tsuuhou

no need to say much, this cheatsheet is great – hopefully html5 will soon be a reality, but….

this is a nice little article we all could learn a lot from

dave has this nice article/howto on making your json ajax requests more secure (prior to jquery 1.3.3)

owasp just released a cheat sheet on xss prevention, this should be interesting to read.

a way to control cross-site requests in firefox, the extension let’s you decide which requests to allow and which to deny

- a little like noscript, which let’s you allow/disallow scripts from loading on a specific website…

an in-depth article on google gears cross-origin communication

if you need a webtesting framework besides what backtrack has to offer, samurai might be what you are looking for.