GitHub 红队武器库🚨
📦 GitHub 全球红队渗透资源中转站。 旨在收录那些“好用却难找”的安全项目。 🔗 定时推送:GitHub Trending (Security) 🛠 必备清单:后渗透、远控、免杀、提权工具集 📅 更新频率:每日精选,绝不灌水。 ⚠️ 本频道仅供安全研究与授权测试使用。
Show more📈 Analytical overview of Telegram channel GitHub 红队武器库🚨
Channel GitHub 红队武器库🚨 (@githubredteam) in the Chinese language segment is an active participant. Currently, the community unites 13 089 subscribers, ranking 9 657 in the Technologies & Applications category and 16 100 in the China region.
📊 Audience metrics and dynamics
Since its creation on невідомо, the project has demonstrated rapid growth, gathering an audience of 13 089 subscribers.
According to the latest data from 04 July, 2026, the channel demonstrates stable activity. Although there has been a change in the number of participants by 252 over the last 30 days and by 11 over the last 24 hours, overall reach remains high.
- Verification status: Not verified
- Engagement rate (ER): The average audience engagement rate is 0.23%. Within the first 24 hours after publication, content typically collects 0.40% reactions from the total number of subscribers.
- Post reach: On average, each post receives 30 views. Within the first day, a publication typically gains 53 views.
- Reactions and interaction: The audience actively supports content: the average number of reactions per post is 1.
- Thematic interests: Content is focused on key topics such as github, fork, 异性spa, cve-2026, vme.
📝 Description and content policy
The author describes the resource as a platform for expressing subjective opinions:
“📦 GitHub 全球红队渗透资源中转站。
旨在收录那些“好用却难找”的安全项目。
🔗 定时推送:GitHub Trending (Security)
🛠 必备清单:后渗透、远控、免杀、提权工具集
📅 更新频率:每日精选,绝不灌水。
⚠️ 本频道仅供安全研究与授权测试使用。”
Thanks to the high frequency of updates (latest data received on 05 July, 2026), the channel maintains relevance and a high level of publication reach. Analytics show that the audience actively interacts with content, making it an important point of influence in the Technologies & Applications category.
new nuclei template notifications
🔗 点击访问项目地址无描述
🔗 点击访问项目地址A structured DFIR playbook for analyzing memory dumps using Volatility 3. This repository provides a question-driven workflow for investigating volatile memory artifacts, suspicious processes, network connections, persistence mechanisms, credential dumping activity, and attacker behavior during incident response and CTF investigations.
🔗 点击访问项目地址Advanced AD Offensive Engine. Automates the path from stealthy recon to domain compromise. Features unauthenticated SMB Signing/NTLM Relay audits, ZeroLogon (CVE-2020-1472) hunting, and authenticated LAPS extraction. Engineered for Red Team precision with professional, executive-ready HTML reporting.
🔗 点击访问项目地址无描述
🔗 点击访问项目地址Simple shellcode staging loader in Csharp
🔗 点击访问项目地址个人准备渗透测试和安全面试的经验之谈,和去部分厂商的面试题,干货真的满满~
🔗 点击访问项目地址🚀 A powerful, lightweight tool for detecting and analyzing DOM-based XSS vulnerabilities.
🔗 点击访问项目地址I find vulnerabilities in web applications before attackers do. I test web apps, APIs, and mobile apps from an attacker's point of view. I look for flaws like IDOR, XSS, SSRF, CORS issues, access control problems, and other security misconfigurations.
🔗 点击访问项目地址AI Code Reviewer 是一个基于多Agent协作架构的代码审查与优化平台,通过四个专业Agent(CodeParser、SecurityAudit、PerformanceOptimizer、StyleChecker)按优先级顺序协同工作,结合长链推理能力对代码进行全方位分析——从AST结构解析、安全漏洞扫描(检测命令注入、SQL注入、硬编码凭证等10+种风险模式)、算法复杂度分析,到PEP 8规范检查和代码风格评估。各Agent共享上下文并记录完整推理链,最终生成带具体行号和可执行修复建议的综合报告,帮助开发者在上线前发现并解决潜在的安全隐患、性能瓶颈和代码规范问题。
🔗 点击访问项目地址无描述
🔗 点击访问项目地址A comprehensive Security Operations Centre (SOC) incident response simulation demonstrating threat detection, triage, analysis, and mitigation of the Spring4Shell vulnerability (CVE-2022-22965).
🔗 点击访问项目地址Docker-based CVE lab environments with PoC exploits. Log4Shell, Spring4Shell, Dirty Pipe, PwnKit, XZ backdoor and more.
🔗 点击访问项目地址CRAReady SBOM test fixture — Java/Maven app with Log4Shell (CVE-2021-44228), Spring4Shell, Text4Shell, and other critical CVEs
🔗 点击访问项目地址Full Kubernetes container escape demo on AWS EKS — Spring4Shell RCE to cluster takeover — with web dashboard, automated containment via Cortex XDR playbook + AWS Lambda, and security posture radar.
🔗 点击访问项目地址🛡️ Analyze CVE-2025-5419 to exploit an uninitialized read vulnerability in V8 for arbitrary read/write access within the sandbox environment.
🔗 点击访问项目地址🛠️ Exploit CVE-2025-2304 in Camaleon CMS easily with this Python script for privilege escalation, tested on version 2.9.0.
🔗 点击访问项目地址Exploit for CVE-2026-41651 - PackageKit TOCTOU Local Privilege Escalation (Pack2TheRoot)
🔗 点击访问项目地址
Available now! Telegram Research 2025 — the year's key insights 
