TheRook

As a cryptographer the use of AES in the hashing() method bothers me. This is not a commonly accepted method of password storage. The use of an initialization vector (IV)...

webapp2_extras.security.generate_password_hash(raw_password, length=12) will generate a salt of length 12 for each password and append it to the resulting hash. Which isn't bad. However, generate_password_hash() defaults to sha1... which isn't good...

Yeah that looks really close. Make the salt 16 bytes in size. 2 is too small. -Mike On Thu, Jul 11, 2013 at 8:23 AM, mcvendrell [email protected]: > Hi, TheRook....

background fetch cannot do post, retrying should be fine... but you cannot trigger a background fetch within the serviceworker - you need an attached client and perhaps use postMessage which...

Use -p to print each record. Enjoy! On Oct 8, 2017 7:17 PM, "aesthese" wrote: > When using Fierce to enumerate subdomains, we are presented with the > corresponding IP...

Awesome, I'd love this project to be in OpenBSD's ports tree. I'm still doing some more testing before finalizing 2.0, I'll cut a 2.0 tag before the end of the...

I really appreciate this. I do! There is one tricky bug that needs to be crushed before I finalize this build. My team is working on it. We'll have a...

TOR has it's own DNS infrastructure. I'll look into a cleaner way of using TOR resolvers, for the time being use open resolvers as proxies using the -r option.

This is a great idea, and something I'd like to add in the next major version. Right now the tool is pure DNS, but i'd like to tap into protocols...

My guess is that the DNS servers in resolvers.txt are timing out a lot (subbrute will recover after some timeouts). You could try adding more DNS servers to this list....