Collaborate Disseminate
I’m in an interesting predicament. I have an encrypted 7z file that I made myself. The password for the file is a 60 character generated password that I saved to my password manager. I made sure to test the password before putting anything… Continue reading Encrypted 7z file password not working
I have few WPA handshakes captured. I want to crack the passwords using a brute force attack with Hashcat. How can I find the guess mask (wifi password length) for this attack? Is there any way to find the wifi password length from hash fi… Continue reading Get length of a wifi password using wpa handshake
For a web service, I am considering generating random 25-49 recovery codes as a kind of pass that can be stored in a pass manager (no usernames).
Instead of pass(word) hashing on the server, I consider hashing the pass on the client with p… Continue reading Is pass -> [via pbkdf2] -> seed -> ECDSA key pair better than pass(word) hashing?
Password security remains highly relevant even as cybersecurity strategies move toward a passwordless future. Of the 100 Black Hat USA 2023 attendees Delinea polled, 54% said passwordless is a viable concept, while 79% agreed that passwords are evolvin… Continue reading Passwordless is more than a buzzword among cybersecurity pros
Discover strategies for securing data on your personal Mac for work tasks. Learn how to protect your device against potential threats. Continue reading 5 Tips for Securing Data When Using a Personal Mac for Work
As organizations try to fortify their defenses against an increasingly sophisticated threat landscape, traditional password-based systems reveal their limitations. This is where passwordless authentication steps in – a concept that simplifies access wi… Continue reading Building a secure future without traditional passwords
Do passkeys offer more security for intranet websites compared to passwords?
I know there are additional methods like 2FA to get more security, but I just want to look at a optional replacement for simple password-based authentication over… Continue reading Passkeys versus passwords for intranet websites
I’m looking for technical details on how Windows, Linux, and macOS all store the SSIDs and passwords for every wireless network you’ve ever connected to. I’ve tried searching for this, but my Google-fu is not so strong on this one. All I… Continue reading Where are wifi passwords stored? [duplicate]
Recently, I discovered that MFA apps just calculate that codes based on a private key and the time clock, so it’s easy to use tools like gnu pass to replace those apps with your computer.
But what are the securities drawbacks when we do th… Continue reading Is using the computer for MFA safe?
Earlier today, I was using gpg to generate keys for work. While doing so, I noticed:
We need to generate a lot of random bytes. It is a good idea to
perform some other action (type on the keyboard, move the mouse,
utilize the disks) durin… Continue reading How does user activity affect entropy generation process in GnuPG?