Collaborate Disseminate
I have a question about checking hashes and what is the best utility for it.
Seems like you can use some external programs like md5sum or sha1sum. But can’t you just use (on Windows) certutil -hashfile? What are the advantages of one over … Continue reading Creating and Comparing Hashing Windows certutil and external hash libraries
Is it possible to have a file with the same SHA1 and content? For example:
File context: x
SHA1 of the file: x
Continue reading Is it possible to have a file with the same SHA1 and content?
I have the following from Google’s public certs for verifying JWT ID
—–BEGIN CERTIFICATE—–
MIIDHDCCAgSgAwIBAgIIW4K0b18ff70wDQYJKoZIhvcNAQEFBQAwMTEvMC0GA1UE
AxMmc2VjdXJldG9rZW4uc3lzdGVtLmdzZXJ2aWNlYWNjb3VudC5jb20wHhcNMjEx
MDIzMDkyMDI1… Continue reading X.509 certificate’s signature algorithm vs. algorithm used in key derived from it to verify a signature
While I’m pen testing, I came across these values mapping to a store ID. These values are gathered across three different accounts.
0015400000jpjcEAAQ
0015400000jrjH7AAI
0015400000jtDS9AAM
It’s not a hash or base64. It doesn’t look encrypt… Continue reading Help with identifying patterns or cryptographic implement [duplicate]
While I’m pen testing, I came across these values mapping to a store ID. These values are gathered across three different accounts.
0015400000jpjcEAAQ
0015400000jrjH7AAI
0015400000jtDS9AAM
It’s not a hash or base64. It doesn’t look encryp… Continue reading Help with identifying patterns or cryptographic implement [duplicate]
In the Bitwarden Security Whitepaper Page 9-10 (User Login | User Authentication | Access to User Vault Data section), it’s written that the master password is encrypted locally and then stored on the server and the encryption key is hashe… Continue reading How does Bitwarden Authenticate and decrypt the vault [closed]
I am trying to change the password hashing scheme for LDAP. Hypothetically, let’s assume it’s pw-argon.so
I don’t have slapd.conf I have the slapd.d directory where I can make changes dynamically to the daemon.
What changes do I have to m… Continue reading How to change the password hashing scheme in LDAP using an external library with slapd.d config
In cryptography, generally we have two ways of handling sensitive information.
We can use one-way encryption such as hashing. This is useful when we never need to retrieve it again. In this case, we can know if we found the right password,… Continue reading Encryption Algorithm With Separate One-Way (Hashing) And Two-Way (Decryption) Keys
We regularly use 10000 iterations of SHA256 for hashing passwords.
If we want to have similar security, how many rounds/work factor should we use when hashing passwords with bcrypt?
Continue reading How many rounds of Bcrypt to use for security equivalent to SHA256?
Is there a way to encrypt/salt GPS coordinates irreversibly without the private key/salt, while conserving distance metrics?
For example, map 32.16,105.47 to some other values, but be able to calculate the distance between other mapped coo… Continue reading Encrypting/Salting GPS Coordinates [migrated]