| 2020-04-21 | Exploiting POST-based XSSI | re4lity | 3291 | |
| 2020-04-21 | Everything You Need to Know About IDOR | re4lity | 2366 | |
| 2020-04-21 | Abusing HTTP Path Normalization and Cache Poisoning to steal accounts | re4lity | 1791 | |
| 2020-04-21 | JSON Web Token Validation Bypass in Auth0 Authentication API | re4lity | 3352 | |
| 2020-04-21 | Critical CSRF to RCE bug chain in Prestashop v1.7.6.4 and below | re4lity | 7345 | |
| 2020-04-21 | Handbook of information collection for penetration testing and src | re4lity | 4334 | |
| 2020-04-21 | This challenge is Inon Shkedy's 31 days API Security Tips. | re4lity | 2009 | |
| 2020-04-20 | Python RASP 工程化:一次入侵的思考 | ourren | 4821 | |
| 2020-04-20 | PHP代码审计之CTF系列(3) | secplus | 4018 | |
| 2020-04-20 | 远控免杀专题-白名单(113个)总结篇 | secplus | 2924 | |
| 2020-04-20 | 体系化的WAF安全运营实践 | ourren | 3347 | |
| 2020-04-19 | 云上攻防:Red Teaming for Cloud | ourren | 3156 | |
| 2020-04-19 | sharpwmi: 基于RPC的横向移动工具 | ourren | 5699 | |
