomscan", "name": "phantomscan", "created_at": "2026-05-19T10:54:55Z", "description": "AI-powered autonomous web security scanner with intelligent risk modeling, false positive filtering, and CVSS v3 scoring. Detects SQLi, XSS, IDOR, SSRF, RCE, LFI, and API vulnerabilities. Generates HTML/PDF reports with multi-threaded scanning.", "author": "Asadmiani", "language": "Python", "keyword": "RCE" }, { "link": "https://github.com/dvjnelsonia/SourceCodester-Banking-CVE", "name": "SourceCodester-Banking-CVE", "created_at": "2026-01-25T09:18:05Z", "description": "💥 Identify critical vulnerabilities in the SourceCodester Online Banking System v1.0, ensuring financial security and awareness of unpatched risks.", "author": "dvjnelsonia", "language": "Shell", "keyword": "RCE" }, { "link": "https://github.com/nQrse/code-brick", "name": "code-brick", "created_at": "2026-01-24T15:31:45Z", "description": "🧱 Manage reusable code templates effortlessly with Brick CLI. Eliminate repetitive tasks and streamline your project setup.", "author": "nQrse", "language": "TypeScript", "keyword": "RCE" }, { "link": "https://github.com/Asder10/React2Shell", "name": "React2Shell", "created_at": "2026-01-08T16:28:04Z", "description": "🔍 Exploit CVE-2025-55182 vulnerabilities in Next.js and React with this efficient framework for rapid testing and assessment.", "author": "Asder10", "language": "Python", "keyword": "RCE" }, { "link": "https://github.com/viaC5real/ParamX", "name": "ParamX", "created_at": "2026-01-08T15:01:33Z", "description": "🔍 Extract and construct missing parameters from JavaScript files for effective unauthorized testing, enhancing your API engagement strategy.", "author": "viaC5real", "language": "JavaScript", "keyword": "RCE" }, { "link": "https://github.com/captain4554/CVE-2025-55182-Scanner", "name": "CVE-2025-55182-Scanner", "created_at": "2026-01-02T01:28:57Z", "description": "🛡️ Scan and assess vulnerabilities in Next.js/Waku with the CVE-2025-55182-Scanner, combining static and dynamic analysis for robust security.", "author": "captain4554", "language": "Python", "keyword": "RCE" }, { "link": "https://github.com/imm17/react2shellexploitvisualized", "name": "react2shellexploitvisualized", "created_at": "2025-12-31T14:32:43Z", "description": "🔍 Visualize and understand the React2Shell vulnerability with a narrated walkthrough, detailing its impact and secure solutions for React Server Components.", "author": "imm17", "language": "Svelte", "keyword": "RCE" }, { "link": "https://github.com/Lennonxlz/react2shell-ultimate", "name": "react2shell-ultimate", "created_at": "2025-02-02T19:54:49Z", "description": null, "author": "Lennonxlz", "language": "Python", "keyword": "RCE" }, { "link": "https://github.com/iksanwkk/CVE-2025-55182-exp", "name": "CVE-2025-55182-exp", "created_at": "2024-04-24T02:36:56Z", "description": "🚨 Exploit CVE-2025-55182, a critical RCE vulnerability in React Server Components for Next.js apps; enables testing for prototype pollution risks.", "author": "iksanwkk", "language": "Python", "keyword": "RCE" }, { "link": "https://github.com/ahmed-dev-op/CVE-2025-55182", "name": "CVE-2025-55182", "created_at": "2025-07-15T18:33:34Z", "description": "⚠️ Explore a vulnerable environment to test security scanners against the CVE-2025-55182 RCE flaw in React Server Components and Next.js applications.", "author": "ahmed-dev-op", "language": "JavaScript", "keyword": "RCE" }, { "link": "https://github.com/SummerSec/ShiroAttack2", "name": "ShiroAttack2", "created_at": "2021-06-13T03:44:13Z", "description": "shiro反序列化漏洞综合利用,包含(回显执行命令/注入内存马)修复原版中NoCC的问题 https://github.com/j1anFen/shiro_attack", "author": "SummerSec", "language": "Java", "keyword": "反序列化" }, { "link": "https://github.com/Srte-7719/rpc_project", "name": "rpc_project", "created_at": "2026-05-14T07:34:17Z", "description": "一个基于 C++11 和 muduo 网络库从零实现的 JSON-RPC 框架,支持自定义 LV 通信协议、JSON 序列化 / 反序列化、完整请求 - 响应流程与连接管理", "author": "Srte-7719", "language": "C++", "keyword": "反序列化" }, { "link": "https://github.com/openharmony/third_party_rust_serde", "name": "third_party_rust_serde", "created_at": "2024-10-28T16:56:47Z", "description": "Serde 是一个 高效和通用的序列化和反序列化Rust数据结构的框架。", "author": "openharmony", "language": "Rust", "keyword": "反序列化" }, { "link": "https://github.com/pioneer118/RPC-YOLO", "name": "RPC-YOLO", "created_at": "2026-05-17T06:04:37Z", "description": "本项目设计了一套基于 C++ 分布式 RPC 框架的 YOLO 目标检测系统,支持多客户端上传检测图片,服务端完成实时目标检测并返回检测结果。项目以 Muduo 网络库的 Reactor 模型为基础搭建高并发 RPC 通信框架,通过自定义消息协议解...", "author": "pioneer118", "language": null, "keyword": "反序列化" }, { "link": "https://github.com/pioneer118/WebServer", "name": "WebServer", "created_at": "2026-05-17T05:57:46Z", "description": "本项目设计了一套基于 C++ 分布式 RPC 框架的 YOLO 目标检测系统,支持多客户端上传检测图片,服务端完成实时目标检测并返回检测结果。项目以 Muduo 网络库的 Reactor 模型为基础搭建高并发 RPC 通信框架,通过自定义消息协议解...", "author": "pioneer118", "language": "C++", "keyword": "反序列化" }, { "link": "https://github.com/0Pursuer/CADExchange", "name": "CADExchange", "created_at": "2025-12-04T09:10:43Z", "description": "这是一个用于交换的CAD格式及其序列化和反序列化项目", "author": "0Pursuer", "language": "C++", "keyword": "反序列化" }, { "link": "https://github.com/letquit/Unity-Serializable-Type", "name": "Unity-Serializable-Type", "created_at": "2026-05-15T03:53:21Z", "description": "使用反射在 Unity 编辑器中序列化类型 git-amend", "author": "letquit", "language": "C#", "keyword": "反序列化" }, { "link": "https://github.com/ca5ll41ng/java-", "name": "java-", "created_at": "2026-05-09T02:51:14Z", "description": "java反序列化学习的一些小项目", "author": "ca5ll41ng", "language": null, "keyword": "反序列化" }, { "link": "https://github.com/Cathyqiii/GenDataCode", "name": "GenDataCode", "created_at": "2026-05-08T03:32:50Z", "description": "GenDataCode是面向多元时间序列数据生成的开源工程化代码库,聚焦小样本、稀缺工况下的时序数据增强需求,内置实现了TimeGAN、TimeVAE等经典时序生成模型,并创新融合扩散模型与Mamba架构提出CTD-Mamba-Diff高效生成方法;库中集成...", "author": "Cathyqiii", "language": "Python", "keyword": "反序列化" }, { "link": "https://github.com/ypcfly/kafka", "name": "kafka", "created_at": "2019-07-06T14:22:12Z", "description": "1、自定义序列化和反序列化配置;2、配置多handler处理不同数据类型", "author": "ypcfly", "language": "Java", "keyword": "反序列化" }, { "link": "https://github.com/wr0ld/YsoGUI", "name": "YsoGUI", "created_at": "2026-05-05T03:23:23Z", "description": "基于 Y4er/ysoserial 与 marshalsec 的 Java 反序列化利用 GUI 工具,集成 Payload 生成、JNDI Reference、LDAP 反序列化与调用图编辑。", "author": "wr0ld", "language": "Java", "keyword": "反序列化" }, { "link": "https://github.com/hentai777ok/JavaGadgetChainTest", "name": "JavaGadgetChainTest", "created_at": "2026-05-05T06:33:29Z", "description": "学习Java反序列化漏洞链的Demo", "author": "hentai777ok", "language": "Java", "keyword": "反序列化" }, { "link": "https://github.com/xvorin/serdes", "name": "serdes", "created_at": "2025-09-17T10:04:04Z", "description": "C++数据序列化与反序列化", "author": "xvorin", "language": "C++", "keyword": "反序列化" }, { "link": "https://github.com/yuweiliang088/spider", "name": "spider", "created_at": "2026-04-29T15:15:21Z", "description": "一个基于强化学习与 LLM 的反反爬决策 Agent,专门解决传统硬编码策略在遇到 Cloudflare、Akamai 等复杂防护栈时完全失效的问题。该 Agent 将“成功获取目标数据”定义为最终目标,把代理选择、请求头组合、TLS 指纹、JavaScript 渲...", "author": "yuweiliang088", "language": null, "keyword": "反序列化" }, { "link": "https://github.com/ljrrrr0108/web-code", "name": "web-code", "created_at": "2026-04-29T05:44:27Z", "description": "我构建了一个基于多 Agent 协作的小米智能家居意图理解与自动化系统。核心痛点:现有智能家居控制依赖用户逐设备精确操作,缺乏对模糊意图的深层理解能力,导致\"我要睡了\"这类自然指令无法被正确拆解执行。 系统架构包...", "author": "ljrrrr0108", "language": "JavaScript", "keyword": "反序列化" }, { "link": "https://github.com/nk7667/java-deserialization-lab", "name": "java-deserialization-lab", "created_at": "2026-03-30T09:24:39Z", "description": "java反序列化漏洞本地调试代码(fastjson / log4j2 / JNDI 靶场)", "author": "nk7667", "language": "Java", "keyword": "反序列化" }, { "link": "https://github.com/linszjava/clipflow", "name": "clipflow", "created_at": "2026-02-18T19:30:55Z", "description": "ClipFlow是一款面向高频信息收集与复用场景的桌面效率工具。它把“剪贴板历史 + 结构化片段管理 + 使用数据分析”整合到同一套工作流中:你可以快速保存文本与图片内容,按页面分类沉淀常用数据,并像表格一样进行行列编...", "author": "linszjava", "language": "HTML", "keyword": "反序列化" }, { "link": "https://github.com/Axyanzzzz/TongWebEJBScan-Burp", "name": "TongWebEJBScan-Burp", "created_at": "2026-04-24T17:26:18Z", "description": "TongWebEJB反序列化漏洞检测工具——Burp插件", "author": "Axyanzzzz", "language": null, "keyword": "反序列化" }, { "link": "https://github.com/Alpaca233114514/security-code-review", "name": "security-code-review", "created_at": "2026-04-24T18:06:44Z", "description": "对代码变更进行自动化安全审查,检测注入漏洞、不安全反序列化、硬编码密钥等常见安全问题,输出结构化修复建议。", "author": "Alpaca233114514", "language": null, "keyword": "反序列化" }, { "link": "https://github.com/nexorin9/transfusion-reaction-similarity-search", "name": "transfusion-reaction-similarity-search", "created_at": "2026-04-24T12:09:33Z", "description": "输血反应病例相似性搜索系统,基于症状向量与 CBR 检索技术,输入患者症状序列快速检索相似历史案例,预测反应类型并推荐处置预案,支持 CLI 彩色报告与 HTML 可视化看板,帮助医护人员紧急决策。", "author": "nexorin9", "language": "Python", "keyword": "反序列化" }, { "link": "https://github.com/erikturbolt/Godzilla_bypass_webshell", "name": "Godzilla_bypass_webshell", "created_at": "2026-03-15T09:44:56Z", "description": "Bypass advanced webshell detection using AES encryption, data-flow breaks, and dynamic callbacks designed for stealthy PHP webshell operation.", "author": "erikturbolt", "language": "Python", "keyword": "webshell" }, { "link": "https://github.com/FFR31MMRDyukikaze/ASPX_WebShell_COFFLoader", "name": "ASPX_WebShell_COFFLoader", "created_at": "2024-07-01T18:35:09Z", "description": "Execute Beacon Object Files on target servers via an ASPX web shell using a COFF loader for security testing and research purposes.", "author": "FFR31MMRDyukikaze", "language": "ASP.NET", "keyword": "webshell" }, { "link": "https://github.com/du-rezende/CloudShell", "name": "CloudShell", "created_at": "2021-06-26T05:19:02Z", "description": "Provide secure web access to remote SSH, SFTP, and FTP(S) sessions through a self-hosted, Docker-ready browser gateway without client software.", "author": "du-rezende", "language": "Python", "keyword": "webshell" }, { "link": "https://github.com/jk545490/memory-shell-mcp", "name": "memory-shell-mcp", "created_at": "2026-01-26T12:23:41Z", "description": "🛠 Detect and remove Java memory shells with this tool, supporting local and SSH execution for effective process management and security analysis.", "author": "jk545490", "language": "Python", "keyword": "webshell" }, { "link": "https://github.com/aminemons/webshell-dnn", "name": "webshell-dnn", "created_at": "2026-05-17T20:04:56Z", "description": "PHP webshell detection using deep residual networks from scratch (NumPy/CuPy)", "author": "aminemons", "language": "Python", "keyword": "webshell" }, { "link": "https://github.com/Richietoreck/MatouWebshell", "name": "MatouWebshell", "created_at": "2023-10-20T04:30:06Z", "description": "🛠 Manage and deploy webshell tools for Linux using Vue 3 and Python, featuring custom traffic formats for stealthy operation.", "author": "Richietoreck", "language": null, "keyword": "webshell" }, { "link": "https://github.com/Xnuvers007/webshells", "name": "webshells", "created_at": "2023-08-03T01:18:25Z", "description": null, "author": "Xnuvers007", "language": "Python", "keyword": "webshell" }, { "link": "https://github.com/mt801/OrionPrime", "name": "OrionPrime", "created_at": "2026-01-03T11:54:13Z", "description": "⚙️ Streamline edge-computation and predictive analytics in containerized microservices with OrionPrime for a highly available, self-healing solution.", "author": "mt801", "language": "Rust", "keyword": "webshell" }, { "link": "https://github.com/Jancarow/BypassNeo-reGeorg", "name": "BypassNeo-reGeorg", "created_at": "2025-12-05T08:13:50Z", "description": "Anti-detection version of Neo-reGeorg", "author": "Jancarow", "language": "Python", "keyword": "webshell" }, { "link": "https://github.com/gekonge/No-one", "name": "No-one", "created_at": "2025-09-27T10:15:16Z", "description": "🌐 Manage Java WebShells effortlessly with No-one, a modern tool for secure testing and deeper understanding of web attack scenarios.", "author": "gekonge", "language": "TypeScript", "keyword": "webshell" }, { "link": "https://github.com/manateelazycat/lazycat-microserver-webshell", "name": "lazycat-microserver-webshell", "created_at": "2026-05-14T14:20:52Z", "description": "Webshell for LazyCat Microserver", "author": "manateelazycat", "language": "JavaScript", "keyword": "webshell" }, { "link": "https://github.com/lcy360/webshell", "name": "webshell", "created_at": "2026-05-15T04:22:45Z", "description": "Remote web terminal for controlling live shell sessions from a browser", "author": "lcy360", "language": "JavaScript", "keyword": "webshell" }, { "link": "https://github.com/transvestic-velodrome9214/AgentMemshell", "name": "AgentMemshell", "created_at": "2026-05-02T00:27:33Z", "description": "Inject memory shells into Java Tomcat processes across all JDK versions for command execution in environments without output.", "author": "transvestic-velodrome9214", "language": null, "keyword": "webshell" }, { "link": "https://github.com/Michael-TopKing/Webshell-Checker-V3", "name": "Webshell-Checker-V3", "created_at": "2026-05-18T06:53:37Z", "description": null, "author": "Michael-TopKing", "language": "Python", "keyword": "webshell" }, { "link": "https://github.com/n3rada/toboggan", "name": "toboggan", "created_at": "2024-02-24T21:04:56Z", "description": "🛝 Transforms any RCE into a functional dumb shell. Designed for constrained environments (e.g., firewalls) where traditional reverse shells are impractical.", "author": "n3rada", "language": "Python", "keyword": "webshell" }, { "link": "https://github.com/kebab-os/kebab-tools", "name": "kebab-tools", "created_at": "2026-03-10T10:01:25Z", "description": "Endpoint based developer tools - Extension of kebab-os", "author": "kebab-os", "language": "JavaScript", "keyword": "webshell" }, { "link": "https://github.com/MCSManager/MCSManager", "name": "MCSManager", "created_at": "2017-11-12T01:41:58Z", "description": "Quick deployment, distributed, multi-user, modern management panel for Minecraft and Steam game servers / 快速安装,分布式架构,多用户销售,现代化的 Minecraft 和 Steam 游戏服务器管理面板", "author": "MCSManager", "language": "TypeScript", "keyword": "webshell" }, { "link": "https://github.com/vektor-x-com/Shells-X", "name": "Shells-X", "created_at": "2026-03-27T15:51:29Z", "description": "Modular single-file web shell framework with pure-PHP recon, SOCKS5 pivoting, and per-build fingerprinting", "author": "vektor-x-com", "language": "JavaScript", "keyword": "webshell" }, { "link": "https://github.com/lazycat-contrib/lazycat-neko-webshell", "name": "lazycat-neko-webshell", "created_at": "2026-05-15T06:44:14Z", "description": null, "author": "lazycat-contrib", "language": "Rust", "keyword": "webshell" }, { "link": "https://github.com/Dooztoria/WEBSHELL", "name": "WEBSHELL", "created_at": "2026-03-17T23:43:58Z", "description": "📦 WEBSHELL STORAGE", "author": "Dooztoria", "language": "PHP", "keyword": "webshell" }, { "link": "https://github.com/Yakovyakov/cve-2026-31431-mitigation", "name": "cve-2026-31431-mitigation", "created_at": "2026-05-18T19:32:12Z", "description": " Detection and mitigation tooling for CVE-2026-31431 (Copy Fail) on Linux kernels. Includes Phalanx-CCS and Silent4Labs scripts plus an Ansible playbook to apply temporary mitigation (block algif_aead module or boot parameter) across servers.", "author": "Yakovyakov", "language": "Shell", "keyword": "CVE-2026" }, { "link": "https://github.com/RedCrazyGhost/CVE-2026-42945", "name": "CVE-2026-42945", "created_at": "2026-05-19T12:46:37Z", "description": null, "author": "RedCrazyGhost", "language": "Go", "keyword": "CVE-2026" }, { "link": "https://github.com/learner202649/CVE-2026-40217-PoC", "name": "CVE-2026-40217-PoC", "created_at": "2026-05-19T13:19:42Z", "description": "The code for personally reproducing the corresponding vulnerability", "author": "learner202649", "language": "Python", "keyword": "CVE-2026" }, { "link": "https://github.com/Sonisi5085/CVE-2026-XNU-AIO-KEVENT-UAF", "name": "CVE-2026-XNU-AIO-KEVENT-UAF", "created_at": "2026-04-14T10:07:25Z", "description": "Demonstrate XNU AIO kevent use-after-free, kernel panic, and double-free in iOS sandbox for security research", "author": "Sonisi5085", "language": "Objective-C", "keyword": "CVE-2026" }, { "link": "https://github.com/Jumpthereness578/CVE-2026-2991", "name": "CVE-2026-2991", "created_at": "2026-04-03T20:26:43Z", "description": "Explore a PoC for CVE-2026-2991, an auth bypass in KiviCare 4.1.2 and earlier via the patient social-login REST endpoint", "author": "Jumpthereness578", "language": "PHP", "keyword": "CVE-2026" }, { "link": "https://github.com/Recorded-texteditor120/CVE-2026-31802", "name": "CVE-2026-31802", "created_at": "2026-03-28T20:49:46Z", "description": "Demonstrate and analyze the CVE-2026-31802 path traversal vulnerability in npm tar, enabling arbitrary file overwrite via symlink extraction.", "author": "Recorded-texteditor120", "language": "JavaScript", "keyword": "CVE-2026" }, { "link": "https://github.com/tracyliving606/RegPwn", "name": "RegPwn", "created_at": "2026-03-26T04:38:27Z", "description": "Exploit Windows local privilege escalation on clients and servers using tested code for CVE-2026-24291 across multiple Windows versions", "author": "tracyliving606", "language": "C#", "keyword": "CVE-2026" }, { "link": "https://github.com/megafart1/CVE-2026-2472-Vertex-AI-SDK-Google-Cloud", "name": "CVE-2026-2472-Vertex-AI-SDK-Google-Cloud", "created_at": "2026-03-10T14:40:04Z", "description": "Expose and detail an unauthenticated stored XSS vulnerability in the Google Cloud Vertex AI Python SDK affecting versions 1.98.0 to 1.130.9.", "author": "megafart1", "language": "Python", "keyword": "CVE-2026" }, { "link": "https://github.com/DyniePro/CVE-2026-25643", "name": "CVE-2026-25643", "created_at": "2026-03-07T20:23:08Z", "description": "Exploit Frigate NVR ≤0.16.3 to execute commands remotely by abusing a configuration flaw without needing shell access or output capture.", "author": "DyniePro", "language": "Python", "keyword": "CVE-2026" }, { "link": "https://github.com/fartlover37/CVE-2026-2441-PoC", "name": "CVE-2026-2441-PoC", "created_at": "2026-03-03T14:19:18Z", "description": "Demonstrate a proof-of-concept exploit for CVE-2026-2441, a high-risk Chrome use-after-free vulnerability in the Blink CSS engine.", "author": "fartlover37", "language": null, "keyword": "CVE-2026" }, { "link": "https://github.com/wutang700/STProcessMonitorBYOVD", "name": "STProcessMonitorBYOVD", "created_at": "2024-04-20T04:18:24Z", "description": "🛠 Exploit and control Windows processes using CVE-2025-70795 and CVE-2026-0828 with driver-based termination tools.", "author": "wutang700", "language": "C++", "keyword": "CVE-2026" }, { "link": "https://github.com/hamzamalik3461/CVE-2026-20841", "name": "CVE-2026-20841", "created_at": "2024-09-22T12:19:06Z", "description": "🛠 Demonstrate remote code execution in Windows Notepad via markdown links exploiting unsecured URL protocols.", "author": "hamzamalik3461", "language": null, "keyword": "CVE-2026" }, { "link": "https://github.com/404godd/CVE-2026-20841-PoC", "name": "CVE-2026-20841-PoC", "created_at": "2026-02-26T05:21:28Z", "description": "🛠 Demonstrate remote code execution in Windows Notepad versions below 11.2510 using the CVE-2026-20841 proof of concept.", "author": "404godd", "language": null, "keyword": "CVE-2026" }, { "link": "https://github.com/Maxime288/CVE-2026-8838-RCE", "name": "CVE-2026-8838-RCE", "created_at": "2026-05-19T12:41:29Z", "description": null, "author": "Maxime288", "language": "Python", "keyword": "CVE-2026" }, { "link": "https://github.com/hyu164/Terrminus-CVE-2026-2406", "name": "Terrminus-CVE-2026-2406", "created_at": "2025-04-16T07:20:12Z", "description": "🔍 Analyze and detect CVE-2026-2406 vulnerabilities in Telnet to enhance security and prevent unauthorized access with this professional research engine.", "author": "hyu164", "language": "Python", "keyword": "CVE-2026" }, { "link": "https://github.com/obrunolima1910/CVE-2026-24061", "name": "CVE-2026-24061", "created_at": "2026-02-03T19:46:10Z", "description": "🚨 Exploit CVE-2026-24061, a critical remote authentication bypass in GNU inetutils-telnetd, for instant root shell access without authentication.", "author": "obrunolima1910", "language": "Python", "keyword": "CVE-2026" }, { "link": "https://github.com/learner202649/CVE-2026-35030-PoC", "name": "CVE-2026-35030-PoC", "created_at": "2026-05-19T12:13:16Z", "description": "The code for personally reproducing the corresponding vulnerability", "author": "learner202649", "language": "Python", "keyword": "CVE-2026" }, { "link": "https://github.com/kuniyal08/Dirty-Frag-CVE-2026-43284", "name": "Dirty-Frag-CVE-2026-43284", "created_at": "2026-05-19T11:07:42Z", "description": "A report on Dirty Frag, which is a Linux Local Privilege Escalation (LPE) vulnerability chain that allows an unprivileged user to gain root access", "author": "kuniyal08", "language": null, "keyword": "CVE-2026" }, { "link": "https://github.com/SparshBiswas-AI/CVE-2026-0596-Reproduction", "name": "CVE-2026-0596-Reproduction", "created_at": "2026-05-18T10:53:46Z", "description": "Research environment and validation scripts for evaluating deserialization behaviors in MLflow and MLServer.", "author": "SparshBiswas-AI", "language": "Python", "keyword": "CVE-2026" }, { "link": "https://github.com/kuniyal08/Copy-Fail-CVE-2026-31431-Lab", "name": "Copy-Fail-CVE-2026-31431-Lab", "created_at": "2026-05-13T11:36:00Z", "description": "Reproduced the fileless LPE CVE‑2026‑31431 (“Copy Fail”) on Kali Linux, then built auditd, Sigma & YARA detections to catch this stealthy kernel exploit that leaves no disk footprint.", "author": "kuniyal08", "language": "YARA", "keyword": "CVE-2026" }, { "link": "https://github.com/0x7556/wolfshell", "name": "wolfshell", "created_at": "2025-09-25T15:23:17Z", "description": "金刚狼:首款支持AI渗透的WebShell MCP,首款支持多层内网级联的ASPX、ASHX高级WebShell管理工具,AES加密通信,无需代理,内存加载渗透工具,无文件落地隐蔽渗透目标,动态代码执行,ShellCode加载(Metasploit/Cobalt Strike),反弹Shell,S...", "author": "0x7556", "language": "ASP.NET", "keyword": "内网渗透" }, { "link": "https://github.com/yanxinwu946/xnmap", "name": "xnmap", "created_at": "2025-03-14T16:16:04Z", "description": "一款集成了 RustScan + Nmap + fscan + Nuclei 的全自动化内网渗透扫描利器", "author": "yanxinwu946", "language": "Shell", "keyword": "内网渗透" }, { "link": "https://github.com/binghe001/binghe001.github.io", "name": "binghe001.github.io", "created_at": "2022-04-01T07:11:11Z", "description": "📚 本静态博客是作者冰河多年从事多年互联网大厂开发、架构的学习历程技术汇总,旨在为大家提供一个清晰详细的学习教程,侧重点更倾向编写Java核心内容、底层原理、架构知识、渗透技术。如果本仓库能为您提供帮助,...", "author": "binghe001", "language": "HTML", "keyword": "内网渗透" }, { "link": "https://github.com/binghe001/BingheGuide", "name": "BingheGuide", "created_at": "2022-03-31T04:23:48Z", "description": "🔥🔥🔥 📚 本代码库是作者冰河多年从事互联网大厂开发、架构的学习历程技术汇总,旨在为大家提供一个清晰详细的学习教程,侧重点更倾向编写AI大模型、Java和Go核心内容、底层原理、架构知识、渗透技术。如果本仓库能...", "author": "binghe001", "language": "Python", "keyword": "内网渗透" }, { "link": "https://github.com/ktol1/RedTeam-Agent", "name": "RedTeam-Agent", "created_at": "2026-02-28T12:16:58Z", "description": " RedTeam-Agent: AI-Powered Autonomous Red Team Framework via Model Context Protocol. AI红队与内网渗透自动化框架,支持 gogo, fscan, httpx, nuclei, impacket, playwright 等 15+ 渗透工具,让 LLM 直接化身安全审计黑客。", "author": "ktol1", "language": "C", "keyword": "内网渗透" }, { "link": "https://github.com/SecNN/AiScan-N", "name": "AiScan-N", "created_at": "2025-10-23T08:16:18Z", "description": "AiScan-N 来了!这是一款基于人工智能驱动的Ai自动化网络安全(运维)工具,专注于网络安全评估、漏洞扫描、运维、应急响应、渗透测试自动化,Ai大模型工具集【CLI Agent】 ,Ai驱动的安全检测技术,提升安全测试(运维)效...", "author": "SecNN", "language": null, "keyword": "内网渗透" }, { "link": "https://github.com/Anmmmrobot/permeate_enterprise", "name": "permeate_enterprise", "created_at": "2026-04-17T09:00:23Z", "description": "本项目用于模拟企业内网环境中的渗透测试过程,通过构建受控实验场景,验证常见内网安全风险与访问控制机制。", "author": "Anmmmrobot", "language": null, "keyword": "内网渗透" }, { "link": "https://github.com/MAOGE555/shuidi", "name": "shuidi", "created_at": "2025-05-16T07:26:11Z", "description": "水滴工具箱,集合各种渗透工具。端口扫描器,漏扫,抓包,内存马,内网穿透,c2,免杀等等", "author": "MAOGE555", "language": "Python", "keyword": "内网渗透" }, { "link": "https://github.com/lullaby-xjx/Blog", "name": "Blog", "created_at": "2026-03-21T16:10:11Z", "description": "这是一个个人博客网站;技术栈:PHP、JavaScript、CSS、HTML、Mysql;有较严重的安全问题(内附渗透报告)", "author": "lullaby-xjx", "language": "Hack", "keyword": "内网渗透" }, { "link": "https://github.com/vegetableou/Intelligent-Android-Penetration-System", "name": "Intelligent-Android-Penetration-System", "created_at": "2026-04-10T03:57:10Z", "description": "本项目旨在研发一款高度自动化的智能渗透测试系统,其核心目标是实现对安卓设备的无人值守安全评估。与传统的单一漏洞扫描工具不同,本系统是一个集成了情报收集、智能决策与多向量攻击能力的统一调度平台。它能够...", "author": "vegetableou", "language": "Smali", "keyword": "内网渗透" }, { "link": "https://github.com/Zer08Bytes/AD-PenTest", "name": "AD-PenTest", "created_at": "2026-04-11T05:44:44Z", "description": "内网渗透之域渗透&提权&免杀", "author": "Zer08Bytes", "language": null, "keyword": "内网渗透" }, { "link": "https://github.com/smallcat9612/ai-pentest-bot", "name": "ai-pentest-bot", "created_at": "2026-03-25T21:26:04Z", "description": "基于ai训练的渗透模型+智能体,支持内网渗透。", "author": "smallcat9612", "language": null, "keyword": "内网渗透" }, { "link": "https://github.com/EdinLyle/sec-links", "name": "sec-links", "created_at": "2026-02-20T07:17:56Z", "description": "整合日常学习、工作及网络所得笔记、安全大佬分析报告、面试题与技巧文档,安全大厂与安全标准,标准指南,按渗透、安服、运营、代码审计、内网、移动、应急、工控、AI/LLM安全、数据、业务、情报、分析、黑灰产对抗、S...", "author": "EdinLyle", "language": null, "keyword": "内网渗透" }, { "link": "https://github.com/YaoSiQian/violation-outreach-wallpaper", "name": "violation-outreach-wallpaper", "created_at": "2026-02-15T03:15:52Z", "description": "【非官方】通俗来讲,违规外联指的是内部网络计算机私自接入互联网或其他公共网络。更具象一些来理解,内部网络计算机连接互联网或内部网络中使用的移动存储载体在非内部网络计算机上使用等行为。违规外联相当于在...", "author": "YaoSiQian", "language": "HTML", "keyword": "内网渗透" }, { "link": "https://github.com/hsltz/masscan-windwos-1.3.2", "name": "masscan-windwos-1.3.2", "created_at": "2026-02-14T07:28:32Z", "description": "masscan 是一款高速的异步端口扫描工具,采用独特的传输方式,可在短时间内完成大规模网络扫描。它专为扫描整个互联网或大型网段设计,扫描速度远超传统工具如 nmap,常被用于网络安全评估与渗透测试。", "author": "hsltz", "language": null, "keyword": "内网渗透" }, { "link": "https://github.com/hanc00l/nemo_go", "name": "nemo_go", "created_at": "2021-07-29T08:13:25Z", "description": "Nemo是用来进行自动化信息收集的一个简单平台,通过集成常用的信息收集工具和技术,实现对内网及互联网资产信息的自动收集,提高隐患排查和渗透测试的工作效率。", "author": "hanc00l", "language": "JavaScript", "keyword": "内网渗透" }, { "link": "https://github.com/yatq21/APIExtractor", "name": "APIExtractor", "created_at": "2026-05-18T02:27:04Z", "description": "在渗透测试,src挖掘等场景中,api安全是很重要的一部分,但基于浏览器插件的提取再手动去拼接跑接口的过程太过繁琐。因此该工具旨在自动化提取 API 端点并检测未授权访问漏洞。", "author": "yatq21", "language": "Go", "keyword": "漏洞检测" }, { "link": "https://github.com/imkerbos/mxsec-platform", "name": "mxsec-platform", "created_at": "2025-12-09T09:33:22Z", "description": "企业级主机与容器安全管理平台。覆盖安全基线、资产管理、漏洞扫描、病毒查杀、文件完整性监控、运行时检测、容器安全、威胁情报与告警响应,面向安全运营团队提供统一管控视图。", "author": "imkerbos", "language": "Go", "keyword": "漏洞检测" }, { "link": "https://github.com/kingwempity/Aegis", "name": "Aegis", "created_at": "2026-01-14T15:25:34Z", "description": "基于模拟攻击的web应用程序漏洞检测系统;Aegis: Web Application Vulnerability Detection System", "author": "kingwempity", "language": "Python", "keyword": "漏洞检测" }, { "link": "https://github.com/yanxiao588/IDOR_Detect", "name": "IDOR_Detect", "created_at": "2026-05-19T02:01:59Z", "description": "基于语义分析的越权漏洞(IDOR)检测引擎。通过解析 HTTP 流量、提取用户/资源语义特征,结合重放攻击和动态沙箱,自动识别越权访问风险。", "author": "yanxiao588", "language": "Python", "keyword": "漏洞检测" }, { "link": "https://github.com/zzz0627/binary-vulnerability-detection", "name": "binary-vulnerability-detection", "created_at": "2026-05-18T15:46:49Z", "description": "二进制文件漏洞检测竞赛复现实验流水线", "author": "zzz0627", "language": "Python", "keyword": "漏洞检测" }, { "link": "https://github.com/SourByte05/Vulnerability-Wiki-PoC", "name": "Vulnerability-Wiki-PoC", "created_at": "2025-12-23T04:09:07Z", "description": "🚀 2024-至今 1Day 漏洞 PoC 深度研究与复现归档。涵盖 OA、ERP、安防、数通、大模型及容器等 高价值资产漏洞,实战导向,助力安全研究与合规检测。", "author": "SourByte05", "language": "Python", "keyword": "漏洞检测" }, { "link": "https://github.com/uguj/LLM-MultiAgent-StackOverflow-Detector", "name": "LLM-MultiAgent-StackOverflow-Detector", "created_at": "2026-05-18T10:08:59Z", "description": "基于ReAct范式的多智能体栈缓冲区溢出检测框架,用于C/C++代码漏洞分析。 - Finder Agent:基于libclang的AST解析,识别危险函数调用 - Tracer Agent:语法树回溯,分析参数可控性 - Hypothesis Agent:调用Qwen2.5-Coder大语言模型生成智能漏...", "author": "uguj", "language": "Python", "keyword": "漏洞检测" }, { "link": "https://github.com/wpsec/ARL-Source-Install", "name": "ARL-Source-Install", "created_at": "2025-01-21T06:29:04Z", "description": "基于 ARL 深度扩展与持续优化的互联网资产自动化收集平台,面向资产发现、暴露面梳理、风险排查与持续监测等场景,提供域名识别、子域名发现、测绘引擎查询、端口与服务识别、指纹分析、URL 提取、漏洞检测、计划任务...", "author": "wpsec", "language": "JavaScript", "keyword": "漏洞检测" }, { "link": "https://github.com/saya-ch/CodeSentinel", "name": "CodeSentinel", "created_at": "2026-05-18T09:22:55Z", "description": "AI代码安全卫士 - 智能检测AI生成代码的安全漏洞", "author": "saya-ch", "language": null, "keyword": "漏洞检测" }, { "link": "https://github.com/hmt38/idors-factory", "name": "idors-factory", "created_at": "2026-02-27T12:28:08Z", "description": "本插件是在原版 Autorize 基础上进行的二次开发,新增了智能越权 (IDOR) 检测功能。它通过采集不同用户的流量,自动分析参数特征,并构造重放攻击来检测越权漏洞", "author": "hmt38", "language": "Python", "keyword": "漏洞检测" }, { "link": "https://github.com/Carlson-JLQ/VulnSynth", "name": "VulnSynth", "created_at": "2026-04-20T15:28:12Z", "description": "漏洞检测工具", "author": "Carlson-JLQ", "language": "Python", "keyword": "漏洞检测" }, { "link": "https://github.com/lsc-261013/ai-review-cli", "name": "ai-review-cli", "created_at": "2026-05-17T10:54:30Z", "description": "AI 代码审查 CLI 工具 — 调用 Claude API 自动扫描代码,检测 Bug、安全漏洞、代码规范问题", "author": "lsc-261013", "language": "TypeScript", "keyword": "漏洞检测" }, { "link": "https://github.com/SuperLy1020/LLM-Vulnerability-Detection", "name": "LLM-Vulnerability-Detection", "created_at": "2026-05-12T06:08:21Z", "description": "大模型代码漏洞检测学习笔记", "author": "SuperLy1020", "language": "Python", "keyword": "漏洞检测" }, { "link": "https://github.com/2021291696/debug-architect", "name": "debug-architect", "created_at": "2026-05-17T03:44:36Z", "description": "调试建筑师:项目完成后扫描报错、分析根因、归档教训、生成预防规则、检测技能漏洞。", "author": "2021291696", "language": null, "keyword": "漏洞检测" }, { "link": "https://github.com/elegent-administrator/Open-Audit", "name": "Open-Audit", "created_at": "2026-05-16T03:36:44Z", "description": "Open Audit是面向企业研发、开发者群体的AI智能明文代码安全审计工具,基于Python语言开发、FastCGI架构搭建,融合Semgrep工具链与自主研发的AI Agent,精准匹配数字时代代码安全审计的市场核心需求。工具直击行业传统审计工具误...", "author": "elegent-administrator", "language": "Python", "keyword": "漏洞检测" }, { "link": "https://github.com/Qiu-Sec/pentest-web-plugin", "name": "pentest-web-plugin", "created_at": "2026-04-30T07:03:56Z", "description": "网站渗透测试 Skill — 目标识别、CDN/WAF检测、指纹架构、API发现、端口扫描、未授权与漏洞验证", "author": "Qiu-Sec", "language": null, "keyword": "漏洞检测" }, { "link": "https://github.com/BAKOME-Hub/BAKOME_Hyperchain_Guard", "name": "BAKOME_Hyperchain_Guard", "created_at": "2026-05-14T10:31:39Z", "description": "基于 Rust 的 Hyperchain 智能合约静态安全分析器,检测重入、整数溢出、权限绕过等漏洞,生成 HTML/JSON 报告,开源 MIT 协议。", "author": "BAKOME-Hub", "language": "Rust", "keyword": "漏洞检测" }, { "link": "https://github.com/BAKOME-Hub/BAKOME_FISCO_Guard", "name": "BAKOME_FISCO_Guard", "created_at": "2026-05-14T10:16:22Z", "description": "基于 Rust 的 FISCO BCOS 智能合约安全分析器,检测常见漏洞(重入、整数溢出、权限错误等),生成 HTML 报告,支持自定义规则,开源 MIT 协议。", "author": "BAKOME-Hub", "language": "Rust", "keyword": "漏洞检测" }, { "link": "https://github.com/BAKOME-Hub/BAKOME_CKB_Guardian", "name": "BAKOME_CKB_Guardian", "created_at": "2026-05-14T09:45:56Z", "description": "用 Rust 编写的 Nervos CKB 智能合约静态安全分析器,检测常见漏洞(重入、整数溢出、权限错误等),生成 HTML 报告,支持自定义规则,开源 MIT 协议。", "author": "BAKOME-Hub", "language": "Rust", "keyword": "漏洞检测" }, { "link": "https://github.com/BAKOME-Hub/BAKOME_Conflux_Guard", "name": "BAKOME_Conflux_Guard", "created_at": "2026-05-14T06:39:09Z", "description": "针对 Conflux eSpace 的智能合约静态安全分析器(Rust 实现),检测重入攻击、时间戳依赖、赞助人白名单配置错误等漏洞,生成 HTML 报告。", "author": "BAKOME-Hub", "language": "Rust", "keyword": "漏洞检测" }, { "link": "https://github.com/MaroonButterflyReach/windscribe-vpn-ek39", "name": "windscribe-vpn-ek39", "created_at": "2026-05-19T13:01:31Z", "description": "secure 卡巴斯基 全方位安全 PC版 插件 — 最佳 卡巴斯基 全方位安全 PC版 插件,集成 钓鱼保护 和 安全浏览。安全强大。", "author": "MaroonButterflyReach", "language": "HTML", "keyword": "钓鱼" }, { "link": "https://github.com/19348729/diaoyu", "name": "diaoyu", "created_at": "2026-04-24T09:13:49Z", "description": "钓鱼大模型预测", "author": "19348729", "language": "Python", "keyword": "钓鱼" }, { "link": "https://github.com/Centursy/fishgame", "name": "fishgame", "created_at": "2026-05-19T12:53:52Z", "description": "一个钓鱼小游戏", "author": "Centursy", "language": "JavaScript", "keyword": "钓鱼" }, { "link": "https://github.com/HeadmasterTan/NTEFishingTool", "name": "NTEFishingTool", "created_at": "2026-05-16T09:15:42Z", "description": "异环钓鱼工具", "author": "HeadmasterTan", "language": "C#", "keyword": "钓鱼" }, { "link": "https://github.com/wuchizhitu7/Phishing-email-detection", "name": "Phishing-email-detection", "created_at": "2026-03-20T09:28:52Z", "description": "🛡️ 中文钓鱼邮件智能检测 | RF + BERT 双引擎混合架构 | Perplexity 困惑度 | AI 生成识别 | URL 安全评级", "author": "wuchizhitu7", "language": "Python", "keyword": "钓鱼" }, { "link": "https://github.com/MaroonButterflyReach/norton-360-vl01", "name": "norton-360-vl01", "created_at": "2026-05-19T07:23:59Z", "description": "top Bitdefender 全方位安全 PC版 扩展 — 最佳 Bitdefender 全方位安全 PC版 扩展,集成 钓鱼保护 和 反广告软件。安全强大。", "author": "MaroonButterflyReach", "language": "HTML", "keyword": "钓鱼" }, { "link": "https://github.com/MaroonButterflyReach/bitdefenderal-security-ds32", "name": "bitdefenderal-security-ds32", "created_at": "2026-05-19T04:34:44Z", "description": "instant Bitdefender 全方位安全 PC版 扩展 — 最佳 Bitdefender 全方位安全 PC版 扩展,集成 反广告软件 和 钓鱼保护。安全强大。", "author": "MaroonButterflyReach", "language": "HTML", "keyword": "钓鱼" }, { "link": "https://github.com/BlackCleaverLoli/MissFisher", "name": "MissFisher", "created_at": "2024-06-24T23:11:30Z", "description": "FF14 钓鱼插件(旧称:空天姬)/ MissFisher, A FFXIV fishing plugin.", "author": "BlackCleaverLoli", "language": "JavaScript", "keyword": "钓鱼" }, { "link": "https://github.com/Angel520549/-", "name": "-", "created_at": "2026-05-19T02:59:25Z", "description": "嘿嘿,疯狂钓鱼", "author": "Angel520549", "language": null, "keyword": "钓鱼" }, { "link": "https://github.com/alibabama401/Fishing-Game-Numeric-Copywriting", "name": "Fishing-Game-Numeric-Copywriting", "created_at": "2025-07-17T12:24:14Z", "description": "街机捕鱼|钓鱼源码|捕鱼|捕魚游戏核心数值文案 | 日流水几百万 | 龙头产品数值体系 | 提升爽快感/留存/付费", "author": "alibabama401", "language": "Lua", "keyword": "钓鱼" }, { "link": "https://github.com/alibabama401/Fishing-Game-Complete-Source-Art", "name": "Fishing-Game-Complete-Source-Art", "created_at": "2024-12-25T08:10:09Z", "description": "街机捕鱼|钓鱼源码|Fishing Game Platform Source Code | Arcade Fish Shooting Game|捕鱼/捕魚游戏完整源码+美术 | 近百种鱼+多种场景 | 弹头夺宝/玉石场/三国场/宠物炸翻天 | 工会/道具/背包 ", "author": "alibabama401", "language": "C", "keyword": "钓鱼" }, { "link": "https://github.com/amam123song/Explainable-Phishing-Website-Detection-System", "name": "Explainable-Phishing-Website-Detection-System", "created_at": "2026-05-18T16:01:45Z", "description": "本项目是基于大语言模型的可解释钓鱼网站检测系统,基于 URL、正文与外链等结构化特征上进行分类与解释生成,通过功能解耦双LoRA与专家-学生知识蒸馏完成模型压缩。仓库提供从模型训练训练、统一推理评测,到黑盒/白盒...", "author": "amam123song", "language": "Python", "keyword": "钓鱼" }, { "link": "https://github.com/Amplitudepluagitate/bitwarden-fm19", "name": "bitwarden-fm19", "created_at": "2026-05-18T15:54:50Z", "description": "instant Norton 360 PC版 脚本 — 最佳 Norton 360 PC版 脚本,集成 钓鱼保护 和 定时扫描。安全强大。", "author": "Amplitudepluagitate", "language": "HTML", "keyword": "钓鱼" }, { "link": "https://github.com/Yllxx03/Malicious-URL-Detection-Based-on-Component-Segmentation-and-Multi-Source-Feature-Fusion", "name": "Malicious-URL-Detection-Based-on-Component-Segmentation-and-Multi-Source-Feature-Fusion", "created_at": "2026-05-18T14:20:18Z", "description": "本项目是面向恶意 URL 检测的研究型系统,围绕组件分割与多源特征融合方法开展二分类识别研究,基于 PyTorch 构建模型训练与评测流程,通过对 URL 的域名、路径、查询参数等组件进行结构化拆分,并融合字符级序列特征、域...", "author": "Yllxx03", "language": "Python", "keyword": "钓鱼" }, { "link": "https://github.com/Latihas/LatihasExport", "name": "LatihasExport", "created_at": "2024-12-26T06:57:12Z", "description": "FF14(FFXIV)的钓鱼笔记(支持鱼糕导出)、成就、制作笔记等导出工具", "author": "Latihas", "language": "C#", "keyword": "钓鱼" }, { "link": "https://github.com/Amplitudepluagitate/expressvpn-zm61", "name": "expressvpn-zm61", "created_at": "2026-05-18T12:02:13Z", "description": "secure 卡巴斯基 全方位安全 PC版 扩展 — 最佳 卡巴斯基 全方位安全 PC版 扩展,集成 定时扫描 和 钓鱼保护。安全强大。", "author": "Amplitudepluagitate", "language": "HTML", "keyword": "钓鱼" }, { "link": "https://github.com/XFWL/HottaStudioScript", "name": "HottaStudioScript", "created_at": "2026-05-14T06:55:00Z", "description": "这是一个由 Trae CN (AI)生成的带GUI界面的异环自动化工具,包含两个主要模块: - 店长特供:自动执行店长特供任务,包括识别图像并执行F键、点击等操作 - 钓鱼:自动钓鱼功能,使用HSV颜色匹配识别鱼和鱼竿,实现自动下...", "author": "XFWL", "language": "Python", "keyword": "钓鱼" }, { "link": "https://github.com/daoqi/MintNTE", "name": "MintNTE", "created_at": "2026-04-23T12:12:44Z", "description": "MintNTE异环薄荷全自动钓鱼-超强音-后台任务-", "author": "daoqi", "language": "HTML", "keyword": "钓鱼" }, { "link": "https://github.com/Selonite925/Fish-Plugin", "name": "Fish-Plugin", "created_at": "2026-05-08T04:24:58Z", "description": "尝试用Codex开发的Yunzai-Bot的钓鱼小插件,即插即用", "author": "Selonite925", "language": "JavaScript", "keyword": "钓鱼" }, { "link": "https://github.com/Rich-hrq/linkGuard", "name": "linkGuard", "created_at": "2026-05-17T10:44:20Z", "description": "Brave 浏览器扩展 — 防御钓鱼链接与域名同形攻击", "author": "Rich-hrq", "language": "HTML", "keyword": "钓鱼" } ]