Collaborate Disseminate
After reading this post, I understand that a password’s entropy depends on the assumptions made when it is to be attacked (e.g. if it is generated randomly from a list of 2048 words, etc.).
Let’s suppose an attacker managed to enter some u… Continue reading Is there any good way of calculating a brain-generated password’s entropy?
I want to decrypt a text file (which happens to be an Electrum wallet file) with gpg but I get the error gpg: no valid OpenPGP data found.
I have done a quick test by encrypting a small text file and the decrypting it. gpg can do this, but… Continue reading How can I decrypt a text file with gpg?
Probing with nmap returns BlackICE on a couple of ports however it seems to be a really old tool according to these manuals.
Starting Nmap 7.80 ( https://nmap.org ) at 2022-10-16 20:27 EDT
Nmap scan report for _gateway (192.168.0.1)
Host i… Continue reading How to confirm what service is running on a port identified by nmap?
Recently started turning my phone on airplane mode and it got me curious. Airplane mode is supposed to turn off all radio signals. So, I won’t be able to receive or send messages (emails aswell, and so on). Once airplane mode is turned off… Continue reading Can messages be intercepted when in airplane mode?
This is concerning an android device (not sure if that information helps, since Apple works differently).
When logging into a wifi network, there will be sections that ask for different information. One is to choose a certificate. The opti… Continue reading How does the option to “use system certificates” for a wifi login vary from choosing a specific certificate?
This is concerning an android device (not sure if that information helps, since Apple works differently).
When logging into a wifi network, there will be sections that ask for different information. One is to choose a certificate. The opti… Continue reading How does the option to “use system certificates” for a wifi login vary from choosing a specific certificate?
When an app is not end-to-end encrypted then the app should be open to TLS interception (MITM attacks) from the local network. But for TLS interception to be performed, does that have to be automatically done by the system at the time the … Continue reading How to tell when your Android app is being TLS-Intercepted [closed]
In TLS 1.2 the messages sent by client are encrypted under ClientWrite, and the messages send by server are encrypted under ServerWrite.
What about TLS 1.3? I don’t see any Pre-Master-Secret being generated so what’s the encryption and the… Continue reading What Keys Are Used in TLS 1.3?
Reading: https://mulloverthing.com/how-does-ssl-protect-against-replay-attack/ it says:
The SSL/TLS channel itself is protected against replay attacks using
the MAC (Message Authentication Code), computed using the MAC secret
and the sequ… Continue reading How SSL Protects against Replay Attacks?
I know that in TLS 1.2 the client generates PMS (Pre Master Secret) which is used to get master_secret and Key_Block.
Where Key_Block combined with clinet_random and server_random gives us: clientMAC, serverMAC, clientWrite and serverWrite… Continue reading Which Keys TLS uses? [duplicate]