momo安全漏洞库

多模块数据检索平台

登录 注册
Intelligence Digest

威胁情报

统一威胁情报视图,聚合漏洞监控、网安开源项目与官方源情报

共聚合 5347 条情报 漏洞监控 3512 / 网安开源项目 1573 / 威胁情报 262

漏洞监控

来自 GitHub Issues、仓库检索和关键词命中的 CVE / RCE / POC 动态。

3512总量

网安开源项目

优先展示中文安全团队维护的开源项目,兼顾工具落地场景和最近更新时间。

1573总量

威胁情报

来自 360、奇安信、斗象等官方站点的公开情报聚合。

262总量
lukasz-rybak/CVE-2026-22692
GitHub Repos/search 高危 lukasz-rybak/CVE-2026-22692 发布时间 2026-04-14 入库 2026-04-14 13:55
CVE-2026-22692 - Critical Twig Sandbox Bypass via collect()->mapInto() allowing RCE/LFI/XXE in October CMS
adysec/ARL
GitHub 开源项目 adysec/ARL 更新 2026-03-17 入库 2026-03-18 02:37
ARL 资产侦察灯塔系统(可运行,添加指纹,提高并发,升级工具及系统,无限制修改版) | ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产,构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产,发现存在的薄弱点和攻击面。 | topics: arl, cyber-security, flask, fofa, python, scan, secu...
本页此列暂无更多数据
surri/audit-axios
GitHub Repos/search surri/audit-axios 发布时间 2026-04-14 入库 2026-04-14 13:52
Scan local repos for vulnerable axios versions (CVE-2026-40175) and patch interactively | language: JavaScript
CuriousLearnerDev/TrafficEye
GitHub 开源项目 CuriousLearnerDev/TrafficEye 更新 2026-03-17 入库 2026-03-20 15:03
This tool is designed to help penetration testers and network administrators identify potential security threats, especially those targeting web applications such as SQL injection, XSS, and WebShells. Its modular desig 该...
kengzzzz/CVE-2026-40175
GitHub Repos/search kengzzzz/CVE-2026-40175 发布时间 2026-04-14 入库 2026-04-14 08:18
zhanglimao/Abyss
GitHub 开源项目 zhanglimao/Abyss 更新 2026-03-17 入库 2026-03-18 02:37
基于AI多智能体的自主渗透测试框架 | language: JavaScript | stars: 3 | forks: 0 | updated 2026-03-19T15:39:30Z | pushed 2026-03-19T15:37:06Z
eduardorossi84/CVE-2026-34621-POC
GitHub Repos/search eduardorossi84/CVE-2026-34621-POC 发布时间 2026-04-13 入库 2026-04-14 03:27
Acrobat Reader versions 24.001.30356, 26.001.21367 and earlier are affected by an Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') vulnerability that could result in arbitrary cod...
ModusCreate-NFR/mcp-security-tool
GitHub 开源项目 ModusCreate-NFR/mcp-security-tool 更新 2026-03-17 入库 2026-03-17 22:35
language: Python | stars: 0 | forks: 0 | updated 2026-03-23T12:05:46Z | pushed 2026-03-23T12:05:43Z
keraattin/CVE-2026-35616
GitHub Repos/search keraattin/CVE-2026-35616 发布时间 2026-04-13 入库 2026-04-14 02:51
CVE-2026-35616 - FortiClient EMS Pre-Authentication API Bypass (CVSS 9.1, CISA KEV). Python & Nmap NSE detection scripts with full technical breakdown. One forged HTTP header bypasses authentication on FortiClient EMS 7....
PentHertz/RF-Swift
GitHub 开源项目 PentHertz/RF-Swift 更新 2026-03-17 入库 2026-03-17 22:35
🚀 A powerful multi-platform RF toolbox that deploys specialized radio, hardware, and other security tools in seconds on Linux, Windows, and macOS—supporting x86_64, ARM64 (Raspberry Pi, Apple Silicon), and RISC-V archite...
Spydomain/CVE-2026-33017-lab
GitHub Repos/search Spydomain/CVE-2026-33017-lab 发布时间 2026-04-13 入库 2026-04-14 02:41
language: Shell
RedUbuntuProject/blood
GitHub 开源项目 RedUbuntuProject/blood 更新 2026-03-17 入库 2026-03-17 22:35
The package manager for cyber-security tools and hypernova-developer projects | language: Python | stars: 0 | forks: 0 | updated 2026-03-17T12:38:40Z | pushed 2026-03-17T12:38:37Z
fevar54/marimo_CVE-2026-39987_RCE_PoC
GitHub Repos/search 高危 fevar54/marimo_CVE-2026-39987_RCE_PoC 发布时间 2026-04-13 入库 2026-04-14 02:07
CVE-2026-39987 - Marimo < 0.23.0 Pre-Auth RCE (WebSocket) PoC de explotación - Conecta a /terminal/ws sin autenticación Author: Fevar54 Date: 2026-04-13 Severity: CRITICAL CVSS: 9.3 | language: Python
gideonallred-478/Security-Toolkit
GitHub 开源项目 gideonallred-478/Security-Toolkit 更新 2026-03-17 入库 2026-03-17 22:35
A security toolkit using PowerShell and scripts | language: Python | stars: 0 | forks: 0 | updated 2026-03-17T12:35:33Z | pushed 2026-03-17T12:35:29Z
Pixel-DefaultBR/CVE-2026-6227
GitHub Repos/search Pixel-DefaultBR/CVE-2026-6227 发布时间 2026-04-13 入库 2026-04-14 00:17
FuzzingLabs/fuzzforge_ai
GitHub 开源项目 FuzzingLabs/fuzzforge_ai 更新 2026-03-17 入库 2026-03-17 22:35
AI-powered workflow automation and AI Agents platform for AppSec, Fuzzing & Offensive Security. Automate vulnerability discovery with intelligent fuzzing, AI-driven analysis, and a marketplace of security tools. | topics...
r3m0t3nu11/biotime-CVE-2026-000-Auth-rce
GitHub Repos/search r3m0t3nu11/biotime-CVE-2026-000-Auth-rce 发布时间 2026-04-13 入库 2026-04-13 23:01
Biotime 9.5 auth rce
chainreactors/gogo
GitHub 开源项目 chainreactors/gogo 更新 2026-03-17 入库 2026-03-17 23:19
面向红队的, 高性能高度自由可拓展的自动化扫描引擎 | A highly controllable and extensionable automated scanning engine for red teams | topics: recon, redteam, security, security-tools | language: Go | stars: 2053 | forks: 193 | updated 2026-05-0...
Ath-PS/RC4-AD-Depreciation-CVE-2026-20833
GitHub Repos/search Ath-PS/RC4-AD-Depreciation-CVE-2026-20833 发布时间 2026-04-13 入库 2026-04-13 21:15
SCCM Configuration Baseline to revert the April 2026 RC4 enforcement back to **Monitor/Audit mode** on Domain Controllers, giving you time to migrate service accounts to AES before full enforcement in July 2026. | langua...
techdefenders1/secure-auth-system
GitHub 开源项目 techdefenders1/secure-auth-system 更新 2026-03-17 入库 2026-03-17 22:35
TechDefender is a Flask-based cybersecurity platform designed to protect small businesses from phishing, weak passwords, and unauthorized access. It provides simple, affordable, and effective security tools with an easy-...