| 2016-09-14 | 浏览器XSS 过滤器Fuzzing 框架 | ourren | 2832 | |
| 2016-09-07 | XSS Tricks - 从 SelfXSS 到登录你的账户 | ourren | 2233 | |
| 2016-09-02 | Breaking XSS WAF Evasion CheatSheet | ourren | 2027 | |
| 2016-09-02 | Using Chrome’s web-custom-data UTI to inject a stored XSS in Slack | ourren | 2226 | |
| 2016-08-25 | autoFindXssAndCsrf: 自动化检测页面是否存在XSS和CSRF漏洞的浏览器插件 | ourren | 3225 | |
| 2016-08-19 | [ABCTF 2016] SE and XSS – The art of phishing and trolling | ourren | 2296 | |
| 2016-08-17 | 驱散前端安全梦魇——DOMXSS典型场景分析与修复指南 | ourren | 2870 | |
| 2016-08-13 | httphijack: 使用Javascript实现前端防御http劫持及防御XSS攻击 | ourren | 2508 | |
| 2016-08-11 | 一次针对存储型XSS的fuzzing | ourren | 2449 | |
| 2016-08-04 | XSS payloads by ghettoBypass | sosly | 7140 | |
