Chances are you already have heard of this since it's all over RandomBase already but in case you didn't: we have started our own free subdomain service, named va.my. The fun thing is, it's easy to remember and it is just like any second level tld, examples are .co.uk and .co.jp. The difference with the other TLD's is: ours is completely free. So, RandomBase > ICANN.

Now go register your free subdomain to prevent whining about someone else taking yours before you could.

RandomBase.com just received a small upgrade to the comment system for news messages, you can also include your website address now, free backlink!

All packed up & ready for your enjoyment: PHP Source Auditor 4! So, if you have (most likely) never heard of it, this is the deal:

PSA4 is a Perl script that connects to your local webhost and scans all files (recursively) in the www root, for vulnerabilities. It scans for:

1. Remote File Inclusion
2. Remote Command Execution
3. Remote Code Execution
4. Cross Site Scripting
5. SQL injection (very weak scanning on this though)
6. Local File Inclusion (results sometimes get buggy)

The difference with other scanners is, it actually can tell whether the script is vulnerable or not since it exploits it on the fly by entering weird data into the variables. You can download it right here and (for now) nowhere else :).

The old music search page was kind of annoying, after entering a search term the next job was to actually find a working link. Our new page uses a huge database of known links that work. Because of the size of the new database, querying it can take a few seconds, but once queried it'll deliver you a nice set of working links!

The programming stage has finished only a few minutes ago, r0bin is now working on the design. Expect a release in a few hours!

edit: released!

Lots of PHP source codes are encrypted, for a number of reasons. A method to do this is to gzdeflate(<code>) in PHP, so it gets encrypted with the DEFLATE algorithm. Sometimes other methods of encryption are used, think of base64. I have written a tool (originally for personal use but I figured more people could use it) that decrypts this code automaticly online, instead of having to write a PHP script each time you want to decrypt some piece of code. Check it out here.

Some features have been added to the RandomBase homepage, such as the hover effect for the 'projects' buttons. I'm also considering permanently adding a live users online feature, that is automaticly updated, which gives a nice dynamic feel. To test this out, just go to randombase.com, press F5 or "refresh" in your browser to make sure the cached Javascript files are also updated. Now enter this in your URL window:

javascript:liveUsersOnline()

And some text will be added next to the menu, just a fun toy. The current refresh rate is five seconds. An other change is the changed urls for some links, like the affiliate buttons. It is no longer just the plain url but:

track.php?continue=<url>

Don't worry - we're not sending personal data; it's just a method for us to track the amount of clicks sent to a link, to get an idea about the popularity. And a last not-so-major-change is the news archive url, no longer ?histpage=1337 but /history/page/1337, just for SEO purposes. I'd probally need to change the track url too for SEO purposes then.

Now we have our own server, time to put some good usage to it too: there is now an IRC server configured on randombase, for a number of reasons. We invite everyone to open a channel or join #randombase or #rootshell for more security orientated conversations.

randombase.com
Ports: 6667, 6697 (SSH)

Or a direct link for clients that support it. All credit for installing/configuring goes to Preddy.

New server, new look. RandomBase.com will receive a totally new design very soon. The old red will be replaced by a more stylish gray, you'll see it soon enough!