public marks

PUBLIC MARKS from srcmax with tag password

2018

GhostProject

The total amount of credentials (usernames/clear text password pairs) is 1,400,553,869..

Validating Leaked Passwords with k-Anonymity

Today, v2 of Pwned Passwords was released as part of the Have I Been Pwned service offered by Troy Hunt. Containing over half a billion real world leaked passwords, this database provides a vital tool for correcting the course of how the industry combats modern threats against password security.

2014

ircmaxell/password_compat · GitHub

by 1 other
This library is intended to provide forward compatibility with the password_* functions being worked on for PHP 5.5.

Secure Salted Password Hashing - How to do it Properly

by 3 others, 2 comments
If you're a web developer, you've probably had to make a user account system. The most important aspect of a user account system is how user passwords are protected. User account databases are hacked frequently, so you absolutely must do something to protect your users' passwords if your website is ever breached. The best way to protect passwords is to employ salted password hashing. This page will explain how to do it properly.

2012

Storing Passwords Securely

by 1 other
Time and time again you hear about a company having all of their users' passwords, or "password hashes", compromised, and often there's a press response including one or more prominent security researchers demonstrating how 1,000 users had the password "batman", and so on. It's surprising how often this happens considering we've had ways to do password authentication that don't expose users' passwords, or at least makes it significantly harder to crack them, for several decades.

2010

Portable PHP password hashing ("password encryption") framework

by 5 others
This is a portable public domain password hashing framework for use in PHP applications. It is meant to work with PHP 3 and above, and it has actually been tested with at least PHP 3.0.18 through 5.3.0 so far.

Google Chrome Master Password? - Google Chrome Help

(via)

While we agree that this situation would be terrible, we believe that a master password would not sufficiently protect you from danger. Someone with physical access to your computer could install a keylogger to steal your passwords or go to the sites where your passwords are stored and get them from the automatically filled-in password fields. A master password required to show saved passwords would not prevent these outcomes.

2009

Analyse du piratage des 20K comptes Hotmail, Gmail et Yahoo - Tux-planet

Après quelques recherches dans les réseaux underground et avec l'aide de Jérôme (on a risqué nos vies pour vous), nous avons réussi à mettre la main sur cette fameuse liste. Enfin sur plusieurs morceaux de liste qui, une fois réunis, ont formé une base de données très intéressante à étudier.

Vous ne trouverez pas cette liste ici pour des raisons légales, cela va de soi. En revanche voici une petite analyse rapide sur les informations récoltées.

20,000+ Gmail, Yahoo, AOL Accounts Compromised [ALERT]

Unfortunately, Hotmail was only the beginning. Google (Google) has now confirmed that thousands of Gmail (Gmail) accounts were compromised by an “industry-wide phishing scheme.” According to the BBC, the login data of over 30,000 Hotmail, Gmail, Yahoo, AOL, Comcast, and Earthlink accounts have been posted online.

Rencontre avec Hacker Croll, le visiteur de Twitter

(via)
Exclusif : Fin avril, un internaute du nom de Hacker Croll diffuse les preuves de sa visite dans les petits secrets du site communautaire Twitter. ZATAZ.COM a rencontré ce visiteur pas comme les autres.

Boulette numérique pour Braqueurs.fr

(via)
Le site de jeu en ligne Braqueurs.fr a envoyé plus de 20.000 informations sensibles, par courriel, appartenant à ses membres. Une boulette informatique effectuée lors de la demande, par un lecteur de ZATAZ.COM, des récapitulatifs de connexion de ce dernier. Au lieu de recevoir son login et son mot de passe, l'internaute a reçu dans la missive les pseudos, emails, logins et mot de passe des 20.390 membres.

Base de données corrompues pour un site gay Français

(via)
Exclusif : Un des sites de la communauté homosexuelle Française vient d´être piraté. Un pirate ukrainien diffuse les mots de passe et les identités des membres de Visio Gay.

2008

2007

Strong Password Generator

by 3 others
Générateur de mot de passe

2006

Hashapass

by 1 other
Hashapass automatically generates strong passwords from a master password and a parameter.

srcmax's TAGS related to tag password

api +   authentication +   cheum +   cryptage +   developpement +   développement +   gay +   gmail +   google chrome +   hotmail +   jQuery +   master password +   md5 +   php +   plugin +   securité +   security +   sécruité +   sécurité +   tools +   twitter +   ultra cheum +   yahoo +