Biometrics techniques and concepts for authentication
We talked about how biometrics can be used for multifactor authentication in order to verify someone’s identity. Biometric authentication refers to something you are (as…
Key stretching concepts and algorithms
One of the best ways to make a password strong is to make it long. The longer the password is, the harder it is to…
Hashing use cases
In practice, what is hashing used for? How is it being used in the real world? Let’s take a look at a few common hashing…
Hash Tables, Rainbow Table Attacks, and Salts
As we talked about, applications that properly handle passwords don’t actually store the passwords themselves in databases, but instead, store hashes of passwords. That’s why…
Useful IP widget for CTFs
Who can’t use more convenience? If you’re familiar with VPN profiles when it comes to CTF programs like THM and HTB, I’m sure you’ve forgotten…
Multifactor authentication (MFA) factors and attributes
Password-based authentication has been proven time and time again to be a vulnerable form of authentication. One of the best defenses is using Multifactor Authentication,…
What is Two-Factor Authentication (2FA)?
Passwords are hard. Most of us use passwords of varying length and complexity. That’s mainly to fulfill the requirements offered by every single site that…
Password managers: should you use them?
What’s the point of password managers anyway? Let’s take a look at a scenario that we’re all familiar with… The scenario: We all have this…
Encrypted versus hashed passwords. What’s the difference?
As you study for the CompTIA Security+ exam, it’s important that you understand the differences between plaintext, encrypted, and hashed passwords. It’s common to hear…
Are your passwords strong enough?
In this digital day and age, most of us know what a password is. If you’ve found this article or any other like it, you…