Displaying 1 to 3 from 3 results

weakforced - Anti-Abuse for servers at authentication time

  •    C++

The goal of 'wforce' is to detect brute forcing of passwords across many servers, services and instances. In order to support the real world, brute force detection policy can be tailored to deal with "bulk, but legitimate" users of your service, as well as botnet-wide slowscans of passwords. The aim is to support the largest of installations, providing services to hundreds of millions of users. The current version of weakforced is not quite there yet, although it certainly scales to support up to ten million users, if not more. The limiting factor is number of logins per second at peak.

passer - Passive service locator, a python sniffer that identifies servers, clients, names and much more

  •    Python

Quick notes for getting going with passer, the passive service sniffer. You're responsible for getting permission to sniff. If you're using windows or your paths to the support files don't match mine for some other reason, let me know where they are and I'll be glad to update the script.

nitrokey-storage-firmware - Firmware for the Nitrokey Storage device

  •    C

Note: To connect an external debugger as described here, you will need a development version of the Nitrokey Storage that makes the JTAG pins available (pictured below). This version is currently not for sale. The PCB layout for the developer version can be found in the Nitrokey Storage Hardware repository, inside the dev folders. This has been tested with the AVR JTAGICE XPII, however the more recent Atmel ICE and any other AVR UC3 compatible debugger should work as well.