A list of popular sites and whether or not they support two factor authentication

WebAuthn rocks, but you might feel that nobody uses it.

Fortunately, you are wrong!

Visit 2FA Directory: Global or 2Fa Directory: USA for a list of popular sites and whether or not they support two-factor authentication.

This site is pure gold: it gets you up and running with WebAuthn everywhere possible as quickly as possible. When the provider doesn’t provide it them contact them demanding it.

Here is their codebase: geniuses.

Learn How To Perform Man-In-The-Middle (MITM) Phishing Attacks In Three Minutes or Less

I can’t say much more than: wow.

evilginx2 is a man-in-the-middle attack framework used for phishing login credentials along with session cookies, which in turn allows to bypass 2-factor authentication protection. – https://github.com/pberba/evilginx2

Seriously great learning resource and kudos to Go Lang!

Just A Few Password Standards That Every Techie Must Know

If you don’t know them, then learn them.

Caffeinate → ruminate → schedule meeting → gesticulate → profit!

Just kidding, it is very valuable.

i found a piece of metal with 24 words on it

Question:

You open your eyes. A metal plate sits on the table before you. You determine that it has 24 words stamped into by observation and deduction. It is otherwise blank. How long does it take for you to figure out what it is?

Continue reading “i found a piece of metal with 24 words on it”

Unconditional Positive Regard Is Worth It

Unconditional positive regard

is the basic acceptance and support of a person regardless of what the person says or does.

It gives people

the best possible conditions for personal growth.

The practice

presents as Hope—an optimism that something good and positive will develop to bring about constructive change.02:38PM

Additionally, we mutually nurture our growth by practicing Unconditional Positive Regard because

This is an attitude of grace, an attitude that values us even knowing our failings. It is a profound relief to drop our pretences, confess our worst feelings, and discover that we are still accepted. In a good marriage, a close family, or an intimate friendship, we are free to be spontaneous without fearing the loss of others’ esteem.

Research identifies two best Bitcoin hardware wallets Coldcard Mk3 and BitBox02

After spending about fifty hours researching Bitcoin hardware wallets via:

  • Product documentation
  • Twitter feeds
  • YouTube videos
  • Podcasts
  • Reviews and comparisons
  • Considerations of desired features

My conclusion is that:

Conclusion follows

Very long term cold wallet with single passphrase generation

Make it easier to create a wallet by requiring only:

  1. A good passphrase for it along with a Salt
  2. A WarpWallet implementation to rebuild it.

Not BIP-39 with a passphrase and yet

“as secure as BIP39 although much more convenient and user friendly.” ―Bitcoin Glossary#WarpWallet

Interesting idea gone into great detail here.