| 2016-12-11 | Safari浏览器JavaScript引擎JavaScriptCore的漏洞利用技术 | ourren | 2667 | |
| 2016-12-09 | Roundcube v1.2.2命令执行漏洞分析 | ourren | 2270 | |
| 2016-12-08 | 通过EVENTVWR.EXE和注册表劫持绕过UAC | re4lity | 2770 | |
| 2016-12-08 | 利用 XML Signature 攻击绕过 SAML 2.0 单点登录 | re4lity | 1749 | |
| 2016-12-07 | Android:Native层文件解析漏洞分析 | 御安全 | 7514 | |
| 2016-12-07 | Exploiting 64-bit IE on Windows 8.1 – The Pwn2Own Case Study | BaCde | 3606 | |
| 2016-12-05 | [0day] Bypassing Apple's System Integrity Protection | ourren | 2372 | |
| 2016-12-03 | Google: Announcing OSS-Fuzz: Continuous Fuzzing for Open Source Software | ourren | 2886 | |
| 2016-12-03 | Analysis of multiple vulnerabilities in AirDroid | ourren | 3310 | |
| 2016-12-03 | 【漏洞预警】Apache Tomcat远程代码执行漏洞(CVE-2016-8735) | re4lity | 3650 | |
| 2016-12-02 | 玩转CSRF之挖洞实例分享 | 0h1in9e | 9290 | |
| 2016-12-02 | Bypassing CSP using polyglot JPEGs | vicker | 8835 | |
| 2016-12-02 | FreePBX 13: From Cross-Site Scripting to Remote Command Execution | ourren | 1977 | |
