A quick way to start using the new symbol for the Indian Rupee in websites and blogs by embedding it in a CSS file using @font-face.

This article talks about how Javascript with greasemonkey, firebug, and google spreadsheets can be used to screen scrape data from websites using scripts in the browser.

A collection of solutions that were developed during the RSA sMashUp Challenge. Solutions include SecurID Friend Connect Gadget, ATMOS encryption, SecudID for site to user authentication, etc.

This hack demonstrates how phishing can be achieved effectively on Google Wave by embedding a gadget on any public Wave. All visitors on that wave will be automatically redirected to a phished login page.

The hack exploits XSS vulnerabilities in Opensocial applications on orkut to redirect users to phished login pages. Since these applications are also on the profile page and the redirection happens without clicking any link, it proves to be more effective.

YAHOO maps used to append the current location as fragment identifiers. This information is also used to display information on the webpage.
Inserting appropriatly encoded script tags in these document fragment allowed execution of javascript in the context of the page, enabling us to steal cookies, etc.

In Duels.com, an MMORPG, levelling up character was a hard task. However, automation scripts can be written to rapidly level the character up and reach the high scores.