Passwords

Dr Joe Francom

Activity 1

Visit the following sites:

• https://haveibeenpwned.com/
• https://haveibeenpwned.com/Passwords

Activity 2

Authentication

• clip

https://www.keytrac.net/en/tryout/authenticate

Activity 3

Password sniffing

• Here

Activity 4

Physical Access

• hacking the door keypad

Activity 5

DNS enumeration

• host <domin>
• nmap -T4 -p 53 --script dns-brute <domain>
• dnsrecon -d <domain> -n 144.38.192.3
• dnsrecon -r 144.38.192.3-144.38.192.200

Tidbits

Rainbow tables
Salt vs no salt

• openssl passwd -1 -salt pepper

or

• openssl passwd -1
  Might be fun to look at my git repo