| 2015-04-21 | The power of DNS rebinding: stealing WiFi passwords with a website(B&O) | MD | 2725 | |
| 2015-04-21 | Playing with Content-Type – XXE on JSON Endpoints | MD | 2531 | |
| 2015-04-20 | SQL Inception: How to select yourself | MD | 2610 | |
| 2015-04-18 | crossdomain.xml : Beware of Wildcards | MD | 2535 | |
| 2015-04-18 | Modern Objective-C Exploitation Techniques | MD | 3443 | |
| 2015-04-18 | Google’s April Fool’s prank inadvertently broke their security | MD | 2297 | |
| 2015-04-08 | CanSecWest 2015 Files | MD | 6423 | |
| 2015-04-08 | SyScan2015 Conference Slides | MD | 3093 | |
| 2015-04-03 | The poor, misunderstood innerText | MD | 2851 | |
| 2014-11-08 | How I REVERSE ENGINEERED GOOGLE DOCS To Play Back Any Document’s Keystrokes | MD | 2616 | |
