| 2017-01-08 | Safari Reader UXSS | ourren | 2483 | |
| 2017-01-08 | [Bug Bounty] GitHub Enterprise SQL Injection | ourren | 2563 | |
| 2017-01-08 | 持久化 XSS:被 ServiceWorkers 支配的恐惧 | re4lity | 2513 | |
| 2017-01-07 | Python 格式化字符串漏洞(Django为例) | redboy | 11386 | |
| 2017-01-07 | BurpSuite插件开发Tips:请求响应参数的AES加解密 | re4lity | 7695 | |
| 2017-01-06 | SRC漏洞挖掘小见解 | re4lity | 3348 | |
| 2017-01-06 | 美团点评数据库中间件DBProxy开源 | ourren | 2968 | |
| 2017-01-06 | dedeCMS友情链接getshell漏洞分析 | fresh | 10076 | |
| 2017-01-06 | Data Retrieval over DNS in SQL Injection Attacks | webs3c | 7377 | |
| 2017-01-06 | SQLMap Tamper Scripts Update ~ ForkBombers | 504 | 2739 | |
| 2017-01-06 | Exploiting difficult SQL injection vulnerabilities using sqlmap: Part 1 | 504 | 2881 | |
| 2017-01-06 | SSRF漏洞的挖掘经验 | quantumsec | 12678 | |
| 2017-01-05 | 通过Burp Collaborator插件利用SQL盲注 | re4lity | 3602 | |