Collaborate Disseminate
If a website emails a password in cleartext when you use the "forgot password" function, is there any possibility that the password is hashed? It does generate a different password if you reset it again, but it always gets emaile… Continue reading Password management of emailed cleartext passwords
The following hash is assumed to be a SHA1 hash (guessing from the sha1 prefix)
sha1$3308f$12d8b6b479558ff120b01c324537f30c73f31478
However I am unable to understand why are there two $ symbols in the hash. Do they signify salting? If yes … Continue reading SHA1 hash confusion
I need to read Chrome cookies in C++, but Chrome encrypts them all. All the other methods of decrypting the cookies I have found are now no longer working, anyone know the latest way to do this?
The problem with static software whitelisting is that in the real world, employees with versatile jobs need to run unexpected programs. Company sets up a whitelist to limit what programs can run – cool, security! But next thing you know so… Continue reading Could blockchain be useful for a protocol to verify content from a trusted publisher in the way I’m thinking of? [closed]
I was reading this article about MD5 hash collisions in which it clearly states that these two strings (differences marked with ^):
d131dd02c5e6eec4693d9a0698aff95c2fcab58712467eab4004583eb8fb7f8955ad340609f4b30283e488832571415a085125e8f7c… Continue reading Known strings to have the same MD5 hash, not colliding in real life?
Password length/complexity only mitigates a brute force attack, correct? In the event of a hash leak, since any algorithm is a fixed length, there could potentially be a pre-image* with a very short / not complex string? Salting notwithsta… Continue reading Does password length / complexity make any difference if hashes are leaked?
Is there a way to use JtR for Blockchain.info’s (v2) secondary password?
I already tried the blockchain2john.py file, and it does not ask for primary password (which I know already) so it is going to look for the one I know, instead of sec… Continue reading Using John the Ripper for Blockchain.info second password
Number of biometric samples required to form an exhaustive set of fingerprint hashes?
Slight variations in the sample produce different hash values of the sample data. The answer linked below indicates that enough different samples might p… Continue reading Number of biometric samples required to form an exhaustive set of fingerprint hashes?
If only the first h bits of a certain SHA256 hash H of a certain message M are known, and one had managed to successfully guess an input message M’ whereby SHA256( M’ ) yielded an H’ whose first h bits match the known h bits of H, is there… Continue reading Odds of two messages sharing the same hash prefix
If only the first h bits of a certain SHA256 hash H of a certain message M are known, and one had managed to successfully guess an input message M’ whereby SHA256( M’ ) yielded an H’ whose first h bits match the known h bits of H, is there… Continue reading Odds of two messages sharing the same hash prefix