| 2016-12-21 | A collection of JavaScript engine CVEs with PoCs | BaCde | 2533 | |
| 2016-12-11 | Safari浏览器JavaScript引擎JavaScriptCore的漏洞利用技术 | ourren | 2612 | |
| 2016-12-10 | PortEx:分析PE文件的java库 | re4lity | 2422 | |
| 2016-11-24 | java Deserialization Cheat Sheet | BaCde | 2196 | |
| 2016-11-16 | jSQL Injection v0.77 - Java application for automatic SQL database injection | vicker | 5360 | |
| 2016-11-15 | Pwning Your Java Messaging With Deserialization Vulnerabilities[PDF] | BaCde | 2088 | |
| 2016-11-05 | Java反序列化工具 — Java Deserialization Exp Tools | ourren | 5284 | |
| 2016-10-28 | Attacking JavaScript Engines: A case study of JavaScriptCore and CVE-2016-4622 | BlackCastle | 5982 | |
| 2016-10-23 | Exploit generation and JavaScript analysis automation with WinDBG | ourren | 3831 | |
| 2016-10-18 | Palo Alto Networks Discovers Two Adobe Reader Privileged JavaScript Zero-Days | ourren | 3746 | |
