| 2018-03-12 | 金融企业信息安全团队建设(务虚篇) | quantumsec | 2837 | |
| 2018-03-11 | PHP SSRF Techniques - How to bypass filter_var(), preg_match() and parse_url() | re4lity | 5714 | |
| 2018-03-11 | Python Remote Administration Tool (RAT) to gain meterpreter session | re4lity | 2841 | |
| 2018-03-11 | Abusing Certificate Transparency logs for getting HTTPS websites subdomains. | re4lity | 2752 | |
| 2018-03-11 | Source Code Search Engine | re4lity | 2595 | |
| 2018-03-11 | How I found a $5,000 Google Maps XSS (by fiddling with Protobuf) | re4lity | 2387 | |
| 2018-03-11 | Getting any Facebook user's friend list and partial payment card details | re4lity | 3046 | |
| 2018-03-11 | EasySNS_V1.6远程图片本地化导致Getshell | Bypass | 7031 | |
| 2018-03-11 | ThinkSNS_V4 后台任意文件下载导致Getshell | Bypass | 7030 | |
| 2018-03-08 | Java Web 代码安全审计实战4-环境加固 | 4sec | 5632 | |
| 2018-03-08 | Java Web 代码安全审计实战3-文件路径操纵、系统日志欺骗、线程安全和资源未释放 | 4sec | 7058 | |
| 2018-03-08 | Java Web 代码安全审计实战2-SQL 注入 | 4sec | 7166 | |
| 2018-03-08 | Java Web 代码安全审计实战1-跨站 XSS | 4sec | 7173 | |
