Twitter | Pretraživanje | |
Royce Williams
Just doing my undue diligence. ISP vet, security demi-boffin, password hashing enthusiast (Team ), AK license plate taxonomist(!) He.❤️:⚛👨‍👩‍👧🛡🙊🗽😼💻✏🎥🍦🌶🍫
10.206
Tweetovi
3.399
Pratim
1.481
Osobe koje vas prate
Tweetovi
Royce Williams proslijedio/la je tweet
Kyle Puckhaber 5 h
Check out the latest episode of the Podcast with password cracker extraordinaire . We talk stroller wi-fi pentesting, DEFCON's Crack Me if You Can with and tips on creating easy to remember, hard to crack passwords.
Reply Retweet Označi sa "sviđa mi se"
Royce Williams 23 h
Odgovor korisniku/ci @roblef
I know, right? The more I think about it, the better it gets. So much subtlety, so much attention to detail.
Reply Retweet Označi sa "sviđa mi se"
Royce Williams proslijedio/la je tweet
Jon Oberheide 4. velj
Reply Retweet Označi sa "sviđa mi se"
Royce Williams proslijedio/la je tweet
Daniel Bilar 3. velj
The-Eye: online archivists launch OA directory of 5200 scientific studies on from 1968-2020 that anyone can download w/o encountering a paywall ["illegal, but it's also a moral imperative"]
Reply Retweet Označi sa "sviđa mi se"
Royce Williams proslijedio/la je tweet
Nic Losby 3. velj
Teamviewer has been storing user passwords encrypted with AES, not hashed, in the registry accessible to low privilege users on the machine. This works for versions dating back from at least as far back as 2012 to the latest version.
Reply Retweet Označi sa "sviđa mi se"
Royce Williams 3. velj
Odgovor korisniku/ci @AaronToponce @jmgosney
It took me a while to grok why - it'll likely take you less time. :) It totally makes sense in retrospect.
Reply Retweet Označi sa "sviđa mi se"
Royce Williams 3. velj
Odgovor korisniku/ci @AaronToponce @jmgosney
Nice find, Aaron! (Side note for those following along at home: if you pre-hash bcrypt to address its 72-char max, do *not* use an unsalted hash - attacker can ID pre-cracked/well-known hashes - & also speed up attack on remaining hashes. h/t for 1st noting this)
Reply Retweet Označi sa "sviđa mi se"
Royce Williams proslijedio/la je tweet
Aaron (Okuyo) Toponce 🕉️ 3. velj
Reddit hashes passwords with bcrypt, but does not pre-hash. This means Reddit passwords longer than 72 characters are truncated. As a result, only passphrases using the EFF short #2 list are problematic:
Reply Retweet Označi sa "sviđa mi se"
Royce Williams 3. velj
Odgovor korisniku/ci @TychoTithonus
(Appears to have been transient - back up and working at this writing)
Reply Retweet Označi sa "sviđa mi se"
Royce Williams 3. velj
Your data that was previously publicly available at ... is now prompting for JHU credentials. Is this by design, or something transient?
Reply Retweet Označi sa "sviđa mi se"
Royce Williams 3. velj
Reply Retweet Označi sa "sviđa mi se"
Royce Williams 3. velj
Odgovor korisniku/ci @TychoTithonus
Observe the responses to the original tweet, and see what you can detect:
Reply Retweet Označi sa "sviđa mi se"
Royce Williams 3. velj
PSA: Many accounts reacting to popular tweets are bots or trolls, either seeking engagement karma or pushing agendas. Here you can see how many of the accounts responding to the Jeep Bill Murray ad are ones I'd either already blocked (gray bar), or ID's by BotSentinel (red text)
Reply Retweet Označi sa "sviđa mi se"
Royce Williams proslijedio/la je tweet
OLAY 29. sij
Reply Retweet Označi sa "sviđa mi se"
Royce Williams 3. velj
Odgovor korisniku/ci @sojucifer
on my way
Reply Retweet Označi sa "sviđa mi se"
Royce Williams 2. velj
, have you seen 's detools? "Binary delta encoding in Python 3 and C, based on , with the following differences:"
Reply Retweet Označi sa "sviđa mi se"
Royce Williams 2. velj
When trying to explain how security can be improved by reducing complexity, I think about "'s Lazer" (by ) a lot: "Any sufficiently advanced software is indistinguishable from malice."
Reply Retweet Označi sa "sviđa mi se"
Royce Williams 2. velj
Setting up a VPN connection through McMurdo: $9/month The look on the SOC team's faces when they see Antarctica in the location fields in the SIEM: priceless
Reply Retweet Označi sa "sviđa mi se"
Royce Williams proslijedio/la je tweet
Matt Parker 2. velj
A lot of tweets about miss that 02 February 2020 is a palindrome in USA, UK and ISO formats; it is a palindrome day of the year (33) and there are a palindrome of days left in the year (333). This will never happen again. More details here:
Reply Retweet Označi sa "sviđa mi se"
Royce Williams 1. velj
Odgovor korisniku/ci @m8urnett
That is indeed groovy.
Reply Retweet Označi sa "sviđa mi se"