🛡 ¿Alguna vez te preguntaste cómo guarda Linux tus contraseñas de forma segura?

Nuevo video en el canal! 🎬

En esta ocasión nos adentramos en uno de los mecanismos de seguridad más fundamentales: el hash de la contraseña.

Desglosamos cómo GNU/Linux transforma tu contraseña en una cadena cifrada, exploramos algoritmos como SHA-512 y Yescrypt, y analizamos cuál es la mejor opción.

https://youtu.be/V6juloz3JfwZ

#Linux #SeguridadIT #Ciberseguridad #Hash #Contraseñas #GNU #Tutorial #DevOps #yescrypt

Si quieren leer algo nerd para ir empezando la semana, entren al "man 5 crypt".

Tienen toda la info sobre los diferentes métodos de hash de las contraseñas en los sistemas GNU/Linux modernos.

¿La conocían? 💬

#gnu #linux #crypt #cryptography #shadow #password #mkpasswd #yescrypt

🚀 New Release: hashgen v1.2.0

Big update packed with new features:

• Added 22 new modes: MySQL5, phpass, md5crypt, sha256crypt, sha512crypt, WordPress bcrypt-HMAC-SHA384 (wpbcrypt), base32 encode/decode, plus multiple hashcat modes including salted algos
• Updated yescrypt defaults to match Debian 12
• Read full changelog:
https://forum.hashpwn.net/post/5810

#hashgen #hashcat #infosec #golang #hashcracking #hashpwn #yescrypt #wordpressbcrypt

#debian's default shadow file hash algo, #yescrypt, has been added to #hashgen.

https://forum.hashpwn.net/post/478

#linux #hashcracking #hashpwn #cyclone

#yescrypt_crack source code v0.2.0; 2025-03-06 uploaded to GitHub.

https://forum.hashpwn.net/post/449

#yescrypt #hashpwn

After seeing yescrypt hashes appear in CMIYC a while back, I started developing a yescrypt cracker in pure Go. Since then, yescrypt has become the default /etc/shadow hash for many popular linux distros such as Debian, Ubuntu, RHEL, Fedora, and Arch (to name a few), but hash cracking support for this algo has been limited to JtR -- until now.

Here's a sneak peek of the yescrypt_cracker POC:

https://forum.hashpwn.net/post/446

#yescrypt #hashcracking #cyclone #hashpwn #hashcat #cmiyc #jtr #johntheripper #golang

I was late on with catching up with new default password hashing algorithm "yescrypt", but I wanted to use the new default the only thing is that I have been modified my /etc/login.defs and a couple of changes needed to be done to some of the files in the /etc/pam.d directory, namely "passwd, su and su-l".

#archlinus #yescrypt

Native Go implementation of yescrypt password hashing algorithm, the default for many current Linux distros, now available: https://www.openwall.com/lists/announce/2024/08/21/1
#golang #yescrypt

Didn't realize that #archlinux moved from #SHA512 to #yescrypt for password hashing. Makes sense seeing that #Fedora has for awhile now.

@Xavier Yeah, I saw that Fedora has made yescrypt the default now with their workstation iso (I'm assuming it's the same for the spins too) so I was just wondering what others, with much more knowledge on it than I, thought about it. From what I've read #yescrypt is the way to go.

@thelinuxfraud So just for your local pam_unix? #yescrypt

♻ @UnitusCoin@twitter.com: Did you know? $UIS not only has one CPU algorithm but TWO for you to choose from! #Argon2d and #Yescrypt. BOTH are… https://twitter.com/i/web/status/999010353110573057