| 2017-09-10 | Rare ASP.NET request validation bypass using request encoding | re4lity | 2915 | |
| 2017-09-09 | Abusing JavaScript frameworks to bypass XSS mitigations | ourren | 3036 | |
| 2017-09-09 | Using Alternate Data Streams to Bypass User Account Controls | re4lity | 2988 | |
| 2017-09-09 | Modern Web Application Penetration Testing , Hash Length Extension Attacks | re4lity | 2716 | |
| 2017-09-08 | s2-053漏洞重现(附exp) | LSA | 14887 | |
| 2017-09-08 | Exploiting Python Deserialization Vulnerabilities | BaCde | 3084 | |
| 2017-09-08 | Proof-of-concept JavaScript malware implemented as a Proxy Auto-Configuration | BaCde | 2753 | |
| 2017-09-08 | Uber Bug Bounty: Gaining Access To An Internal Chat System | BaCde | 2897 | |
| 2017-09-08 | fastjson 调试利用记录 | ourren | 2363 | |
| 2017-09-08 | 从WordPress SQLi谈PHP格式化字符串问题 | ourren | 2404 | |
| 2017-09-08 | cobaltstrike3.8 破解版 | ourren | 4792 | |
| 2017-09-08 | ThinkerPHP后台远程任意代码执行漏洞 | 阿里云先知社区 | 4024 | |
| 2017-09-08 | 影子经纪人 9月 Tools | 西瓜 | 7596 | |
