Intelligence Digest
威胁情报
统一威胁情报视图,聚合漏洞监控、网安开源项目与官方源情报
漏洞监控
来自 GitHub Issues、仓库检索和关键词命中的 CVE / RCE / POC 动态。
2960总量
网安开源项目
优先展示中文安全团队维护的开源项目,兼顾工具落地场景和最近更新时间。
1546总量
威胁情报
来自 360、奇安信、斗象等官方站点的公开情报聚合。
235总量
Chromium: CVE-2026-6303 Use after free in Codecs
<p>This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see <a href="https://chromereleases.googleblog.com/2026">Google Chrome Releases</a> for mo...
Leveltoo/visual-agent-security-lab
授权靶场环境下的可视化「议会式」多 Agent 攻防演练控制台:NestJS 领域 API、Next.js SSR + BFF、Python sidecar 执行工具。 | language: TypeScript | stars: 0 | forks: 0 | updated 2026-03-31T07:06:53Z | pushed 2026-03-31T07:06:49Z
Multiple Vulnerabilities in Mozilla Firefox Could Allow for Arbitrary Code Execution
<p>Multiple vulnerabilities have been discovered in Mozilla Firefox, the most severe of which could allow for arbitrary code execution. Mozilla Firefox is a web browser used to access the Internet. Successful exploitatio...
Chromium: CVE-2026-6302 Use after free in Video
<p>This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see <a href="https://chromereleases.googleblog.com/2026">Google Chrome Releases</a> for mo...
kukuqi666/hexstrike-ai
基于hexstrike-ai 项目增加了一些 mcp 客户端的连接方式 支持 streamableHttp, HexStrike AI MCP Agents 是一款高级 MCP 服务器,它允许 AI 代理(例如 Claude、GPT、Copilot 等)自主运行 150 多种网络安全工具,用于自动化渗透测试、漏洞发现、漏洞赏金自动化和安全研究。它能够无缝地将 LLM 与现实世界的攻击性安全能力连接起来 | language: Pytho...
Critical Patches Issued for Microsoft Products, March 10, 2026
<p>Multiple vulnerabilities have been discovered in Microsoft products, the most severe of which could allow for remote code execution. Successful exploitation of the most severe of these vulnerabilities could result in ...
Chromium: CVE-2026-6301 Type Confusion in Turbofan
<p>This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see <a href="https://chromereleases.googleblog.com/2026">Google Chrome Releases</a> for mo...
onewinner/Lightx
Lightx 是一款轻量级、高效率的网络安全扫描工具,专为安全研究人员和渗透测试工程师设计。它集成了端口扫描、服务识别、Web指纹识别、漏洞扫描和弱口令检测等功能,提供全面的安全评估能力。并覆盖多数两高一弱场景。 | stars: 70 | forks: 7 | updated 2026-04-03T14:15:38Z | pushed 2026-01-03T05:26:10Z
Multiple Vulnerabilities in Adobe Products Could Allow for Arbitrary Code Execution
<p>Multiple vulnerabilities have been discovered in Adobe products, the most severe of which could allow for arbitrary code execution.</p><ul><li>Adobe Acrobat is a comprehensive software family designed to create, edit,...
Chromium: CVE-2026-6300 Use after free in CSS
<p>This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see <a href="https://chromereleases.googleblog.com/2026">Google Chrome Releases</a> for mo...
qq510457577-tech/earth-online-gan-simulator
地球 Online GAN 攻防模拟器 | language: Python | stars: 1 | forks: 0 | updated 2026-04-24T06:50:14Z | pushed 2026-03-30T15:39:26Z
ISC Stormcast For Tuesday, March 10th, 2026 https://isc.sans.edu/podcastdetail/9842, (Tue, Mar 10th)
Chromium: CVE-2026-6299 Use after free in Prerender
<p>This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see <a href="https://chromereleases.googleblog.com/2026">Google Chrome Releases</a> for mo...
zrblxlx/
基于python的智能家居物联网设备漏洞扫描工具 | language: Python | stars: 0 | forks: 0 | updated 2026-03-30T13:51:19Z | pushed 2026-03-30T13:51:12Z
Encrypted Client Hello: Ready for Prime Time?, (Mon, Mar 9th)
Last week, two related RFCs were published:
Chromium: CVE-2026-6298 Heap buffer overflow in Skia
<p>This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see <a href="https://chromereleases.googleblog.com/2026">Google Chrome Releases</a> for mo...
zhengsuanfa/AI-Cyber-Sentinel
AI Cyber Sentinel (AI网络哨兵)—— 让黑客梦不再遥远! 本项目通过智能漏洞检测、攻防模拟和黑客学习路径,让用户发现代码漏洞、体验网络攻防实战,并掌握系统化的安全学习方法。 | language: TypeScript | stars: 7 | forks: 1 | updated 2026-04-27T07:36:16Z | pushed 2026-03-30T11:00:58Z | homepage: https...
PR堆积如山?Code Review太费时间?长亭科技发布免费 AI Code Review 机器人
强势围观!
Chromium: CVE-2026-6297 Use after free in Proxy
<p>This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see <a href="https://chromereleases.googleblog.com/2026">Google Chrome Releases</a> for mo...
RainRem/Python
Python渗透测试工具 | language: Python | stars: 0 | forks: 0 | updated 2026-03-30T09:07:03Z | pushed 2026-03-30T09:07:00Z
开年连中三元!长亭科技全栈智能安全能力获国家级采购全面认可
👍 👍 👍
Chromium: CVE-2026-6296 Heap buffer overflow in ANGLE
<p>This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see <a href="https://chromereleases.googleblog.com/2026">Google Chrome Releases</a> for mo...
54Cable/myWebsite
網路攻防實習labs | language: HTML | stars: 0 | forks: 0 | updated 2026-04-06T14:20:05Z | pushed 2026-03-30T03:42:10Z | homepage: https://my-website-cable1.vercel.app
当 AI Agent 拥有系统权限:OpenClaw 安全风险全景分析
在快速扩张的开源生态背景下,安全治理机制往往滞后于功能演进节奏,导致阶段性风险集中暴露。因此,有必要对 OpenClaw 当前的安全现状与公开安全事件进行系统性梳理与客观分析。
Chromium: CVE-2026-6364 Out of bounds read in Skia
<p>This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see <a href="https://chromereleases.googleblog.com/2026">Google Chrome Releases</a> for mo...
Sherlockxuxu/SannerFullstack
安全漏洞扫描工具 | stars: 0 | forks: 0 | updated 2026-03-29T17:18:02Z | pushed 2026-03-29T17:17:59Z
每日安全动态推送(26/3/6)
Windows 记事本应用通过 Markdown 链接实现远程/本地代码执行漏洞;macOS 中 ExifTool 图像元数据处理漏洞分析;Azure AI Language Conversations SDK 远程代码执行漏洞分析
Chromium: CVE-2026-6363 Type Confusion in V8
<p>This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see <a href="https://chromereleases.googleblog.com/2026">Google Chrome Releases</a> for mo...
haya256/novel-cyber-ai-hunter
逃亡するAIと、それを追うハンターの攻防を描いた短編SF小説 | topics: ai, creative-commons, japanese, science-fiction, short-story | stars: 0 | forks: 0 | updated 2026-03-29T14:26:08Z | pushed 2026-03-29T14:26:01Z | homepage: https://haya256.github....
每周勒索威胁摘要
1. Qilin勒索团伙公布了新的受害者 2. Play勒索团伙公布新的受害公司 3. Bravox勒索团伙公布新的受害公司