Collaborate Disseminate
If I started with “password”, then change it to “password2”, “password3” etc, is that easier to crack the hashes of the set of passwords than if I used only the original password?
Does having the output of hash(password1), hash(password2),… Continue reading Cracking hashes of trivially modified passwords
I need to decrypt a password. I have the ciphertext for this
however, I have many plain text and encrypted equivalents.
This device can only be given passwords with a maximum of 8 characters from the 0123456789abcdef alphabet, and it can b… Continue reading About password ciphertext [duplicate]
I was wondering something about a day ago when I remembered that Apple stores notes in a database (so you can recover them or view them on icloud.com) – What if Apple stores your notes in plaintext?
I’ve heard you shouldn’t store passwords… Continue reading Is it bad practice to store passwords in iCloud notes?
GoDaddy, the popular internet domain registrar and web hosting company, has suffered a data breach that affected over a million of their Managed WordPress customers. What happened? “On November 17, 2021, we discovered unauthorized third-party acc… Continue reading GoDaddy breach: SSL keys, sFTP, database passwords of WordPress customers exposed
GoDaddy found crooks in its network, and kicked them out – but not before they’d been in there for six weeks. Continue reading GoDaddy admits to password breach: check your Managed WordPress site!
Only three percent of consumers implemented a credit freeze after receiving a data breach notice, 11 percent enrolled in credit/data monitoring, and only 22 percent changed all of their account passwords, a recent survey by DIG.Works on behalf of the I… Continue reading What’s stopping consumers from acting on a data breach notice?
Many services still restrict the special characters allowed in passwords and similar with the argument that it prevents injection attacks. Now, there are many good arguments against this such as avoiding unnecessary obstructions, character… Continue reading Is character restriction ever a safe mechanism against code injection / better than input sanitisation?
I have locked myself out of my Win 10 Microsoft account by forgetting my password and need to get back into it. I have extracted the hash for the account.
I’ve been researching wordlists and hash cracking and think I’ve got a hang of the a… Continue reading Creating Wordlist from specific characters and numbers using Mentalist or similar program
How can a user update the password database without having read or write permissions to the password database file itself? And why would that be dangerous?
It’s a question in my OS class. We are learning about security, authentication, sal… Continue reading How can a user update the password database without having read or write permissions to the password database file itself? [closed]
Can a hacker locally bypass UEFI password without changing or resetting it ?
Continue reading Can a hacker bypass UEFI password without changing or restting it?