For more context, see my slides from my 2018 BSidesSF presentation, Keep It Like A Secret: https://resources.sei.cmu.edu/library/asset-view.cfm?assetID=517768 … (warning: large PDF)
-
-
Show this thread
-
These would all be really great passwords. I couldn't imagine a viable strategy to crack a single one of them through bruteforce. Except that the password exists hard-coded within the app somewhere, in plain text. Oops.pic.twitter.com/a99h0rXOLp
Show this thread -
On the other end of the spectrum, here are passwords that should never have been chosen in the first place (all exist as-is in the rockyou password list). Sorted by number of protected private key files using the password.pic.twitter.com/wNcy1xTnBa
Show this thread
End of conversation
New conversation -
-
-
You sure have a lot of open tmux sessions lol
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Some big names in there. Nice.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.