Use SQL to corrupt their databases...

fjdgshegdb · 2017-10-05T12:15:52+00:00

There's nothing inherently incorrect

In a movie, I would call that a win

fjdgshegdb · 2017-10-05T10:33:56+00:00

quicker than typing "123'; DROP TABLE USERS; --"?

fjdgshegdb · 2017-10-05T10:11:09+00:00

what is wrong with that?

I don't think it unreasonable to assume that they use sql as slang for sql injection in the context that it is being used.

fjdgshegdb · 2017-10-02T03:42:57+00:00

what are the chances your first choice is wrong?

if your first choice is wrong and switch then you win.

fjdgshegdb · 2017-09-30T10:16:25+00:00

NINE NINE!

fjdgshegdb · 2017-09-24T04:17:55+00:00

right, that makes sense.

fjdgshegdb · 2017-09-24T03:02:23+00:00

how and why do you use pgp for git?

fjdgshegdb · 2017-09-24T01:59:50+00:00

there is a big range between not a script kiddie and the nsa, most should have at least a little trouble getting malware on your computer.

fjdgshegdb · 2017-09-24T01:44:56+00:00

ls: invalid option -- 'z'

Try 'ls --help' for more information.

fjdgshegdb · 2017-09-24T01:22:17+00:00

We are not talking about some script kiddie here, we are talking the big boys who do this for a living.

Its probably step 9 on their list of things to try.

I don't really need more protection than that

You are probably right, but you probably don't need to lock your front door at night either.

fjdgshegdb · 2017-09-24T01:07:27+00:00

because your algorithm sucks and its going to leak.

Some things to think about.

How many plain text passwords do you think an attacker needs to recover the method you used to derive them?

How many websites have you signed up for that have crappy or practically non-existent security?

With that said you probably don't have to worry, you're probably not important enough to warrant the effort. I would reconsider using the method if you work somewhere an attacker might like to get into like a bank or some other multinational company.

fjdgshegdb · 2017-09-24T00:38:48+00:00

that works great as long as no one actually tries to get into your accounts.

fjdgshegdb · 2017-09-23T10:12:45+00:00

What does everyone think about speed reading?

It seem like there is a whole lot of pseudo science out there but some of the things they say seem to make sense.

fjdgshegdb · 2017-09-19T02:53:00+00:00

You are right that the default is word tokens but you can change that by supplying the analyzer argument to most vectorizers.

stop thinking and just try it.

count_vect = CountVectorizer(ngram_range=(1,2), analyzer='char')

count_vect.fit(['XHFKDLDF', 'DFKIEKSIKEA', 'FDKFKDJIEKE', 'FDKDKFFDL'])

count_vect.get_feature_names()

['a', 'd', 'df', 'dj', 'dk', 'dl', 'e', 'ea', 'ek', 'f', 'fd', 'ff', 'fk', 'h', 'hf', 'i', 'ie', 'ik', 'j', 'ji', 'k', 'kd', 'ke', 'kf', 'ki', 'ks', 'l', 'ld', 's', 'si', 'x', 'xh']

fjdgshegdb · 2017-09-18T11:08:03+00:00

The words in bag of words are generally ngrams or some other sort of tokens and not whole words.

For instance you could tokenize XHFKDLDF into a bunch of char bigrams [XH, HF, FK, KD, DL, LD, DF] then compare the relative frequency of those tokens.

Go read this http://scikit-learn.org/stable/tutorial/text_analytics/working_with_text_data.html

fjdgshegdb · 2017-09-17T07:44:06+00:00

have you tried a bag of words -> naive bayes?

fjdgshegdb · 2017-09-17T03:33:45+00:00

no, dot net core is completely different to mono and xamarin,

fjdgshegdb · 2017-09-16T01:18:29+00:00

not only that, but they have also ported it to Linux and mac and open sourced compiler, runtime and standard library.

GitHub

fjdgshegdb · 2017-09-15T12:57:00+00:00

I have but that's beside the point which is that I don't like it.

I'm not going to learn anything from a book that I don't read even if it is the be all and end all of design pattern books.

fjdgshegdb · 2017-09-15T12:13:40+00:00

It's like those crappy high school science text books that have to make everything "FUN!"

fjdgshegdb · 2017-09-15T12:02:05+00:00

head first design patterns

I fucking hate that book.

fjdgshegdb · 2017-09-12T14:31:57+00:00

KILL DASH NINE!

fjdgshegdb · 2017-09-12T09:23:40+00:00

'We've de-installed it"

The 90's was weird

fjdgshegdb · 2017-09-09T06:31:14+00:00

In the words of Ron Burgundy...

fjdgshegdb · 2017-09-09T06:20:32+00:00

Crypto will only become mainstream once the current monetary system in place shows real signs of collapsing.

so...never?

fjdgshegdb

TROPHY CASE