Projects

Keychain

The keychain script makes handling RSA and DSA keys both convenient and secure. It acts as a front-end to ssh-agent, allowing you to easily have one long-running ssh-agent process per system, rather than per login session.

Openwall - John the Ripper

John the Ripper is a fast password cracker, currently available for many flavors of Unix (11 are officially supported, not counting different architectures), Windows, DOS, BeOS, and OpenVMS. Its primary purpose is to detect weak Unix passwords. Besides several crypt(3) password hash types most ... [More] commonly found on various Unix flavors, supported out of the box are Kerberos AFS and Windows NT/2000/XP/2003 LM hashes, plus several more with contributed patches. [Less]

Clipperz Community Edition

Clipperz Community Edition is a web based password manager. It allows you to host on your own server a web service identical to the well known Clipperz online password manager. http://www.clipperz.com It supports multiple backends (PHP/MySQL, Python/AppEngine, …) and you can contribute ... [More] your own. You can think of it as a web rolodex, where users can store and freely organize any kind of data: passwords, confidential notes, burglar alarm codes, credit and debit card details, PINs, software keys, … Furthermore, if the data happens to be the credentials to some online service, it is also possible to create a direct login, a link, that the user can click on to access that service with a single click. Local encryption within the browser guarantees that no one except you can read your data [Less]

Openwall - passwdqc

pam_passwdqc is a simple password strength checking module for PAM-aware password changing programs, such as passwd(1). In addition to checking regular passwords, it offers support for passphrases and can provide randomly generated ones. All features are optional and can be (re-)configured without ... [More] rebuilding. The package additionally includes libpasswdqc (a password/passphrase strength checking library), pwqcheck (a standalone password/passphrase strength checking program), and pwqgen (a standalone random passphrase generator program). [Less]

Mandos

The Mandos system allows computers to have encrypted root file systems and at the same time be capable of remote and/or unattended reboots. The computers run a small client program in the initial RAM disk environment which will communicate with a server over a network. All network communication ... [More] is encrypted using TLS. The clients are identified by the server using an OpenPGP key; each client has one unique to it. The server sends the clients an encrypted password. The encrypted password is decrypted by the clients using the same OpenPGP key, and the password is then used to unlock the root file system, whereupon the computers can continue booting normally. [Less]

phpSec

A PHP security library. * Session handler * XSS filter * CSRF protection * Password hashing * Encrypting data * Random data generator * Yubikey - one time tokens * One time passwords

truecrack

Password cracking for truecrypt(c) volume files.

Openwall - phpass

phpass is a portable password hashing framework for use in PHP applications. The preferred (most secure) hashing method supported by phpass is the OpenBSD-style bcrypt (known in PHP as CRYPT_BLOWFISH), with a fallback to BSDI-style extended DES-based hashes (known in PHP as CRYPT_EXT_DES), and a ... [More] last resort fallback to an MD5-based variable iteration count password hashing method implemented in phpass itself. [Less]

MAPDAV

Designed to use what is known about users via the /etc/passwd file on unix/linux systems to generate a dynamic dictionary or csv file of more accurate guesses as to what their possible password may be, to look for bad password protection practices.

myvault

A standalone applicant for storing sensitive information. The application uses an algorithm to encrypt/decrypt the data. You need to install JRE version 1.5 and above to use this application. You can download JRE here