Dhiru Kholia
Dhiru Kholia
I have answered this question at https://github.com/magnumripper/JohnTheRipper/pull/3261#discussion_r191063447. In short, ``` // The structure of masteykey_blob is fixed: // + masteykey_blob -> length_1 (byte) + IV (16 bytes) + length_2 +...
Yep, the format does have a checksum. However, the process of calculating a checksum is problematic. The program does `calculatedCk = makeKeyChecksum(mk, ckSalt, rounds, useUtf)` followed by `calculatedCk = makeKeyChecksum(mk,...
> Is the current code broken for non-ASCII passwords? Yes! This is the reason behind this PR. > Hm, checking the checksum is still better than only checking padding. Checking...
Hi Folks - I have https://github.com/okta-awscli/okta-awscli/pull/221 PR open now which adds support for FIDO2 YubiKey(s). Can you please test this PR, and provide some feedback? Thanks! CC @darshan-mandhane @JacobWeyer.
Hi Folks - I have https://github.com/okta-awscli/okta-awscli/pull/221 PR open now which adds support for FIDO2 YubiKey(s). Can you please test this PR, and provide some feedback? Thanks! CC @icadariu as well.
Thanks @darshan-mandhane. I have updated the PR to add a commit to add support for Touch ID on Mac.
> I have updated the PR to add a commit to add support for Touch ID on Mac. The `Touch ID` support was tested on a MBP-2017 running Ventura 13.4.
> @kholia I met the following error... The existing browser-registered `Touch ID` factor CANNOT be used with the okta-awscli software. You need to use https://github.com/Nike-Inc/gimme-aws-creds/ (`gimme-aws-creds --action-setup-fido-authenticator` specifically) to setup...
https://github.com/Nike-Inc/gimme-aws-creds/ needs to be used one time to register the `Touch ID` for CLI usage. ``` $ cat ~/.okta_aws_login_config [DEFAULT] okta_org_url = https://.okta.com okta_auth_server = client_id = gimme_creds_server = appurl...
I tried the following patch but it generates too many false positives: ``` diff --git a/python/lang/security/audit/sqli/asyncpg-sqli.yaml b/python/lang/security/audit/sqli/asyncpg-sqli.yaml index 45f88f9e..7023b8de 100644 --- a/python/lang/security/audit/sqli/asyncpg-sqli.yaml +++ b/python/lang/security/audit/sqli/asyncpg-sqli.yaml @@ -38,6 +38,11 @@ rules: -...