| 2020-04-21 | Exploiting POST-based XSSI | re4lity | 2652 | |
| 2020-04-21 | Everything You Need to Know About IDOR | re4lity | 2112 | |
| 2020-04-21 | Abusing HTTP Path Normalization and Cache Poisoning to steal accounts | re4lity | 1716 | |
| 2020-04-21 | JSON Web Token Validation Bypass in Auth0 Authentication API | re4lity | 2631 | |
| 2020-04-21 | Critical CSRF to RCE bug chain in Prestashop v1.7.6.4 and below | re4lity | 5837 | |
| 2020-04-21 | Handbook of information collection for penetration testing and src | re4lity | 3649 | |
| 2020-04-21 | This challenge is Inon Shkedy's 31 days API Security Tips. | re4lity | 1903 | |
| 2020-04-20 | Python RASP 工程化:一次入侵的思考 | ourren | 4030 | |
| 2020-04-20 | PHP代码审计之CTF系列(3) | secplus | 3270 | |
| 2020-04-20 | 远控免杀专题-白名单(113个)总结篇 | secplus | 2308 | |
| 2020-04-20 | 体系化的WAF安全运营实践 | ourren | 3192 | |
| 2020-04-19 | 云上攻防:Red Teaming for Cloud | ourren | 3015 | |
| 2020-04-19 | sharpwmi: 基于RPC的横向移动工具 | ourren | 4857 | |
