Passa ai contenuti principali

Cerca nel blog

Reti di Calcolatori 2 - Principi di Sicurezza

Domande e approfondimenti sul corso

Ottieni link
Facebook
Twitter
Pinterest
Email
Altre app

Etichette

Approfondimento

giugno 09, 2016

Password

Update 2022

Results of a Password Cracking Contest in My Security Class (Spring 2022)

https://mchow01.github.io/education/security/2022/03/16/password-cracking.html

Guidance (eccellenti)

https://www.cesg.gov.uk/articles/problems-forcing-regular-password-expiry

https://www.cesg.gov.uk/guidance/password-guidance-simplifying-your-approach

https://pages.nist.gov/800-63-3/sp800-63b.html#sec5

Microsoft Password Expiration
https://www.microsoft.com/en-us/research/wp-content/uploads/2016/06/Microsoft_Password_Guidance-1.pdf

https://docs.microsoft.com/it-it/archive/blogs/secguide/security-baseline-final-for-windows-10-v1903-and-windows-server-v1903

Analysis by Microsoft Threat Intelligence
https://techcommunity.microsoft.com/t5/azure-active-directory-identity/your-pa-word-doesn-t-matter/ba-p/731984

Incidenti

(furti della MIA password):

https://bartoli-alberto.blogspot.it/2016/05/hanno-rubato-la-mia-password.html
https://bartoli-alberto.blogspot.it/2016/08/hanno-rubato-la-mia-password-ancora.html

Anonymous in Italia:

https://bartoli-alberto.blogspot.com/2018/11/perche-la-password-deve-essere.html

Check if you have an account that has been compromised in a data breach
https://haveibeenpwned.com/

(Maggio 2016)

(1 settembre 2016)

http://blog.erratasec.com/2015/06/should-i-panic-because-lasthash-was.html

http://www.theregister.co.uk/2014/07/14/popular_web_password_vaults_blurting_codes/

https://nakedsecurity.sophos.com/2013/11/04/anatomy-of-a-password-disaster-adobes-giant-sized-cryptographic-blunder/

http://www.theregister.co.uk/2016/08/31/dropbox_2012_credentials_file_is_real/

Password dictionary

Amazon May 2020

https://www.thesecurityfactory.be/password-cracking-speed/

State of the art GPU 2020

https://www.criticalstart.com/cracking-ntlmv2-hashes-with-cthulhu/

Cercare su Google "password dictionary"

http://contest-2010.korelogic.com/rules.html

Entropy, password length, average time to crack
http://i.imgur.com/gfYw57t.png

Password guesses per second
http://openwall.info/wiki/john/benchmarks

Password cracking tools
http://resources.infosecinstitute.com/10-popular-password-cracking-tools/

How to store passwords
https://paragonie.com/blog/2016/02/how-safely-store-password-in-2016

Time to crack password calculator
https://www.grc.com/haystack.htm

Crack record (February 2019) ~=8 Character Passwords Are Dead=~
https://twitter.com/TinkerSec/status/1096047200411570176

Ottieni link
Facebook
Twitter
Pinterest
Email
Altre app

Etichette: Approfondimento

Post più popolari

maggio 16, 2016

Crime: Reports and Studies

Ottieni link
Facebook
Twitter
Pinterest
Email
Altre app

novembre 29, 2019

2FA - Why

Ottieni link
Facebook
Twitter
Pinterest
Email
Altre app

Powered by Blogger

Archivia

2022 2
- aprile 1
- marzo 1

2019 3
2018 6
- ottobre 1
- maggio 2
- aprile 1
- marzo 2
2017 9
- novembre 1
- maggio 2
- aprile 5
- marzo 1
2016 31

Mostra di più Mostra di meno

Etichette

Approfondimento21
Attack7
Crime5
Malware9
MITM2

alberto bartoli

Teacher of the year (2015)

Security Incidents Collection