iExploit

Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!

Sign In Apply for Membership

Top Posters

Who's Online (1)

Powered by Vanilla. Made with Bootstrap.
Looking to introduce yourself? Look no further, and click here! We also have IRC! [irc.evilzone.org #iexploit]
Keeping Passwords Secure
  • Xin
    Posts: 3,251
    As many of you know firefox, chrome, iE and opera passwords can be easily cracked if you use the remember this password features. But remembering all of your passwords is hard.

    An essential tool in protecting your passwords is keepass (http://keepass.info/) It useds very secure database encryption to secure your passwords with and enables auto fillin forms so you dont have to. You cannot view your passwords without both the master password and the secure.key, therefore if the database gets into the wrong hands its unlikely to be broken into.

    I recommend all you guys use this rather than using one master password or using the built in browser storing passwords.
    Xin
  • Bursihido
    Posts: 406
    Thanks for telling us
  • George
    Posts: 707
    Installed, thanks Xinapse.
  • undead
    Posts: 822
    This is very good. Nice share ;)
  • GameOver
    Posts: 675
    Too helpful! Thanks Xinapse.
  • CustomiZer
    Posts: 87
    I use lastpass. It uses an online database and doen't have the keyfile feature...but serves my purpose
  • Xin
    Posts: 3,251
    said:


    I use lastpass. It uses an online database and doen't have the keyfile feature...but serves my purpose



    i wouldnt trust the online database :p but fair enough
    Xin
  • MCP_01
    Posts: 18
    A quick and easy way to generate passwords on *nix is to use the package APG from the repos. KeepPassX is also available for *nix. If your looking for a quick and easy way to generate One Time Passwords aka: One Time Pad, look on the addons section of the Mozilla Firefox website and you'll find the following addons.

    pwGen, Hash Password Gen, Magic Password, Secure Password, etc

    For Windows: http://pwgen-win.sourceforge.net/

    If your looking for something a little more complex then every time this page is displayed, their server generates a unique set of custom, high quality, cryptographic-strength password strings which are safe for you to use: https://www.grc.com/passwords.htm however using them may prove more difficult as some password boxes only allow you to use a certain amount of characters, which in itself is a weak security control.

    The longer the Password or Pass-Phrase then the more secure it is, especially when it comes to Encryption.
  • RetroGod
    Posts: 21
    Great Tool, but storing passwords sucks, a password is the safest in your mind: your mind can't be decrypted or cracked by anyone (excepting drugs :D)...
  • Xin
    Posts: 3,251
    said:


    Great Tool, but storing passwords sucks, a password is the safest in your mind: your mind can't be decrypted or cracked by anyone (excepting drugs :D)...



    True, but you dont want the same pass for every site
    Xin
  • George
    Posts: 707
    I heard TrueCrypt is good.

    http://www.truecrypt.org/
  • alix10
    Posts: 73
    Thanks Xin instaling now
  • zer0day
    Posts: 33
    Looks like a very comparable tool to the one I use. I have been using LastPass. Encrypts your passwords with AES-256, and you can login only once for all your passwords. It even includes a on screen keyboard to enter your one pass if you are worried about keyloggers.
Add a Comment