| 2016-11-16 | 在SQLite中实现命令执行 | re4lity | 2638 | |
| 2016-11-16 | SHELLING - an offensive approach to the anatomy of improperly written OS command | BaCde | 2699 | |
| 2016-11-16 | jSQL Injection v0.77 - Java application for automatic SQL database injection | vicker | 5601 | |
| 2016-11-15 | lightbulb-framework: 一款WAF审计工具 | BaCde | 2941 | |
| 2016-11-15 | Open Source Intelligence Tools and Resources Handbook[PDF] | BaCde | 7114 | |
| 2016-11-15 | Pwning Your Java Messaging With Deserialization Vulnerabilities[PDF] | BaCde | 2093 | |
| 2016-11-14 | 使用Commix绕过安全防护利用命令执行漏洞 | re4lity | 2296 | |
| 2016-11-11 | SQLi, Privilage Escalation, and PowerShell Empire | BaCde | 2046 | |
| 2016-11-11 | Tplmap:一个自动化的服务端模板注射攻击检测和漏洞利用工具 | re4lity | 2835 | |
| 2016-11-11 | 利用 Python 代码实现 Web 应用的注入 | re4lity | 2528 | |
| 2016-11-10 | 利用服务端请求伪造(SSRF)攻击进入内网 | re4lity | 2609 | |
| 2016-11-10 | Automated W3AF Scanning with Slack Alerting | ourren | 2569 | |
| 2016-11-10 | pentest-wiki: 渗透测试分阶段资料库 | ourren | 2403 | |
