| 2016-12-11 | Safari浏览器JavaScript引擎JavaScriptCore的漏洞利用技术 | ourren | 2572 | |
| 2016-12-09 | Roundcube v1.2.2命令执行漏洞分析 | ourren | 2249 | |
| 2016-12-08 | 通过EVENTVWR.EXE和注册表劫持绕过UAC | re4lity | 2616 | |
| 2016-12-08 | 利用 XML Signature 攻击绕过 SAML 2.0 单点登录 | re4lity | 1713 | |
| 2016-12-07 | Android:Native层文件解析漏洞分析 | 御安全 | 5791 | |
| 2016-12-07 | Exploiting 64-bit IE on Windows 8.1 – The Pwn2Own Case Study | BaCde | 3258 | |
| 2016-12-05 | [0day] Bypassing Apple's System Integrity Protection | ourren | 2329 | |
| 2016-12-03 | Google: Announcing OSS-Fuzz: Continuous Fuzzing for Open Source Software | ourren | 2715 | |
| 2016-12-03 | Analysis of multiple vulnerabilities in AirDroid | ourren | 2954 | |
| 2016-12-03 | 【漏洞预警】Apache Tomcat远程代码执行漏洞(CVE-2016-8735) | re4lity | 3324 | |
| 2016-12-02 | 玩转CSRF之挖洞实例分享 | 0h1in9e | 7109 | |
| 2016-12-02 | Bypassing CSP using polyglot JPEGs | vicker | 5808 | |
| 2016-12-02 | FreePBX 13: From Cross-Site Scripting to Remote Command Execution | ourren | 1853 | |
