SSL v2.0 on Internet Explorer
Now that Firefox 2.0 does not have option to enable SSL v2.0, there’s one way it can still be activated in Internet Explorer. Goto Tools -> Internet Options -> Advanced as shown in the screenshot...
View ArticleUsing Certificates with cURL
The problem: Using Digital Certificates issued by a Certification Authority (CA) with curl. The situation: I have a .cer (Digital Certificate) file, .pfx (Personal Information Exchange file i.e., the...
View ArticleJohn the Ripper 1.7.2 – Jumbo patch
I’ve been struggling to find the best working version of John so that it can crack MS Cache outputs from Cachedump (of course, this functionality is now included in fgdump). Running fgdump gives two...
View ArticleNTLM Rainbow Tables generation
What www.hak5.org started was quite commendable and I’m really not sure what the status of the Community Rainbow Tables project is at hak5.They are generating the rainbow tables with the following...
View ArticleConverting Java Key Store into X.509 certificates
Web services security has been very much talked about in the recent times. Especially, with the Service Oriented Architecture (SOA) gaining increasing importance. One of the interesting ways to protect...
View ArticleASA Fails to parse certificates
Last night I was trying to get a VeriSign issued SSL certificate installed on my ASA using Cisco ASDM 6.2. I installed the Intermediate CA and the CA certificates all installed. I then imported the SSL...
View ArticlePlaidCTF 2013 – Crypto 250 Compression Writeup
On the recently concluded PlaidCTF (which was an awesome competition) by PPP there was a problem. Here it goes: Question: We managed to get the source code for an encryption service running at...
View ArticlePCI SSC Forbids SSL and “Early TLS”
On April 15, 2015 the PCI SSC released the PCI DSS v3.1. The main cause for concern for most merchants and other entities (called “entities” hereonforth) that store, transmit and process cardholder...
View Article
More Pages to Explore .....