Password pond allows you to quickly generate passwords using various options. Passwords can be generated using alphabets, numbers, special characters and a special user defined dictionary.

Generated password list can be copied to the clipboard. It can also be exported to a text file for handy use.

The case of the password characters can be changed to random or upper/lower, based on user selection.

The program is completely free to use and might be very useful considering a lot of people use unsecure passwords these days (to say the least) .

Matt recently announced the release of the first Beta for the 2.3 series/branch. I’ll give it a try on localhost first and probably wait for the first stable release before upgrading.

More info about features and changes in WordPress 2.3 are available at Wordpress’ developer blog.

From what I can tell it looks very promising, hopefully upgrading will be as easy as well…

The Problem: Finding XSS and SQLI vulnerabilities

Cross-site scripting (XSS) and SQL injection (SQLI) vulnerabilities are present in many modern web applications, and are reported continuously on pages such as BugTraq. In the past, finding such vulnerabilities usually involved manual source code audits. Unfortunately, this manual vulnerability search is a very tiresome and error-prone task.

The Solution: Pixy

Pixy is a Java program that performs automatic scans of PHP 4 source code, aimed at the detection of XSS and SQL injection vulnerabilities. Pixy takes a PHP program as input, and creates a report that lists possible vulnerable points in the program, together with additional information for understanding the vulnerability.

For more information, take a look at the documentation page!

They also provide a list of other Open-Source Analysis Tools for PHP. Including PHP-Sat which is a Static Analysis Tool that performs several static checks on PHP source code and PHP string analyzer, a static program analyser that approximates the string output of a PHP program with a context-free grammar.

They say a picture can say more than a thousand words… Well the following certainly leaves you with a lot of thoughts spinning round in the back of your head!

Would you park here?

Here’s an easy way of doing some Googleing that lets you keep the search results on the left while exploring your hits.

PeekStr, search with a view. The results are still from Google, so they are the best ones.
But, now you can view any site from the results list without leaving the page.

Take PeekStr for a testdrive.