| 2016-11-15 | Pwning Your Java Messaging With Deserialization Vulnerabilities[PDF] | BaCde | 2089 | |
| 2016-11-14 | 使用Commix绕过安全防护利用命令执行漏洞 | re4lity | 2282 | |
| 2016-11-11 | SQLi, Privilage Escalation, and PowerShell Empire | BaCde | 2044 | |
| 2016-11-11 | Tplmap:一个自动化的服务端模板注射攻击检测和漏洞利用工具 | re4lity | 2804 | |
| 2016-11-11 | 利用 Python 代码实现 Web 应用的注入 | re4lity | 2520 | |
| 2016-11-10 | 利用服务端请求伪造(SSRF)攻击进入内网 | re4lity | 2598 | |
| 2016-11-10 | Automated W3AF Scanning with Slack Alerting | ourren | 2569 | |
| 2016-11-10 | pentest-wiki: 渗透测试分阶段资料库 | ourren | 2403 | |
| 2016-11-09 | Clever Gmail Hack Let Attackers Take Over Accounts | ourren | 3005 | |
| 2016-11-09 | Bypass Imperva by confusing HTTP Pollution Normalization Engine | ourren | 2953 | |
| 2016-11-08 | Mac OSX系统下的渗透利用工具Empyre | ourren | 2425 | |
| 2016-11-08 | Crawlic: Web recon tool (扫描临时文件、目录和子域名查询) | ourren | 2715 | |
| 2016-11-08 | novahot: A webshell framework for penetration testers. | BaCde | 2438 | |
