Hi,

Do you mean client (cross-domain information leakage, etc.) or server side vulnerabilities (like xss with HTML5 tags)?

 In my mind at lot of the server-side vulnerabilities are just permutations of what is already known.  In my humble opinion, it would be fairly easy to patch already existing software to search for these vulnerabilities.  It is the client side issues, like SQLI on the client, that seem to be relatively new ground.

I would be interested in contributing code. I'm looking forward to seeing what everybody else turns up. 

Sure,

Right now I am a student.  I am currently interviewing with several companies for internships as a developer.  I hope to get into the security field, but most of the companies in my area really want someone to work with them for at least several years before they are willing to consider them for a security position.    In five years I hope to have my Masters in CS and have a leg in on the pentesting field. 

-dropper

Hi,

I started reading EHnet about three years ago when I first started getting interested in infosec.  The article was on brute-forcing Microsoft RDP services.  Since then, I have consistently read the articles here as they come up as well as a lot of the advice on the forums.  I guess I just never joined because I have been too busy.  

I like to spend my extra time re-writing tools from scratch.  Recently, I have become interested in getting involved with the community.  I am fluent in PHP, Javascript, Python, and BASH.  I've been using a variety of Linux distributions since Ubuntu 6.06 came out.  I look forward to contributing to the community and hopefully learning some new stuff.

-dropper