| 2016-09-14 | 浏览器XSS 过滤器Fuzzing 框架 | ourren | 2858 | |
| 2016-09-07 | XSS Tricks - 从 SelfXSS 到登录你的账户 | ourren | 2252 | |
| 2016-09-02 | Breaking XSS WAF Evasion CheatSheet | ourren | 2033 | |
| 2016-09-02 | Using Chrome’s web-custom-data UTI to inject a stored XSS in Slack | ourren | 2242 | |
| 2016-08-25 | autoFindXssAndCsrf: 自动化检测页面是否存在XSS和CSRF漏洞的浏览器插件 | ourren | 3295 | |
| 2016-08-19 | [ABCTF 2016] SE and XSS – The art of phishing and trolling | ourren | 2316 | |
| 2016-08-17 | 驱散前端安全梦魇——DOMXSS典型场景分析与修复指南 | ourren | 2966 | |
| 2016-08-13 | httphijack: 使用Javascript实现前端防御http劫持及防御XSS攻击 | ourren | 2551 | |
| 2016-08-11 | 一次针对存储型XSS的fuzzing | ourren | 2463 | |
| 2016-08-04 | XSS payloads by ghettoBypass | sosly | 7471 | |
