| 2016-11-16 | 在SQLite中实现命令执行 | re4lity | 2680 | |
| 2016-11-16 | SHELLING - an offensive approach to the anatomy of improperly written OS command | BaCde | 2807 | |
| 2016-11-16 | jSQL Injection v0.77 - Java application for automatic SQL database injection | vicker | 6143 | |
| 2016-11-15 | lightbulb-framework: 一款WAF审计工具 | BaCde | 2965 | |
| 2016-11-15 | Open Source Intelligence Tools and Resources Handbook[PDF] | BaCde | 7541 | |
| 2016-11-15 | Pwning Your Java Messaging With Deserialization Vulnerabilities[PDF] | BaCde | 2104 | |
| 2016-11-14 | 使用Commix绕过安全防护利用命令执行漏洞 | re4lity | 2339 | |
| 2016-11-11 | SQLi, Privilage Escalation, and PowerShell Empire | BaCde | 2059 | |
| 2016-11-11 | Tplmap:一个自动化的服务端模板注射攻击检测和漏洞利用工具 | re4lity | 2929 | |
| 2016-11-11 | 利用 Python 代码实现 Web 应用的注入 | re4lity | 2565 | |
| 2016-11-10 | 利用服务端请求伪造(SSRF)攻击进入内网 | re4lity | 2643 | |
| 2016-11-10 | Automated W3AF Scanning with Slack Alerting | ourren | 2580 | |
| 2016-11-10 | pentest-wiki: 渗透测试分阶段资料库 | ourren | 2405 | |
