What is a salted password?
So I have to write a program in which I have to salt come passwords but my proffesor notes define salt as a random number (set of bits) that the system associates with a user. I wrote a program in which a random number is created and appended to the password but I notice that everytime I run the program the salted password will be different so can somebody explain what they mean with random number?
Submitted November 18, 2017 at 04:57AM by blue_dust66
via reddit http://ift.tt/2zMjemQ
So I have to write a program in which I have to salt come passwords but my proffesor notes define salt as a random number (set of bits) that the system associates with a user. I wrote a program in which a random number is created and appended to the password but I notice that everytime I run the program the salted password will be different so can somebody explain what they mean with random number?
Submitted November 18, 2017 at 04:57AM by blue_dust66
via reddit http://ift.tt/2zMjemQ
reddit
What is a salted password? • r/security
So I have to write a program in which I have to salt come passwords but my proffesor notes define salt as a random number (set of...
U.S. Flagged Russian Firm Kaspersky as Potential Threat as Early as 2004
http://ift.tt/2mCOIq4
Submitted November 18, 2017 at 04:42AM by SuccessfulOperation
via reddit http://ift.tt/2mB0D7W
http://ift.tt/2mCOIq4
Submitted November 18, 2017 at 04:42AM by SuccessfulOperation
via reddit http://ift.tt/2mB0D7W
WSJ
U.S. Flagged Russian Firm Kaspersky as Potential Threat as Early as 2004
A Russian cybersecurity firm whose products current and former U.S. officials suspect Moscow has used as a tool for spying was flagged by U.S. military intelligence as a potential security threat as early as 2004.
Expert Construction Site Security In london
http://ift.tt/2zOzUcI
Submitted November 18, 2017 at 05:45AM by birthface51
via reddit http://ift.tt/2hBaa9I
http://ift.tt/2zOzUcI
Submitted November 18, 2017 at 05:45AM by birthface51
via reddit http://ift.tt/2hBaa9I
reddit
Expert Construction Site Security In london • r/security
0 points and 0 comments so far on reddit
Recipe for a Breach - Employee edition
http://ift.tt/2AXvA9t
Submitted November 18, 2017 at 11:08AM by nzwasp
via reddit http://ift.tt/2yUmb0Q
http://ift.tt/2AXvA9t
Submitted November 18, 2017 at 11:08AM by nzwasp
via reddit http://ift.tt/2yUmb0Q
Security Breach Online
Recipe for a Breach - Employee edition - Security Breach Online
A new study by security firm Preempt.com has found some startling security habits that could cause IT security breach’s to occur. The following is a list of things employees are most likely doing at your company that are compromising your security practices:…
Dell Secureworks released two open-source tools: #Flowsynth and #Dalton to easily create and test network packet captures against IDS engines such as Suricata and Snort
http://ift.tt/2zI6ai0
Submitted November 17, 2017 at 01:48PM by 2xyo
via reddit http://ift.tt/2zRHPnO
http://ift.tt/2zI6ai0
Submitted November 17, 2017 at 01:48PM by 2xyo
via reddit http://ift.tt/2zRHPnO
Secureworks
New Open-Source IDS Tools
The CTU research team publicly released packet capture tools for intrusion detection systems.
Skype faces fine after refusing to allow eavesdropping – Naked Security
http://ift.tt/2zO1iIe: nakedsecurity (Naked Security - Sophos)&
Submitted November 18, 2017 at 12:46PM by chalbersma
via reddit http://ift.tt/2Ab19PR
http://ift.tt/2zO1iIe: nakedsecurity (Naked Security - Sophos)&
Submitted November 18, 2017 at 12:46PM by chalbersma
via reddit http://ift.tt/2Ab19PR
Naked Security
Skype faces fine after refusing to allow eavesdropping
The trouble began when authorities came knocking, wanting to listen in on organised crime
Chaining Web Bugs to get RCE
http://ift.tt/2zSYszr
Submitted November 18, 2017 at 07:49PM by ZephrX112
via reddit http://ift.tt/2j48ENu
http://ift.tt/2zSYszr
Submitted November 18, 2017 at 07:49PM by ZephrX112
via reddit http://ift.tt/2j48ENu
Adventures In Information Security
Leading the Blind to Light! - A Chain to RCE
Chaining a few bugs to gain remote code execution, via hard work & recon.
Steve Harvey and his crowd's naive view on patching/phone updates
https://youtu.be/H0oF3fAiqI4
Submitted November 18, 2017 at 07:13PM by kizzzzurt
via reddit http://ift.tt/2AYqlGz
https://youtu.be/H0oF3fAiqI4
Submitted November 18, 2017 at 07:13PM by kizzzzurt
via reddit http://ift.tt/2AYqlGz
YouTube
Steve Harvey and his crowd's naive view on patching/phone updates
November 17th I was at my mom's place and had the misfortune of hearing this ignorance on the TV. Pretty good visualization as to why updates and patching ar...
What is the most secure option for storing passwords?
I searched and didn't see a recent discussion on this topic. My question is what would be the most secure option for storing passwords? I've been considering the following:Chrome password manager - from what I've seen, chrome password manager is considered secure now that passwords are no longer stored in plaintext. Also, Google has to be one of the most well secured cloud service that exists, certainly more so than Lastpass, correct?Lastpass - Passwords are sitting on a server somewhere, probably a less secure server than Google.Keepass - Seems the most ideal solution, cloud sync is optional but not required. Very secure application and protocol, open source so that code is combed for vulnerabilities. The ONLY thing stopping me from using Keepass is the reliance on third party Android apps required to access passwords from mobile. I "trust" Keepass to be safe, but I find it almost impossible to trust third party android apps to be safe. Even if they are open source, I doubt the code is really looked at by anyone so much as Keepass is. What's to stop an app from intercepting the copy / paste function and sending my login details somewhere? (malicious or non-malicious)Paper and Pen - removes hackers from the equation, relying on one's own physical security. I've seen some security experts recommend this as the only secure password manager.I'm interested in opinions, and what people are doing for their own passwords. I guess Keepass would work if I simply stop using my mobile phone to acccess sites where security is important. Some don't recommend doing anything sensitive on a wireless devices anyways. I'm probably overanalyzing things a bit here, but just wondering what others think as well.
Submitted November 19, 2017 at 12:52AM by Berardi1111
via reddit http://ift.tt/2AaouBl
I searched and didn't see a recent discussion on this topic. My question is what would be the most secure option for storing passwords? I've been considering the following:Chrome password manager - from what I've seen, chrome password manager is considered secure now that passwords are no longer stored in plaintext. Also, Google has to be one of the most well secured cloud service that exists, certainly more so than Lastpass, correct?Lastpass - Passwords are sitting on a server somewhere, probably a less secure server than Google.Keepass - Seems the most ideal solution, cloud sync is optional but not required. Very secure application and protocol, open source so that code is combed for vulnerabilities. The ONLY thing stopping me from using Keepass is the reliance on third party Android apps required to access passwords from mobile. I "trust" Keepass to be safe, but I find it almost impossible to trust third party android apps to be safe. Even if they are open source, I doubt the code is really looked at by anyone so much as Keepass is. What's to stop an app from intercepting the copy / paste function and sending my login details somewhere? (malicious or non-malicious)Paper and Pen - removes hackers from the equation, relying on one's own physical security. I've seen some security experts recommend this as the only secure password manager.I'm interested in opinions, and what people are doing for their own passwords. I guess Keepass would work if I simply stop using my mobile phone to acccess sites where security is important. Some don't recommend doing anything sensitive on a wireless devices anyways. I'm probably overanalyzing things a bit here, but just wondering what others think as well.
Submitted November 19, 2017 at 12:52AM by Berardi1111
via reddit http://ift.tt/2AaouBl
reddit
What is the most secure option for storing passwords? • r/security
I searched and didn't see a recent discussion on this topic. My question is what would be the most secure option for storing passwords? I've been...
Security Kit for parents
http://ift.tt/2AZ78nW
Submitted November 19, 2017 at 01:44AM by nitrobass24
via reddit http://ift.tt/2zeW8pt
http://ift.tt/2AZ78nW
Submitted November 19, 2017 at 01:44AM by nitrobass24
via reddit http://ift.tt/2zeW8pt
reddit
Security Kit for parents • r/homelab
My parents are getting older and the other day I went over for dinner where my dad told me that Microsoft called to tell him he had a virus. They...
Scammers Steal S$80K from Woman Using Fake Police Website
http://ift.tt/2A8yTxg
Submitted November 19, 2017 at 02:55AM by aafrn
via reddit http://ift.tt/2j5SMKi
http://ift.tt/2A8yTxg
Submitted November 19, 2017 at 02:55AM by aafrn
via reddit http://ift.tt/2j5SMKi
The State of Security
Scammers Steal S$80K from Woman Using Fake Police Website
Scammers stole S$80,000 from a woman by tricking her into visiting a fake phishing website for the Singapore Police Force (SPF).
Really Quick Question
Hi, sorry I didn't know where to put thisIf I were to download malware accidentally, would it immediately infect my computer or would I have to run it?For example, if I downloaded a rattrojan.exe, scanned it using virustotal, realised it was malware and then deleted it, would my computer be infected?Thanks
Submitted November 19, 2017 at 03:37AM by Sovereigner
via reddit http://ift.tt/2AUEdjY
Hi, sorry I didn't know where to put thisIf I were to download malware accidentally, would it immediately infect my computer or would I have to run it?For example, if I downloaded a rattrojan.exe, scanned it using virustotal, realised it was malware and then deleted it, would my computer be infected?Thanks
Submitted November 19, 2017 at 03:37AM by Sovereigner
via reddit http://ift.tt/2AUEdjY
reddit
Really Quick Question • r/security
Hi, sorry I didn't know where to put this If I were to download malware accidentally, would it immediately infect my computer or would I have to...
Online predators’ hunting for kids on Snapchat
https://www.youtube.com/watch?v=fg-LhgZLB8M
Submitted November 19, 2017 at 08:00AM by FontenotA
via reddit http://ift.tt/2yZ3aKV
https://www.youtube.com/watch?v=fg-LhgZLB8M
Submitted November 19, 2017 at 08:00AM by FontenotA
via reddit http://ift.tt/2yZ3aKV
YouTube
The Dangers Of Snapchat (Child Predator Experiment)
Download mSpy here: https://www.mspy.com/?info
Thanks to mSpy for partnering with me on this video.
Snapchat: @cobypersin
Produced by http://pranksters.com
Follow me on social media:
Facebook ►https://www.facebook.com/coby.persin
Twitter ► https://twit…
Thanks to mSpy for partnering with me on this video.
Snapchat: @cobypersin
Produced by http://pranksters.com
Follow me on social media:
Facebook ►https://www.facebook.com/coby.persin
Twitter ► https://twit…
Entering "Test" and "123456" on the Equifax Breach Check page reports that "Your information was impacted"
http://ift.tt/2wcZjr3
Submitted November 19, 2017 at 08:16AM by Nateispineapple
via reddit http://ift.tt/2jCj233
http://ift.tt/2wcZjr3
Submitted November 19, 2017 at 08:16AM by Nateispineapple
via reddit http://ift.tt/2jCj233
BIG-IP virtual server vulnerable to an Adaptive Chosen Ciphertext attack (Critical)
http://ift.tt/2AY2gQf
Submitted November 19, 2017 at 03:18PM by meaerial
via reddit http://ift.tt/2jDZ9bQ
http://ift.tt/2AY2gQf
Submitted November 19, 2017 at 03:18PM by meaerial
via reddit http://ift.tt/2jDZ9bQ
reddit
BIG-IP virtual server vulnerable to an Adaptive Chosen... • r/netsec
4 points and 0 comments so far on reddit
Expose Hackers by Complete Cyber Security Course
http://ift.tt/2ASpjvL
Submitted November 19, 2017 at 08:37PM by ajexon
via reddit http://ift.tt/2zQokxW
http://ift.tt/2ASpjvL
Submitted November 19, 2017 at 08:37PM by ajexon
via reddit http://ift.tt/2zQokxW
Gain From here
Expose Hackers by Complete Cyber Security Course
Expose Hackers by Complete Cyber Security Course - If you are interested in becoming an expert in privacy, security, and anonymity and want to privacy and anonymity online from hackers, corporations and governments then this is the best course to learn. In…
yotter - bash noscript that performs recon and then uses dirb to discover directories that might lead to information leakage
http://ift.tt/2A1VRWF
Submitted November 19, 2017 at 09:07PM by b3rito
via reddit http://ift.tt/2AYylXT
http://ift.tt/2A1VRWF
Submitted November 19, 2017 at 09:07PM by b3rito
via reddit http://ift.tt/2AYylXT
GitHub
b3rito/yotter
yotter - bash noscript that performs recon and then uses dirb to discover directories that might lead to information leakage
Must-have Security Add-ons for Browsers – Medium
http://ift.tt/2j8dxoV
Submitted November 19, 2017 at 10:11PM by maninas
via reddit http://ift.tt/2zhClpv
http://ift.tt/2j8dxoV
Submitted November 19, 2017 at 10:11PM by maninas
via reddit http://ift.tt/2zhClpv
Medium
Must-have Security Add-ons for Browsers
Or how to surf the Web safe(r) from trackers, scammers and more.
Ahem, it's called Role-Based Access Control | Symas Corporation
http://ift.tt/2Aed3bO
Submitted November 19, 2017 at 09:50PM by shawnmckinney
via reddit http://ift.tt/2zOQcTs
http://ift.tt/2Aed3bO
Submitted November 19, 2017 at 09:50PM by shawnmckinney
via reddit http://ift.tt/2zOQcTs
Symas Corporation
Ahem, it's called Role-Based Access Control | Symas Corporation
Whitepages Question
Hey, I don’t know if this is where to ask this, but I have a security question. Can I tell if someone looked up my name on the Whitepages website or a similar one? Thanks
Submitted November 19, 2017 at 11:58PM by DrownMeInBlood
via reddit http://ift.tt/2ATWEFK
Hey, I don’t know if this is where to ask this, but I have a security question. Can I tell if someone looked up my name on the Whitepages website or a similar one? Thanks
Submitted November 19, 2017 at 11:58PM by DrownMeInBlood
via reddit http://ift.tt/2ATWEFK
reddit
Whitepages Question • r/security
Hey, I don’t know if this is where to ask this, but I have a security question. Can I tell if someone looked up my name on the Whitepages website...
Presentation about the insane amount of work that went into cracking satellite and cable TV encryption (Crosspost from /r/ArtisanVideos)
https://www.youtube.com/watch?v=lhbSD1Jba0Q
Submitted November 20, 2017 at 01:24AM by MonstarGaming
via reddit http://ift.tt/2zS8QJZ
https://www.youtube.com/watch?v=lhbSD1Jba0Q
Submitted November 20, 2017 at 01:24AM by MonstarGaming
via reddit http://ift.tt/2zS8QJZ
YouTube
How Do I Crack Satellite and Cable Pay TV? (33c3)
https://media.ccc.de/v/33c3-8127-how_do_i_crack_satellite_and_cable_pay_tv
Follow the steps taken to crack a conditional access and scrambling system used in millions of TV set-top-boxes across North America. From circuit board to chemical decapsulation…
Follow the steps taken to crack a conditional access and scrambling system used in millions of TV set-top-boxes across North America. From circuit board to chemical decapsulation…