MonkeyFist is a dynamic request forgery attack tool released at Black Hat USA 09. It allows you to easily pull of dynamic request forgeries using different scenarios such as redirects, pages, POST based attacks, and even fixation type attacks.
Combining FastCGI, suEXEC and an APC opcode cache enables a secure shared PHP web host that executes PHP scripts fast. This post outlines how to set up FastCGI with mod_fastcgi, suEXEC and an opcode cache.