| 2017-01-10 | 基于Web的应用程序的漏洞 | 504 | 3499 | |
| 2017-01-10 | awesome-cyber-skills:黑客技术训练环境 | ourren | 2555 | |
| 2017-01-10 | 3xp10it:一个自动化渗透测试框架 | ourren | 3810 | |
| 2017-01-10 | scantastic-tool: masscan和nmap扫描结果存到elasticsearch | ourren | 4993 | |
| 2017-01-09 | Operative- Framework:基于指纹的信息收集框架 | re4lity | 2769 | |
| 2017-01-09 | PHPMailer 命令执行漏洞(CVE-2016-10033)分析 | 西瓜 | 7179 | |
| 2017-01-09 | A dynamic dictionary merger for successful dictionary based attacks. | 504 | 2261 | |
| 2017-01-09 | Web App Penetration Testing Local File Inclusion (LFI) Testing Techniques | 504 | 2480 | |
| 2017-01-08 | Safari Reader UXSS | ourren | 2437 | |
| 2017-01-08 | [Bug Bounty] GitHub Enterprise SQL Injection | ourren | 2531 | |
| 2017-01-08 | 持久化 XSS:被 ServiceWorkers 支配的恐惧 | re4lity | 2452 | |
| 2017-01-07 | Python 格式化字符串漏洞(Django为例) | redboy | 10278 | |
| 2017-01-07 | BurpSuite插件开发Tips:请求响应参数的AES加解密 | re4lity | 6879 | |
