Contribute to dharmstm/CVE-2026-30503-OpenKM-6.3.12-Stored-XSS development by creating an account on GitHub.

Nmap script to detect a Microsoft Exchange instance version with OWA enabled. - righel/ms-exchange-version-nse

A production-leaning streaming pipeline that reflects a clear understanding of distributed-systems failure modes: idempotent upserts, bounded timeouts on every external I/O path, DLQ routing, SSRF ...

Microsoft's SSRF Prevention Library for Rust. Contribute to finn79426/AntiSSRF-rs development by creating an account on GitHub.

渗透测试中手动翻找 JS 文件里的 API 接口和敏感信息，眼睛快瞎了； 好不容易找到 JWT Token，还要手动复制粘贴…… API Agent  结合无头浏览器技术，实现低流量特征的智能分析，集成 FindSomething、雪瞳等工具的核心能力，并支持一键导出所有接口。 - tax3056/API-Agent_JSbot

Yara rules. Contribute to dhanyamanohar/yara development by creating an account on GitHub.

Contribute to LasyaM7/poc-13-jenkins-terraform-k8s development by creating an account on GitHub.

Contribute to Galaxy-sc/CVE-2026-47423-dompurify-xss-detector development by creating an account on GitHub.

一键信息收集. Contribute to czx1111/NetCanvas development by creating an account on GitHub.

Burp extension for when you have no more ideas and still want errors. - Ozozuz/DesperateFuzzer

An OPSEC-aware NTLM relay operations framework. Contribute to RedteamNotes/RelayX development by creating an account on GitHub.

Permiter is a Burp Suite Extension that automatically tests for Authorization issues using either your proxy history or site map - roidrage52/Permitter

Burp Suite extension to inspect and decode Blazor Server WebSocket frames (BlazorPack) into readable/editable JSON. - wanetty/BlazorSpy

Web 安全漏洞复现与安全测试辅助项目. Contribute to zzddss639/web-security-lab development by creating an account on GitHub.

RKI Metadata Exchange | Releaser tool to create a new release, including changelog rollover, project version bump, commit, tag and push. - robert-koch-institut/mex-release

🛡️ Convert YARA rules → Sigma + native SIEM/EDR queries. Modular engine (web UI + CLI), IOC classification, MITRE ATT&CK tagging, configurable pipelines (Sysmon/WinSec/Linux/Proxy), 7 backe...

CVE-2026-41089 PoC — Netlogon CLDAP stack buffer overflow (CVSS 9.8 CRITICAL) - Vanquishermacdetach/CVE-2026-41089-509

智能制造企业攻防演练靶场系统 (SmartMES) — 用于红蓝对抗渗透测试与应急响应训练。包含 SQL注入、文件上传、命令注入、反序列化等9个预埋漏洞，支持4阶段完整攻击链复现。 - timidadada/SmartMES-Range

Site institucional + portfólio + painel admin da C2 Content. Next.js 16 (App Router, RSC, SSG), TypeScript, NextAuth, JSON-em-disco. - cassio-cloud/c2-site

Repository of Yara Rules. Contribute to RussianPanda95/Yara-Rules development by creating an account on GitHub.

Proof of Concept (PoC) exploit for CVE-2026-6815: Authenticated Path Traversal & Arbitrary File Write in Casdoor (< 3.54.1) leading to RCE/DoS. - danilo-dellorco/CVE-2026-6815