Wordpress functions.php 主题文件后门分析
http://paper.seebug.org/140/

CVE-2016-6771: Android语音信箱伪造漏洞分析
http://paper.seebug.org/141/

分析Linux/Mirai.B蠕虫
http://www.mottoin.com/93625.html

Exploit PHP’s mail() to get remote code execution
https://www.saotn.org/exploit-phps-mail-get-remote-code-execution

深入探析交互式扫描(IAST)技术
http://cryin.startblog.cc/articles/article/30

Art of Anti Detection – 1
https://www.exploit-db.com/docs/40900.pdf

在 PHP 中使用 Promise + co/yield 协程
https://segmentfault.com/a/1190000007760513

XSS Bypass Cookbook
https://xianzhi.aliyun.com/forum/read/536.html

内网安全(一):从一封钓鱼邮件开始
http://www.freebuf.com/articles/database/122591.html

Teaching an Old Dog (not that new) Tricks. Stego in TCP/IP made easy (part-1)
https://www.exploit-db.com/docs/40891.pdf

【技术分享】如何分析经过混淆的SWF
http://bobao.360.cn/learning/detail/3283.html

【技术分享】在ie8中利用ROP与Heap Spray利用反弹shell
http://bobao.360.cn/learning/detail/3282.html

Exotic HTTP Headers
https://peteris.rocks/blog/exotic-http-headers/