 |
Posts by [email protected] |
 |
Post #AkU3dWpUoAFwjtx9Bw by [email protected] |
|
0 likes, 1 repeats |
|
|
|
I previously helped discover that RSA keys in certificates generated by printer… |
|
|
|
Post #AkU3iGdGSNA5x6UWwa by [email protected] |
|
0 likes, 1 repeats |
|
|
|
Earlier this year, I found a significant number of DKIM keys vulnerable to the … |
|
|
|
Post #AkU41DPOfNEXSM2XxY by [email protected] |
|
0 likes, 1 repeats |
|
|
|
badkeys was presented in a talk at the Nullcon security conference in 2022 http… |
|
|
|
Post #AkVzlfjtYTLHBjsfmy by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@hdm @hanno if you have any questions about the format, please reach out. It co… |
|
|
|
Post #Akzru9t4NYjS7GVPGK by [email protected] |
|
0 likes, 1 repeats |
|
|
|
RSA private keys contain two primes that we usually call p and q.Those are the … |
|
|
|
Post #AkzruArgkBDn9GrokS by [email protected] |
|
0 likes, 1 repeats |
|
|
|
If we could go back and re-specify RSA, it'd probably be a good idea to sta… |
|
|
|
Post #AkzruBId80lwUpTKk4 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
If you now wonder how your RSA keys are encoded, I wrote some code to check: ht… |
|
|
|
Post #AoNT0ijDOUekodWvlA by [email protected] |
|
0 likes, 1 repeats |
|
|
|
Followerpower: There's a W3C standard called XML Key Management Specificati… |
|
|
|
Post #AoPDsY3U5Ai6OuZlgm by [email protected] |
|
0 likes, 1 repeats |
|
|
|
I discovered a certificate using a "public private key", in this case… |
|
|
|
Post #AqB72hYfUm4p6MbTDk by [email protected] |
|
0 likes, 1 repeats |
|
|
|
Something about that Fortinet/Fortigate leak that has not been widely recognize… |
|
|
|
Post #AqCVyswRvCXlGExo80 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@christopherkunz @GossiTheDog nothing spectacular, random small company webpag… |
|
|
|
Post #AqP0Nz3TerlPyyecAy by [email protected] |
|
0 likes, 1 repeats |
|
|
|
Updates on the Fortinet incident: badkeys now detects a more complete set of af… |
|
|
|
Post #AqnkaQ7E8HSB4MJYA4 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
I recently realized something that I hadn't noticed before. In RSA, we call… |
|
|
|
Post #Aqwnmrmt7gwueW4Cf2 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
The new badkeys release (0.0.13) adds support to scan JSON Web Keys and JSON We… |
|
|
|
Post #ArTWh4LiRgY44tyh5E by [email protected] |
|
0 likes, 1 repeats |
|
|
|
JSON Web Keys have a very peculiar property. It is a cryptographic key serializ… |
|
|
|
Post #At4Vc3wJsU8lKvYxQ8 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
Jenkins recently announced that their docker images ssh-agent (CVE-2025-32754) … |
|
|
|
Post #AvMDDBGlHSQw6KQ5Vw by [email protected] |
|
0 likes, 2 repeats |
|
|
|
Key serialization formats can be - uh - the source of "interesting" i… |
|
|
|
Post #AvMJeYYzNiZBtENm76 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@bartavi no security risk, it's just a "if you dare to follow the stan… |
|
|
|
Post #AvNix3DwohWoCsPrIu by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@urig it doesn't really matter, it's just two different ways to encode … |
|
|
|
Post #Axs2WNjU3zLwmaJ01Q by [email protected] |
|
0 likes, 1 repeats |
|
|
|
Tomorrow at @nullcon I will give a presentation about badkeys at 2pm https://nu… |
