2 month ago
Rod Begbie : Ophcrack - Windows password cracker. Has an interesting open-source business model: The cracker is GPL, and there are free (but limited) Rainbow tables. To get the full tables, you need to pay $99. #
# copy
14 month ago
philgyford : Password Composer - generate unique passwords for web sites - Sounds very nifty. Haven't tried it yet.
# copy
20 month ago
wearehugh : Schneier on Security: Choosing Secure Passwords - give up now. technology will win this one.
Rod Begbie : Schneier on Security: Choosing Secure Passwords - Choose better passwords through understanding how brute-crackers work these days. #
Simon Willison : Choosing Secure Passwords - Choosing Secure Passwords. Bruce Schneier describes the state of the art in password cracking software.
# copy
21 month ago
wearehugh : Schneier on Security: Real-World Passwords
Simon Willison : Real-World Passwords - Random passwords phished from MySpace are surprisingly decent.
Rod Begbie : Schneier on Security: Real-World Passwords - Bruce Schneier breaks down the password data gathered by a MySpace phishing attack. Notable fact: When the site insists upon including letters and numbers in the password, folks just append "1" to their usual password. (And, in my experience, when forc [via] #
# copy
31 month ago
kayodeok : Gates: End to passwords in sight - For years, Microsoft Chairman Bill Gates has had his sights set on the password as the weak link in the computer security chain. Now, with Windows Vista, Gates feels he finally has the right weapons to supplant the password as a means of verifying who is
# copy
32 month ago
kayodeok : Graphical passwords - We discuss graphical passwords, which consist of some actions that the user performs on an image [...] We present a few graphical password schemes that offer resistance to shoulder surfing
# copy
32 month ago
kayodeok : Boot up Windows before you even log in - You could press the button to power up your system and go get a cup of coffee. Five minutes later, you come to your desk and type in your password. BAM! Instantly dropped to the desktop! Your programs are already running and all systems are a go!
# copy
33 month ago
kayodeok : Identity Theft is real, and what you’re about to read will astound you. - You NEVER share your Social Security number, you NEVER share your passwords, and you NEVER share your bank account information. And if you really need to share this data, you DON'T DO IT IN PUBLIC! Identity theft is real, and any one of these pieces of da
# copy
34 month ago
kayodeok : I Forgot My Administrator Password! - If that’s your only problem, then you probably have nothing to worry about. As long as you have your Windows XP CD, you can get back into your system using a simple but effective method made possible by a little known access hole in Windows XP
# copy
36 month ago
kayodeok : PINs: secure passwords manager (can install to a USB Key) - PINs is a free feature-rich Windows program for safe and comfortable storing of any secure information like passwords, accounts, PINs etc. PINs uses a secure 448 bit Blowfish algorithm to ensure the data are not crackable. The password used for securing a
# copy
37 month ago
kayodeok : Wired News: Never Forget Another Password - Just1Key is a web service that allows a user to safely store dozens of passwords on a central server and use a single, secure pass phrase to unlock them from anywhere in the world
# copy
37 month ago
kayodeok : Just1Key - Your One Key to the Net - Not only does it remember all of your usernames, passwords, websites, and more, Just1Key does so from practically anywhere. Work, home, or travelling; Windows, Mac, or Unix; Handheld PDA's or mobile phones with SSL web-browsers
jimray : Just1Key - Home - Store all your passwords in one place, encrypted with a 2,048 bit key
# copy
38 month ago
kayodeok : How to Bypass BIOS Passwords
Matthew M. Boedicker : how to bypass BIOS passwords
# copy
38 month ago
kayodeok : Bank to require more than passwords - With SiteKey, bank customers pick three challenge questions - things only the customer would know, such as the year and model of the customer's first car -- and provide them with the traditional password to log on
# copy39 month ago
kayodeok : The Battle against phishing: Dynamic Security Skins - Dynamic Security Skins allows a remote web server to prove its identity in a way that is easy for a human user to verify and hard for an attacker to spoof.
# copy
40 month ago
kayodeok : Microsoft Envisions a Grand Digital-ID Plan - Microsoft has a grand plan for digital-identity management. And over the next few months, the company will begin to deliver Microsoft implementations of some of the piece parts of that plan
# copy
40 month ago
kayodeok : Microsoft Expert Lays Down 7 Laws of ID Management - The Seven Laws of Identity
# copy
41 month ago
kayodeok : Auditor LiveCD - In addition to the approx. 300 tools, the Auditor security collection contains further background information regarding the standard configuration and passwords, as well as word lists from many different areas and languages with approx. 64 million entries
# copy
41 month ago
deusx : Password Composer greasemonkey script - Ahh, here's the greasemonkey script for passwords
# copy
41 month ago
kayodeok : Password generator - a little Javascript program that will concatenate two fields and MD5 them. The idea is that you choose one master password to secure all your others, and then generate passwords for each site/server by putting a completely obvious name for that resource i
deusx : Password generator - Hashes password with site name / URL, allows single password entry yet unique string per site. What, no Greasemonkey script?
Philippe Janvier : Password generator - "...a little Javascript program that will concatenate two fields and MD5 them". [via] #
# copy
42 month ago
kayodeok : CacheDump: recovering cached password hashes on Windows - This whitepaper explains the technical issues underneath Windows password cache entries, which are undocumented by Microsoft
# copy
43 month ago
kayodeok : Cracking Cached Domain/Active Directory Passwords on Windows XP/2000/2003 - This tutorial will cover the basics of collecting the cached password hashes and setting up a Debian based Linux system with a patched version of "John the Ripper" to crack these hashes
# copy
44 month ago
jimray : Creating (and remembering) crazy hard passwords - "So the combination is one, two, three, four, five? That's the stupidest combination I've ever heard! That's the kind of combination an idiot would put on his luggage!"
# copy
50 month ago
deusx : WebPwdHash - "PwdHash is an Internet Explorer plug-in that transparently converts a user's password into a domain-specific password."
kayodeok : Web Password Hashing - PwdHash is an browser extension that transparently converts a user's password into a domain-specific password. The user can activate this hashing by choosing passwords that start with a special prefix (@@) or by pressing a special password key (F2)
# copy
