Openwall

382 posts

Openwall

@Openwall

Infosec focused free software, research, publications, community activities @oss_security. Tweets are announcements. Please direct questions to @solardiz.

Inscrit le Haziran 2010

14 Abonnements7.1K Abonnés

Openwall@Openwall·5 Mar

passwdqc 2.1.0 is out, adding built-in common passwords list. We effectively include top 100k of HIBPv8 overlap with RockYou, optimized and compressed to under 200 KB embedded in program binary. None of JtR password.lst 1.8 million are accepted by default. openwall.com/lists/announce…

Openwall@Openwall

passwdqc 2.0.3 releases for Unix-like and Windows systems are out, with many minor additions and changes. Leaked password filter files updated to HIBP v8, encoding the 847+ million unique passwords (from billions of accounts) in a 3.5 GB file. openwall.com/lists/announce…

English

2.2K

Openwall retweeté

Security BSidesLjubljana@BSidesLjubljana·13 Şub

Sponsor spotlight: @Openwall The people behind John the Ripper and decades of open-source security work. If anyone understands community-driven security, it's them. Thank you for backing #BSidesLjubljana. #InfoSec #Cybersecurity #Openwall

English

344

Openwall retweeté

NULLCON@nullcon·29 Kas

At #NullconBerlin2025, @solardiz unpacked how Linux Kernel Runtime Guard (LKRG) 1.0 brings real-time integrity checking & exploit detection to the Linux kernel, even across different versions & edge-case environments. Watch Now: youtu.be/9hQULqxFdBs?si… #LKRG #LinuxSecurity

YouTube

English

4.3K

Openwall retweeté

Solar Designer@solardiz·22 Eki

What should @Openwall's simpler vulnerability scoring system (CVSS alternative) be called? Note that we already have OVE openwall.com/ove/ as a CVE alternative, but unfortunately the OVSS acronym already has a bit of use in CS/AI for "open-vocabulary semantic segmentation".

English

1.3K

Openwall retweeté

Hash Suite@HashSuite·20 Eki

Hash Suite 4.0 (Windows) adds support for custom Python scripts as key-provider, updated wordlists to download, better high-resolution support, and should have fewer antivirus false positives. hashsuite.openwall.net/download

English

1.1K

Openwall@Openwall·21 Eyl

We've just published the slides of @solardiz's @Nullcon Berlin 2025 talk "Linux Kernel Runtime Guard (LKRG) 1.0" openwall.com/lists/announce… #LKRG #nullconBerlin2025 #nullcon

English

8.8K

Openwall retweeté

ISMG Network News@ISMG_News·17 Eyl

Strengthening Linux Security With Kernel Runtime Guard 🎯 #Linux security remains a pressing concern as vulnerabilities continue to expose critical systems. @solardiz, founder of @Openwall, and senior principal security engineer at CIQ, said Linux Kernel Runtime Guard's, or LKRG, 1.0 release brought major improvements in testing and code cleanup. Watch his full interview with @aseemjakhar: inforisktoday.com/strengthening-… #ISMGNews #ISMGStudio #cybersecurity #NullconBerlin2025 @nullcon

English

2.8K

Openwall@Openwall·2 Eyl

Linux Kernel Runtime Guard @lkrg_org 1.0.0 by @Adam_pi3 @solardiz @kerneltoast et al. is out, adds support for Linux 6.13+ (tested to 6.17-rc4), forward-edge CFI (Intel CET IBT, KCFI), ..., reduces performance overhead, shrinks the codebase by ~2500 lines. openwall.com/lists/announce…

CIQ@CtrlIQ

Heading to Nullcon Berlin 2025? @solardiz will share his LKRG expertise by taking an in-depth look at kernel hardening challenges and what it takes to protect systems in the real world. nullcon.net/berlin-2025/sp… #NullconBerlin2025 #LinuxSecurity #RLC_H

English

2.8K

Openwall retweeté

NULLCON@nullcon·29 Tem

At #NullconBerlin2025, @solardiz will walk us through the journey from LKRG’s edgy debut to its 1.0 release – complete with real-world attacks, trade-offs, nasty bugs, & some honest truths about kernel hardening. Know More: nullcon.net/berlin-2025/sp… #LKRG #LinuxSecurity

English

3.1K

Openwall@Openwall·7 Haz

End of an era: our CVSweb service turned 21 today, and was promptly retired. Our anoncvs was similarly shut down at the age of 21 two years ago, quietly.

Openwall@Openwall

All of our projects previously maintained in CVS are now in Git (yes, older ones with commit histories for ~20 years) and under the Openwall organization on GitHub. There are a total of 22 Git repositories now. openwall.com/lists/announce… github.com/openwall

English

2.6K

Openwall retweeté

CIQ@CtrlIQ·24 Nis

🔒 Enhancing LKRG: A Step Toward Stronger Security. CIQ's own Sultan Alsawaf recently contributed impactful updates to the LKRG project, fixing longstanding bugs & making it stronger & more stable than ever. Learn more here 🔗 hubs.li/Q03jDBsj0 #HPC #IT #LKRG #OpenSource #Linux

English

1.6K

Openwall retweeté

kmkz@kmkz_security·16 Nis

#MITRE #CVE is great (dead?), but @Openwall 's #OVE has been a system for vuln. tracking-ID since 2016 ! Ex: #Exim CVE-2019-13917 also has OVE ID: OVE-20190718-0006 I used both for tracking vulnerabilities since 2k16. Time to give #OVE more visibility: openwall.com/ove/

English

1.4K

Openwall retweeté

Solar Designer@solardiz·11 Mar

I'm happy to build upon and extend the ideas and approaches we had tested and proven, and expertise gained building @Openwall's security enhanced Linux distribution, now for @CtrlIQ's wider audience and in a modern context.

CIQ@CtrlIQ

📣 Exciting news from CIQ! 📣 Announcing Rocky Linux from CIQ - Hardened! Read the press release: hubs.li/Q03blcsv0 #RLCHardened #RLC #RockyLinux #CIQ #SysAdmin #ProductLaunch

English

10.5K

Openwall retweeté

Solar Designer@solardiz·3 Şub

Interview with @Adam_pi3 and me about LKRG, in English adwersarz.pl/polish-it-secu… and Polish

Adwersarz.pl@adwersarz_pl

Czas na wywiad! Rozmawiamy z @Adam_pi3 i @solardiz o LKRG (Linux Runtime Kernel Guard), które może znacznie utrudnić zhackowanie Linuxa. Co słychać i jak przebiega rozwój projektu, czy ktoś próbował skutecznie obejść LKRG? Zapraszamy do lektury! adwersarz.pl/polskie-projek…

English

6.4K

Openwall@Openwall·23 Eki

Linux Kernel Runtime Guard @lkrg_org 0.9.9 by @Adam_pi3 et al. is out, adds support for Linux 6.11+, 6.10.10+, 5.10.220+, CentOS Stream 9 (upcoming RHEL 9.5). openwall.com/lists/announce… Updated packages for Rocky Linux 9.4 and 8.10 being released sig-security.rocky.page/packages/lkrg/ @rocky_linux

English

2.7K

Openwall retweeté

Craig Rowland - Agentless Linux Security@CraigHRowland·21 Ağu

We sponsored the porting of the yescrypt Linux password hash algorithm to Go as an open source project. Read more below. This is now part of our agentless password auditor feature on Linux as well.

Openwall@Openwall

Announcing yescrypt-go, our pure Go reimplementation of yescrypt key derivation function (KDF) and password hashing scheme. Builds upon @dchest's Go scrypt, with yescrypt support added by @solardiz. Sponsored by @SandflySecurity. openwall.com/lists/announce… x.com/SandflySecurit…

English

2.5K

Openwall@Openwall·21 Ağu

Sandfly Security@SandflySecurity

Sandfly 5.1.1 features yescrypt support for our agentless Linux password auditor, new detection modules for debugger activity, and an important performance fix for the database. Read more about these new features below: sandflysecurity.com/about-us/news/…

English

4.9K

Openwall retweeté

Solar Designer@solardiz·24 May

Updated my @offensive_con keynote talk slides page to include links to our other related presentations openwall.com/presentations/…

Openwall@Openwall

Just published slides of @solardiz's @offensive_con keynote talk "Password cracking: past, present, future" openwall.com/lists/announce…

English

16.3K

Openwall@Openwall·14 May

Just published slides of @solardiz's @offensive_con keynote talk "Password cracking: past, present, future" openwall.com/lists/announce…

English

23.6K

Openwall retweeté

Open Source Security mailing list@oss_security·16 Nis

Is Open Source focused threat intelligence - Tactics, Techniques, and Procedures (TTPs), Indicators of Compromise (IOCs), exploits/rootkits/backdoors in the wild - a desirable topic for oss-security or for a separate mailing list? If separate, where to draw the line (reply)?

English

2.3K

Découvrir

@solardiz @nullcon @aseemjakhar @lkrg_org @Adam_pi3 @kerneltoast @CtrlIQ @rocky_linux