I've got a few interesting links that I thought I'd share.
Next is OpenPacket.org, which I'll probably do a post about again sometime soon. For now a brief intro though. This is a great concept... a place where people can upload their packet captures, so that others can download and view them. This can be used by everyone... students, researchers and enthusiasts. I think first and foremost, it's a great learning tool, however if a certain level of quality is maintained, everyone will benefit from this project.
The last, and probably most interesting, is a Google XSS that Billy Rios blogged about. The XSS takes advantage of the fact that certain browsers (IE was used, but it was mentioned that others can be affected by this) don't always use the content-type suggested by the server. In many cases the browser will attempt to determine the content-type on it's own. This means that enough HTML in a response with content-type: text/plain will be rendered by IE (and in some cases other browsers) as HTML.
That's all for now...