| 2015-04-15 | Johannes Ullrich | MS15-034: HTTP.sys (IIS) DoS And Possible Remote Code Execution. PATCH NOW |
| 2010-12-22 | John Bambenek | IIS 7.5 0-Day DoS (processing FTP requests) |
| 2010-06-09 | Deborah Hale | Mass Infection of IIS/ASP Sites |
| 2009-12-29 | Rick Wanner | Microsoft responds to possible IIS 6 0-day |
| 2009-12-28 | Johannes Ullrich | 8 Basic Rules to Implement Secure File Uploads http://jbu.me/48 (inspired by IIS ; bug) |
| 2009-12-27 | Patrick Nolan | Pressure increasing for Microsoft to patch IIS 0 day |
| 2009-12-24 | Guy Bruneau | Microsoft IIS File Parsing Extension Vulnerability |
| 2009-09-08 | Adrien de Beaupre | Microsoft Security Advisory 975191 Revised |
| 2009-09-04 | Adrien de Beaupre | Vulnerabilities (plural) in MS IIS FTP Service 5.0, 5.1. 6.0, 7.0 |
| 2009-05-24 | Raul Siles | IIS admins, help finding WebDAV remotely using nmap |
| 2009-05-21 | Adrien de Beaupre | IIS admins, help finding WebDAV |
| 2009-05-15 | Daniel Wesemann | IIS6.0 WebDav Remote Auth Bypass |
| 2009-01-12 | William Salusky | Web Application Firewalls (WAF) - Have you deployed WAF technology? |
| 2008-04-18 | John Bambenek | IIS Vulnerability Documented by Microsoft - Includes Workarounds |
