I am the ghost of groovymother.com. Woooooo!

This is an old page from Rod Begbie's blog.

It only exists in an attempt to prevent linkrot. No new content will be added to this site, and links and images are liable to be broken. Check out begbie.com to find where I'm posting stuff these days.

Filed under 'xss'

December 18, 2010

Research: Remarkable 2nd order XSS @ Amazon or How to hack Amazon with a book

A pretty long game. Publish a book demonstrating XSS, and Amazon will serve it up!

Filed under : : :
via |

January 27, 2009

XSS (Cross Site Scripting) Prevention Cheat Sheet - OWASP

Essential reading if you write webapps.

Filed under : :
via |

October 12, 2008

a912rtag9?

Since breaking the search box on groovymother a couple of weeks ago, I’ve spotted a lot of XSS attempts in my logs. The phrase “a912rtag9” in particular seems to appear a lot, and it looks like it’s a bot spidering search boxes across the internet. Anyone know its origin? UPDATED TO ADD: Looks like it’s Yahoo’s Slurp Bot making these requests! Also, the Googlebot is searching for “a912rtag6”. (And yes, I’ve verified the IP addresses) How odd!

Filed under : : :

About This Site

This is an archive of groovmother.com, the old blog run by Rod Begbie — A Scottish geek who lives in San Francisco, CA.

I'm the co-founder of Sōsh, your handy-dandy guide for things to do in San Francisco this weekend.