ASPsh – A remote shell written in ASP.

Today I am releasing another old project called ASPsh. The goal of this project was to create an ASP page that can be used on a server to provide a “command line shell”-like experience when opening the page in a webbrowser…

Internet Exploiter 2 – bypassing DEP

In 2005 I released Internet Exploiter 2, which helped make heap spraying popular in browser exploits…

Microsoft Internet Explorer 6.0/7.0 NULL pointer crashes

Two crashes caused by NULL pointer dereferences have been discovered in MSIE 6.0/7.0. These issues do not affect MSIE 8.0…

Advances in heap spraying #1: when size matters.

http://skypher.com/SkyLined/heap_spray/small_heap_spray_generator.html

I’ve created a heap-spray generator…

Cross browser parallel asynchronous XMLHttpRequests with timeout.

AsyncXMLHttpRequest is an extension of XMLHttpRequest with the following improvements:

Uniform behavior on multiple different browsers (Apple Safari, Google Chrome, Microsoft Internet Explorer, Mozilla Firefox and Opera).
Event handlers are called with the AsyncXMLHttpRequest object to which they apply as the first argument…

Google Analytics for MediaWiki

I’ve create a userscript that can be used to add Google Analytics to MediaWiki. I’ve done this before by editing the PHP source code. The best thing about this userscript is that you do not need to install anything or modify source code; you can add it by modifying a few pages in the Wiki…

Tooltips for MediaWiki

I’ve create a userscript that can be used to create tooltips in MediaWiki. The best thing about it is that you do not need to install anything or modify source code; you can add it by modifying a few pages in the Wiki…

xmlHttpFingerprint – Remote OS fingerprinting through xmlHttpRequests

Dan Crowley recently released a paper (txt, pdf) describing how web servers installed on various Operating Systems (OS) respond differently to certain requests depending on which OS they are installed on…

JavaScript Shell 4.4beta

I’ve put a new version of JSSh, my interactive  JavaScript Shell, online at http://jssh.skypher.com. I’ve replace the error handlers and object visualization routines, which should improve your grasp of what’s going on in various browsers…

JavaScript stack trace

I’ve created an example script that outputs a stack dump in JavaScript. It shows all the functions that have been called, their arguments and the values of these arguments. I find it to be very useful while writing complex JavaScripts – I use it in asserts and error handlers to find out why things go wrong quickly…