| 2016-09-22 | Safari's URL redirection XSS | ourren | 2105 | |
| 2016-09-14 | 浏览器XSS 过滤器Fuzzing 框架 | ourren | 2877 | |
| 2016-09-07 | XSS Tricks - 从 SelfXSS 到登录你的账户 | ourren | 2265 | |
| 2016-09-02 | Breaking XSS WAF Evasion CheatSheet | ourren | 2047 | |
| 2016-09-02 | Using Chrome’s web-custom-data UTI to inject a stored XSS in Slack | ourren | 2254 | |
| 2016-08-25 | autoFindXssAndCsrf: 自动化检测页面是否存在XSS和CSRF漏洞的浏览器插件 | ourren | 3392 | |
| 2016-08-19 | [ABCTF 2016] SE and XSS – The art of phishing and trolling | ourren | 2380 | |
| 2016-08-17 | 驱散前端安全梦魇——DOMXSS典型场景分析与修复指南 | ourren | 3075 | |
| 2016-08-13 | httphijack: 使用Javascript实现前端防御http劫持及防御XSS攻击 | ourren | 2578 | |
| 2016-08-11 | 一次针对存储型XSS的fuzzing | ourren | 2476 | |
