🚨 GitHub 监控消息提醒
🚨 发现关键词: #CSRF
📦 项目名称: YouCan-Admin-Takeover
👤 项目作者: imad457
🛠 开发语言: None
⭐ Star数量: 1 | 🍴 Fork数量: 0
📅 更新时间: 2026-02-19 12:33:24
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #CSRF
📦 项目名称: YouCan-Admin-Takeover
👤 项目作者: imad457
🛠 开发语言: None
⭐ Star数量: 1 | 🍴 Fork数量: 0
📅 更新时间: 2026-02-19 12:33:24
📝 项目描述:
YouCan.shop CVSS 9.8 SSO Bypass: 52,706 stores vulnerable via token leak in 302 redirect. Store ID → token1 → admin sessionid → full dashboard + Orders/PII access. Zero-auth takeover. PoC chain: curl accounts.youcan.shop/sso?broker→302 leak→admin panel. Fixed: server-side tokens + CSRF. (Dec 25, 2025)🔗 点击访问项目地址
GitHub
GitHub - imad457/YouCan-Admin-Takeover: YouCan.shop CVSS 9.8 SSO Bypass: 52,706 stores vulnerable via token leak in 302 redirect.…
YouCan.shop CVSS 9.8 SSO Bypass: 52,706 stores vulnerable via token leak in 302 redirect. Store ID → token1 → admin sessionid → full dashboard + Orders/PII access. Zero-auth takeover. PoC chain: cu...
🚨 GitHub 监控消息提醒
🚨 发现关键词: #XSS #Attack
📦 项目名称: waf-siem-advanced-detection
👤 项目作者: PiCas19
🛠 开发语言: Go
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-02-19 12:57:17
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #XSS #Attack
📦 项目名称: waf-siem-advanced-detection
👤 项目作者: PiCas19
🛠 开发语言: Go
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-02-19 12:57:17
📝 项目描述:
WAF-enhanced Caddy web server that inspects HTTP traffic, blocks common attacks (XSS, SQLi, RFI), and forwards structured security events to a SIEM for real-time monitoring, threat correlation, dashboards, and automated response. Provides scalable protection with modular rules, logging, and threat intelligence.🔗 点击访问项目地址
GitHub
GitHub - PiCas19/waf-siem-advanced-detection: WAF-enhanced Caddy web server that inspects HTTP traffic, blocks common attacks (XSS…
WAF-enhanced Caddy web server that inspects HTTP traffic, blocks common attacks (XSS, SQLi, RFI), and forwards structured security events to a SIEM for real-time monitoring, threat correlation, das...
🚨 GitHub 监控消息提醒
🚨 发现关键词: #Bypass #AV
📦 项目名称: Set-DNSZoneDynamicUpdate
👤 项目作者: MustafaNafizDurukan
🛠 开发语言: PowerShell
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-02-19 14:01:18
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #Bypass #AV
📦 项目名称: Set-DNSZoneDynamicUpdate
👤 项目作者: MustafaNafizDurukan
🛠 开发语言: PowerShell
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-02-19 14:01:18
📝 项目描述:
Modify AD-Integrated DNS Zone Dynamic Update settings via LDAP. Bypasses DNS Server RPC by directly editing the dNSProperty attribute. Requires WriteProperty on dNSProperty or higher privileges on the zone object.🔗 点击访问项目地址
GitHub
GitHub - MustafaNafizDurukan/Set-DNSZoneDynamicUpdate: Modify AD-Integrated DNS Zone Dynamic Update settings via LDAP. Bypasses…
Modify AD-Integrated DNS Zone Dynamic Update settings via LDAP. Bypasses DNS Server RPC by directly editing the dNSProperty attribute. Requires WriteProperty on dNSProperty or higher privileges on ...
🚨 GitHub 监控消息提醒
🚨 发现关键词: #CSRF
📦 项目名称: SOC-Project4-Web-App-Vulnerability-Assessment-DVWA-BurpSuite
👤 项目作者: Oracleo
🛠 开发语言: None
⭐ Star数量: 1 | 🍴 Fork数量: 0
📅 更新时间: 2026-02-19 14:42:51
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #CSRF
📦 项目名称: SOC-Project4-Web-App-Vulnerability-Assessment-DVWA-BurpSuite
👤 项目作者: Oracleo
🛠 开发语言: None
⭐ Star数量: 1 | 🍴 Fork数量: 0
📅 更新时间: 2026-02-19 14:42:51
📝 项目描述:
Web application security assessment demonstrating SOC analyst skills. Conducted comprehensive vulnerability testing on DVWA using Burp Suite, identifying & documenting critical security flaws including SQL Injection, XSS, Brute Force, and CSRF vulnerabilities. Complete with traffic analysis, exploitation techniques, & remediation recommendations.🔗 点击访问项目地址
GitHub
GitHub - Oracleo/SOC-Project4-Web-App-Vulnerability-Assessment-DVWA-BurpSuite: Web application security assessment demonstrating…
Web application security assessment demonstrating SOC analyst skills. Conducted comprehensive vulnerability testing on DVWA using Burp Suite, identifying & documenting critical security fla...
🚨 GitHub 监控消息提醒
🚨 发现关键词: #Burp #Extension
📦 项目名称: Aurex
👤 项目作者: ShubhamDubeyy
🛠 开发语言: Java
⭐ Star数量: 1 | 🍴 Fork数量: 0
📅 更新时间: 2026-02-19 15:01:52
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #Burp #Extension
📦 项目名称: Aurex
👤 项目作者: ShubhamDubeyy
🛠 开发语言: Java
⭐ Star数量: 1 | 🍴 Fork数量: 0
📅 更新时间: 2026-02-19 15:01:52
📝 项目描述:
Burp Suite extension for detecting PortSwigger Top 10 Web Hacking Techniques (2025) — 8 modules, 250+ CVE-backed payloads🔗 点击访问项目地址
GitHub
ShubhamDubeyy/Aurex
Burp Suite extension for detecting PortSwigger Top 10 Web Hacking Techniques (2025) — 8 modules, 250+ CVE-backed payloads - ShubhamDubeyy/Aurex
🚨 GitHub 监控消息提醒
🚨 发现关键词: #Bypass #WAF
📦 项目名称: waymap
👤 项目作者: TrixSec
🛠 开发语言: Python
⭐ Star数量: 114 | 🍴 Fork数量: 21
📅 更新时间: 2026-02-19 16:00:31
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #Bypass #WAF
📦 项目名称: waymap
👤 项目作者: TrixSec
🛠 开发语言: Python
⭐ Star数量: 114 | 🍴 Fork数量: 21
📅 更新时间: 2026-02-19 16:00:31
📝 项目描述:
Waymap is a fast and optimized web vulnerability scanner built for penetration testers. It helps in identifying vulnerabilities by testing against various payloads.🔗 点击访问项目地址
GitHub
GitHub - TrixSec/waymap: Waymap is a fast and optimized web vulnerability scanner built for penetration testers. It helps in identifying…
Waymap is a fast and optimized web vulnerability scanner built for penetration testers. It helps in identifying vulnerabilities by testing against various payloads. - TrixSec/waymap
🚨 GitHub 监控消息提醒
🚨 发现关键词: #SSRF
📦 项目名称: burp-mod-scanner
👤 项目作者: worldtreeboy
🛠 开发语言: Java
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-02-19 15:53:33
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #SSRF
📦 项目名称: burp-mod-scanner
👤 项目作者: worldtreeboy
🛠 开发语言: Java
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-02-19 15:53:33
📝 项目描述:
Modular Scanner — Burp Suite extension with 11 scan modules (SQLi, XSS, SSRF, SSTI, CmdI, Deserialization, GraphQL, Param Mining, Endpoint Discovery, Subdomain Collection, Security Headers). Montoya API. Burp Collaborator OOB support.🔗 点击访问项目地址
GitHub
worldtreeboy/burp-mod-scanner
Modular Scanner — Burp Suite extension with 11 scan modules (SQLi, XSS, SSRF, SSTI, CmdI, Deserialization, GraphQL, Param Mining, Endpoint Discovery, Subdomain Collection, Security Headers). Montoy...
🚨 GitHub 监控消息提醒
🚨 发现关键词: #CVE-2026
📦 项目名称: CVE-2026-26744
👤 项目作者: lorenzobruno7
🛠 开发语言: None
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-02-19 16:16:14
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #CVE-2026
📦 项目名称: CVE-2026-26744
👤 项目作者: lorenzobruno7
🛠 开发语言: None
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-02-19 16:16:14
📝 项目描述:
CVE-2026-26744🔗 点击访问项目地址
GitHub
GitHub - lorenzobruno7/CVE-2026-26744: CVE-2026-26744
CVE-2026-26744. Contribute to lorenzobruno7/CVE-2026-26744 development by creating an account on GitHub.
🚨 GitHub 监控消息提醒
🚨 发现关键词: #Bypass #AV #Filter #Patch
📦 项目名称: amfidont
👤 项目作者: zqxwce
🛠 开发语言: Python
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-02-19 17:00:45
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #Bypass #AV #Filter #Patch
📦 项目名称: amfidont
👤 项目作者: zqxwce
🛠 开发语言: Python
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-02-19 17:00:45
📝 项目描述:
A simple utility for bypassing amfid signature verification🔗 点击访问项目地址
GitHub
GitHub - zqxwce/amfidont: A simple utility for bypassing amfid signature verification
A simple utility for bypassing amfid signature verification - zqxwce/amfidont
🚨 GitHub 监控消息提醒
🚨 发现关键词: #Bypass #AV
📦 项目名称: Cloudscraper-with-proxies
👤 项目作者: BolekL
🛠 开发语言: None
⭐ Star数量: 1 | 🍴 Fork数量: 0
📅 更新时间: 2026-02-19 18:01:03
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #Bypass #AV
📦 项目名称: Cloudscraper-with-proxies
👤 项目作者: BolekL
🛠 开发语言: None
⭐ Star数量: 1 | 🍴 Fork数量: 0
📅 更新时间: 2026-02-19 18:01:03
📝 项目描述:
🛠️ Bypass Cloudflare's anti-bot measures using CloudScraper with proxy integration for smoother and more effective web scraping.🔗 点击访问项目地址
GitHub
GitHub - BolekL/Cloudscraper-with-proxies: 🛠️ Bypass Cloudflare's anti-bot measures using CloudScraper with proxy integration for…
🛠️ Bypass Cloudflare's anti-bot measures using CloudScraper with proxy integration for smoother and more effective web scraping. - BolekL/Cloudscraper-with-proxies
🚨 GitHub 监控消息提醒
🚨 发现关键词: #Burp #Extension
📦 项目名称: Burp2Json
👤 项目作者: EDMPL
🛠 开发语言: Java
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-02-19 18:02:41
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #Burp #Extension
📦 项目名称: Burp2Json
👤 项目作者: EDMPL
🛠 开发语言: Java
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-02-19 18:02:41
📝 项目描述:
Export Burp Reported Findings and Activities to JSON🔗 点击访问项目地址
GitHub
GitHub - EDMPL/Burp2Json: Export Burp Reported Findings and Activities to JSON
Export Burp Reported Findings and Activities to JSON - EDMPL/Burp2Json
🚨 GitHub 监控消息提醒
🚨 发现关键词: #XXE
📦 项目名称: OmniStrike
👤 项目作者: worldtreeboy
🛠 开发语言: Java
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-02-19 18:40:52
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #XXE
📦 项目名称: OmniStrike
👤 项目作者: worldtreeboy
🛠 开发语言: Java
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-02-19 18:40:52
📝 项目描述:
OmniStrike — Burp Suite extension with 12 scan modules (SQLi, XSS, SSRF, SSTI, CmdI, XXE, NoSQLi, Deserialization, GraphQL, Endpoint Discovery, Subdomain Collection, Security Headers). Montoya API. Burp Collaborator OOB support.🔗 点击访问项目地址
GitHub
GitHub - worldtreeboy/OmniStrike: OmniStrike — Burp Suite extension with 12 scan modules (SQLi, XSS, SSRF, SSTI, CmdI, XXE, NoSQLi…
OmniStrike — Burp Suite extension with 12 scan modules (SQLi, XSS, SSRF, SSTI, CmdI, XXE, NoSQLi, Deserialization, GraphQL, Endpoint Discovery, Subdomain Collection, Security Headers). Montoya API....
🚨 GitHub 监控消息提醒
🚨 发现关键词: #CSRF
📦 项目名称: http_form_force
👤 项目作者: dereeqw
🛠 开发语言: Python
⭐ Star数量: 4 | 🍴 Fork数量: 1
📅 更新时间: 2026-02-19 18:55:09
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #CSRF
📦 项目名称: http_form_force
👤 项目作者: dereeqw
🛠 开发语言: Python
⭐ Star数量: 4 | 🍴 Fork数量: 1
📅 更新时间: 2026-02-19 18:55:09
📝 项目描述:
Educational HTTP brute force framework for security research and penetration testing training in controlled lab environments. Features smart credential testing, auto-throttling, and CSRF handling. ⚠️ Educational use only.🔗 点击访问项目地址
GitHub
GitHub - dereeqw/http_form_force: Educational HTTP brute force framework for security research and penetration testing training…
Educational HTTP brute force framework for security research and penetration testing training in controlled lab environments. Features smart credential testing, auto-throttling, and CSRF handling. ...
🚨 GitHub 监控消息提醒
🚨 发现关键词: #Webshell
📦 项目名称: splunk-botsv1-joomla-attack-analysis
👤 项目作者: GeerthanaCyberBytes
🛠 开发语言: None
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-02-19 19:59:30
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #Webshell
📦 项目名称: splunk-botsv1-joomla-attack-analysis
👤 项目作者: GeerthanaCyberBytes
🛠 开发语言: None
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-02-19 19:59:30
📝 项目描述:
Splunk SOC investigation of Joomla webshell and C2 attack using BOTS v1 dataset🔗 点击访问项目地址
GitHub
GitHub - GeerthanaCyberBytes/splunk-botsv1-joomla-attack-analysis: Splunk SOC investigation of Joomla webshell and C2 attack using…
Splunk SOC investigation of Joomla webshell and C2 attack using BOTS v1 dataset - GeerthanaCyberBytes/splunk-botsv1-joomla-attack-analysis
🚨 GitHub 监控消息提醒
🚨 发现关键词: #CSRF
📦 项目名称: gobank-api
👤 项目作者: poulhenry
🛠 开发语言: Go
⭐ Star数量: 1 | 🍴 Fork数量: 0
📅 更新时间: 2026-02-19 20:51:38
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #CSRF
📦 项目名称: gobank-api
👤 项目作者: poulhenry
🛠 开发语言: Go
⭐ Star数量: 1 | 🍴 Fork数量: 0
📅 更新时间: 2026-02-19 20:51:38
📝 项目描述:
Projeto relacionado ao desafio de servidor HTTP em GO com Proteção CSRF da rocketseat🔗 点击访问项目地址
GitHub
GitHub - poulhenry/gobank-api: Projeto relacionado ao desafio de servidor HTTP em GO com Proteção CSRF da rocketseat
Projeto relacionado ao desafio de servidor HTTP em GO com Proteção CSRF da rocketseat - poulhenry/gobank-api
🚨 GitHub 监控消息提醒
🚨 发现关键词: #CVE-2026
📦 项目名称: CVE-2026-5252-CVE-POC-ivanti
👤 项目作者: aydin5245
🛠 开发语言: None
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-02-19 21:53:56
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #CVE-2026
📦 项目名称: CVE-2026-5252-CVE-POC-ivanti
👤 项目作者: aydin5245
🛠 开发语言: None
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-02-19 21:53:56
📝 项目描述:
CVE-2026-5252 CVE POC ivantiiiiiiii🔗 点击访问项目地址
GitHub
GitHub - aydin5245/CVE-2026-5252-CVE-POC-ivanti: CVE-2026-5252 CVE POC ivanti
CVE-2026-5252 CVE POC ivanti. Contribute to aydin5245/CVE-2026-5252-CVE-POC-ivanti development by creating an account on GitHub.
🚨 GitHub 监控消息提醒
🚨 发现关键词: #CVE-2026
📦 项目名称: CVE-2026-2441-PoC
👤 项目作者: theemperorspath
🛠 开发语言: HTML
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-02-19 23:51:04
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #CVE-2026
📦 项目名称: CVE-2026-2441-PoC
👤 项目作者: theemperorspath
🛠 开发语言: HTML
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-02-19 23:51:04
📝 项目描述:
无描述🔗 点击访问项目地址
GitHub
GitHub - theemperorspath/CVE-2026-2441-PoC
Contribute to theemperorspath/CVE-2026-2441-PoC development by creating an account on GitHub.
🚨 GitHub 监控消息提醒
🚨 发现关键词: #SSRF
📦 项目名称: vhunter
👤 项目作者: Lime27-Star
🛠 开发语言: Python
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-02-19 23:32:04
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #SSRF
📦 项目名称: vhunter
👤 项目作者: Lime27-Star
🛠 开发语言: Python
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-02-19 23:32:04
📝 项目描述:
Professional-grade async vulnerability assessment framework for bug bounty & pentesting. Covers XSS, SQLi, SSRF, RCE, SSTI, GraphQL, Cloud Misconfig & 30+ CVE templates. WAF evasion, OOB callbacks, plugin system, and HTML/JSON/SARIF reporting. Authorized use only.🔗 点击访问项目地址
GitHub
GitHub - Lime27-Star/vhunter: Professional-grade async vulnerability assessment framework for bug bounty & pentesting. Covers XSS…
Professional-grade async vulnerability assessment framework for bug bounty & pentesting. Covers XSS, SQLi, SSRF, RCE, SSTI, GraphQL, Cloud Misconfig & 30+ CVE templates. WAF evasion...
🚨 GitHub 监控消息提醒
🚨 发现关键词: #CVE-2026
📦 项目名称: cve-2026-0006
👤 项目作者: aydin5245
🛠 开发语言: Python
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-02-20 00:08:35
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #CVE-2026
📦 项目名称: cve-2026-0006
👤 项目作者: aydin5245
🛠 开发语言: Python
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-02-20 00:08:35
📝 项目描述:
şuan yok🔗 点击访问项目地址
GitHub
GitHub - aydin5245/cve-2026-0006: şuan yok
şuan yok. Contribute to aydin5245/cve-2026-0006 development by creating an account on GitHub.
🚨 GitHub 监控消息提醒
🚨 发现关键词: #CSRF
📦 项目名称: security-lab-portfolio
👤 项目作者: barrytd
🛠 开发语言: None
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-02-20 00:52:31
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #CSRF
📦 项目名称: security-lab-portfolio
👤 项目作者: barrytd
🛠 开发语言: None
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-02-20 00:52:31
📝 项目描述:
Hands-on web application security lab demonstrating SQL injection, blind SQLi, XSS, and CSRF exploitation and mitigation in a manually configured DVWA environment.🔗 点击访问项目地址
GitHub
GitHub - barrytd/security-lab-portfolio: Hands-on web application security lab demonstrating SQL injection, blind SQLi, XSS, and…
Hands-on web application security lab demonstrating SQL injection, blind SQLi, XSS, and CSRF exploitation and mitigation in a manually configured DVWA environment. - barrytd/security-lab-portfolio