| 2016-09-22 | Safari's URL redirection XSS | ourren | 2105 | |
| 2016-09-14 | 浏览器XSS 过滤器Fuzzing 框架 | ourren | 2884 | |
| 2016-09-07 | XSS Tricks - 从 SelfXSS 到登录你的账户 | ourren | 2265 | |
| 2016-09-02 | Breaking XSS WAF Evasion CheatSheet | ourren | 2055 | |
| 2016-09-02 | Using Chrome’s web-custom-data UTI to inject a stored XSS in Slack | ourren | 2256 | |
| 2016-08-25 | autoFindXssAndCsrf: 自动化检测页面是否存在XSS和CSRF漏洞的浏览器插件 | ourren | 3411 | |
| 2016-08-19 | [ABCTF 2016] SE and XSS – The art of phishing and trolling | ourren | 2385 | |
| 2016-08-17 | 驱散前端安全梦魇——DOMXSS典型场景分析与修复指南 | ourren | 3079 | |
| 2016-08-13 | httphijack: 使用Javascript实现前端防御http劫持及防御XSS攻击 | ourren | 2585 | |
| 2016-08-11 | 一次针对存储型XSS的fuzzing | ourren | 2476 | |
