Karan Nayyar – WindowsTechs.com

Should OTP failed attempts be reset if user clicks on a resend?

Posted on February 10, 2023 by Karan Nayyar

I just wanted to understand the best practice which should be followed for OTP. Should OTP failed attempts be reset again if there is a new otp generated by end user by clicking on a resend button. If we reset the count again for each new … Continue reading Should OTP failed attempts be reset if user clicks on a resend?→

How different ldap implementations are generating random salt?

Posted on February 4, 2022 by Karan Nayyar

I am currently generating a salted SHA 256 passwords in the below format
$hash = "{SHA256}".base64_encode(hash(‘sha256’, $password . $salt) . $salt) .

Using the below libraries of Java classes to generate.
java.security.MessageD… Continue reading How different ldap implementations are generating random salt?→

How can I extract salt from encoded base64 Salted SHA 256 hashed password

Posted on February 3, 2022 by Karan Nayyar

I have a SSHA256 hashed password. Below is the plaintext and hashed password for it.
PlainText -p@ssw0rd
Encrypted -{SSHA256}LGkJJV6e7wPDKEr3BKSg0K0XDllewz9tvSNSaslDmIfPFmyuI5blUK/QsTXjvgFKLlMQm1jPC7K7z/KaD4zoHQ==

How can I extract salt f… Continue reading How can I extract salt from encoded base64 Salted SHA 256 hashed password→