hiredhacker.com

pymsrpc is an attempt to develop a working library for communicating with remote Microsoft RPC endpoints. It includes an IDL parser and NDR data types for making requests.

I wanted to get this up here in case you haven’t heard that Cody Pierce and Aaron Portnoy have released PyMSRPC. I personally have been very excited for this to be released and I will post more information later once I get a chance to play with it. Cody also wrote a great article about NDR Types over on the DVLabs blog.

The WP Contact Form III 1.4.1 WordPress plugin by ‘KristinKWangen’ is vulnerable to multiple cross site scripting attacks.

Note to developers, this does not stop script injection attacks:

From wp-contactform.php line 105:
$_POST['wpcf_your_name'] = stripslashes(trim($_POST['wpcf_your_name']));

Also note that this is not a very good way to die:

From buttonsnap.php line 28:
$selection = isset($_POST['selection']) ? $_POST['selection'] : @$_GET['selection'];
$selection = apply_filters($dispatch, $selection);
die($selection);


Ronald has started a router hacking challenge over on 0×000000.com. It’s an interesting topic, and something I have explored in the past with good results. Take a look and send him your findings.

Over the past few days I have been experiencing some intermediate problems with my hosting provider. They have been short term, random, and not that severe but none the less it pisses me off and annoys the shit out of me. Needless to say I will be switching providers over the weekend, so if there is any real downtime, thats probably me and I apologize in advance.

If anyone has any recommendations I am open to suggestions and feedback, if not for me, I am sure other people will find it helpful.

iPhone Key:
18 84 58 A6 D1 50 34 DF E3 86 F2 3B 61 D4 37 74

HD-DVD Processing Key:
09 F9 11 02 9D 74 E3 5B D8 41 56 C5 63 56 88 C0

New AACS Processing Key:
45 5F E1 04 22 CA 29 C4 93 3F 95 05 2B 79 2A B2

Any More?