keepassXChads win again >Based on this attack requirement, we are not vulnerable: >KeePass 2.X uses a custom-developed text box for password entry, SecureTextBoxEx. This text box is not only used for the master password entry, but in other places in KeePass as well, like password edit boxes (so the attack can also be used to recover their contents). >The flaw exploited here is that for every character typed, a leftover string is created in memory. Because of how .NET works, it is nearly impossible to get rid of it once it gets created. For example, when "Password" is typed, it will result in these leftover strings: •a, ••s, •••s, ••••w, •••••o, ••••••r, •••••••d. The POC application searches the dump for these patterns and offers a likely password character for each position in the password.
Dashlane is a massive scam, I made this in an afternoon and it works just as fine, for free. I can't understand what is the point of dashlane, "remember one single big password" is the most retarded reason
password store works for me as my main manager
also have a bitwarden instance running on my pi and under my domain to manage some subset of accounts on my and other's (my parents) mobile
pass is so obviously superior to anything else I don't know why it's a question anymore. I've tried all of the other memes, keepass bitwarden notepad.exe pen&paper they all suck. Pass is minimalism done right. For all intents and purposes it's just the mypassword.txt system but perfected.
Bitwarden for unimportant stuff, and complex passwords stored in my brain for important stuff. I have an algorithm for coming up with new passwords that makes them easy for me to remember but still very strong.
paper
not keepass
https://github.com/vdohney/keepass-password-dumper
more proof that .NET is shite
Its probably worse with Bitwarden since that piece of shit runs on electron
keepassXChads win again
>Based on this attack requirement, we are not vulnerable:
>KeePass 2.X uses a custom-developed text box for password entry, SecureTextBoxEx. This text box is not only used for the master password entry, but in other places in KeePass as well, like password edit boxes (so the attack can also be used to recover their contents).
>The flaw exploited here is that for every character typed, a leftover string is created in memory. Because of how .NET works, it is nearly impossible to get rid of it once it gets created. For example, when "Password" is typed, it will result in these leftover strings: •a, ••s, •••s, ••••w, •••••o, ••••••r, •••••••d. The POC application searches the dump for these patterns and offers a likely password character for each position in the password.
it misses the first character intentionally you pleb
Tattoo on the inside of my eyelids
Then how do you see it if your eyes are closed?
same
Imagine using devaultware
>implying sway isn't the GOAT
Why yes, sway really is the gayest of all time.
Nice try, drew.
Obsessed
Dashlane is a massive scam, I made this in an afternoon and it works just as fine, for free. I can't understand what is the point of dashlane, "remember one single big password" is the most retarded reason
Bitwarden premium
For me it's KeePassMini on my iPhone of course
https://github.com/FrankHausmann/KeePassMini/commit/44c2c2ade8158ad311b74832250345c0e7540f0b
All of my passwords are variants of "password".
I'm in your twitter bro pass was
password1234
Lesspass
Bitwarden
Yeah it's had a few breaches but I'm no pussy
Bitwarden.
Same. I store my shit on the cloud too
Not that I have anything important to even be worth hacking
the standard unix password manager: pass, because i am a based unix chad
I have a sticky note stuck to the bottom of my keyboard.
imagine encrypting your lichess instead of playing every game new (masters)
I lose every time but in different ways
https://www.telegraph.co.uk/news/science/science-news/12114150/Human-brain-can-store-4.7-billion-books-ten-times-more-than-originally-thought.html
Bitwarden at work, password-store at home and on my phone.
I would use password-store at work too if they didn't require Windows and Bitwarden.
>My password manager?
>Oh yeah, it's
printf "%s:%s:%s" "$site" "$username" "$password"
| cat - /dev/zero
| head -c 128
| sha384sum
| cut -d' ' -f1
| tr '[:lower:]' '[:upper:]'
| basenc --base16 -d
| basenc --z85
Notepad zipped with a password
https://github.com/DNDEBUG/dnpass
password store works for me as my main manager
also have a bitwarden instance running on my pi and under my domain to manage some subset of accounts on my and other's (my parents) mobile
More Drew Devault shilling?
It's a Drewish conspiracy
for me it's picrel
buttercup
Common Sense 2023
An excel file called "passwords" on my desktop
pass is so obviously superior to anything else I don't know why it's a question anymore. I've tried all of the other memes, keepass bitwarden notepad.exe pen&paper they all suck. Pass is minimalism done right. For all intents and purposes it's just the mypassword.txt system but perfected.
Bitwarden for unimportant stuff, and complex passwords stored in my brain for important stuff. I have an algorithm for coming up with new passwords that makes them easy for me to remember but still very strong.
If you can remember them easily, they’re not strong
encrypted notepad file
password to encryption is "richard stallman is my master and i am his cumslave"
Bitwarden with sync server self-hosted on RPi2. it's alright, but I never managed to make sync work with Android Firefox add-on.
Seyonara
my USB drive
>its another Drew ShillSegfault thread
Fuck off Drew
Obsessed
Use your fucking brain.
for me it's bitwarden
too pleb to selfhost vaultwarden tho
vaultwarden for normie colleagues at work
pass for my own stuff
I'm too paranoid to let a 3rd party app manage my passwords
>I'm too dunning-kruger to use pass or KeepAssXC
>I also call programs apps
Fixed.