PUBLIC MARKS with tag passwords

We think that stopping password pasting (or SPP) is a bad thing that reduces security. We think customers should be allowed to paste their passwords into forms, and that it improves security.

In short, passwordless login replaces the username and password combination with a variation on the reset password flow already found on many existing sites. To login, a user enters their email address or phone number. A link is sent to that address that, when clicked, causes the user to be logged in. No password is ever collected or stored.

If you're a web developer, you've probably had to make a user account system. The most important aspect of a user account system is how user passwords are protected. User account databases are hacked frequently, so you absolutely must do something to protect your users' passwords if your website is ever breached. The best way to protect passwords is to employ salted password hashing. This page will explain how to do it properly.

Use bcrypt. Use bcrypt. Use bcrypt. Use bcrypt. Use bcrypt. Use bcrypt. Use bcrypt. Use bcrypt. Use bcrypt.

Matasano Security LLC - Chargen - Enough With The Rainbow Tables: What You Need To Know About Secure Password Schemes

Write All Stored Password (WASP) displays all stored passwords of the currently logged on user that are hidden in the Microsoft PWL file. It allows the convenient supervision or deletion of this file to improve the security / privacy of your PC (for Win 95, 98, ME only).

Wouldn’t it be great if you could use the same account to log in to multiple sites and applications, without having to trust them all with your password? Wouldn’t it be even better if you could do this without having to hand ownership of your online identity over to some monolithic third party? (I’m looking at you, .NET Passport Microsoft Passport Windows Live ID.) The good news is, you can! OpenID is a decentralised authentication system invented by LiveJournal but now being developed as an open standard under the careful mentorship of the Apache Software Foundation. Anyone can create an OpenID, and the number of sites which let you log in with one is growing by the day.

Access and share logins for websites that require you to register in order to view content.

Менеджер паролей и заполнитель веб-форм, полностью автоматизирующий ввод паролей и заполнение форм.

Default Password List

HOW TO ACCESS ANY DATABASE ON THE WEB (how to find working passwords when you forget your own)

Windows, either Windows NT, Windows 2000, Windows XP, Windows 2003, Windows Vista and Windows Longhorn Server protects user accounts with passwords, and an user or an administrator need to authenticate with both his or her userid and password correctly in order to log-in and gain access to the computer. What if you have forgetten your Windows login username or password, especially forget Windows administrator password which can be used to help you to reset all other user names and password? You can recover and reveal the Windows logon user id and password including the administrator password with the help of various third-party tools, such as Login Recovery.

KeyFinder Thing is a simple utility to retrieve the Serial numbers or CD Keys of Microsoft software installed on your system. It includes options to export the list of found keys and a search option to find keys not included by default. Whilst this utility is aimed at Microsoft products I have built it to be versatile so I can include other non-MS products so please feel free to email me with any requests for software titles to be included and I will do my best.

Cain & Abel is a password recovery tool for Microsoft Operating Systems. It allows easy recovery of various kind of passwords by sniffing the network, cracking encrypted passwords using Dictionary, Brute-Force and Cryptanalysis attacks, recording VoIP conversations, decoding scrambled passwords, recovering wireless network keys, revealing password boxes, uncovering cached passwords and analyzing routing protocols.