extract_otp_secrets
Protobuf
extract_otp_secrets | Protobuf | |
---|---|---|
10 | 175 | |
990 | 63,843 | |
- | 0.8% | |
8.5 | 10.0 | |
3 days ago | 6 days ago | |
Python | C++ | |
GNU General Public License v3.0 only | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
extract_otp_secrets
-
Show HN: AuthWin – Authenticator App for Windows
This library uses the GPL v3 license: https://github.com/scito/extract_otp_secrets?tab=GPL-3.0-1-o...
Your options are to either go open-source or remove the library.
-
Google Online Security Blog: Google Authenticator now supports Google Account synchronization
I used https://github.com/scito/extract_otp_secrets to export the keys from the Google Authenticator and imported them manually into Bitwarden.
- Migrating from GA to YA
-
Tell HN: It is impossible to disable Google 2FA using backup codes
You can extract plaintext secret keys from google authenticator app and store them in user friendly format/password manager
https://github.com/scito/extract_otp_secrets
-
Fluent GlowUI Design desktop 2FA client for Windows 11/10 on Store for free & open source
you can actually export them using tools like this one
-
Good enough security?
I recently switched from Google Authenticator to Raivo and I used the export option in google auth and this tool to get the seeds.
-
how to transfer all my 2FA codes from google authenticator to authy
Getting the code out of Google Authenticator is not trival. If you are good with python, someone has written a script to do that https://scito.ch/content/extract-secret-keys-google-authenticator-qr-export. However, with 17, you may be better off just doing it manually.
-
Is it possible in Yubico Authenticator App to scan the exported QR codes from Google Authenticator App?
Try this: https://scito.ch/content/extract-secret-keys-google-authenticator-qr-export
-
Ask HN: Why is today's Internet experience so user hostile?
I was able to take a screenshot of GAuth backups on iPhone using the button hotkeys(IE: Power+Volume up). I setup a container that runs a go version of GAuth and used a python script to decrypt the (decrypted QR code) backup keys. Then I backed up the encrypted keyfile to offline disk, encrypted the container backup and deleted it from the hypervisor.
https://github.com/pcarrier/gauth
https://github.com/scito/extract_otp_secret_keys
-
Google auth/ Authy transfers to yubikey
I used the "zbarimg" command line tool to get the inputs for the following Python tool (see README for instructions) from each QR code exported from Google Authenticator. https://github.com/scito/extract_otp_secret_keys
Protobuf
-
Consistent Hashing: An Overview and Implementation in Golang
protobuf: go get -u google.golang.org/protobuf/proto
-
Hitting every branch on the way down
It's because they changed the versioning format: https://github.com/protocolbuffers/protobuf/releases?page=5
But I suppose old version still receive bugfixes.
-
Reverse Engineering Protobuf Definitions from Compiled Binaries
For at least 4 years protobuf has had decent support for self-describing messages (very similar to avro) as well as reflection
https://github.com/protocolbuffers/protobuf/blob/main/src/go...
Xgooglers trying to make do on the cheap will just create a Union of all their messages and include the message def in a self-describing message pattern. Super-sensitive network I/O can elide the message def (empty buffer) and any for RecordIO clone well file compression takes care of the definition.
Definitely useful to be able to dig out old defs but protobuf maintainers have surprisingly added useful features so you don’t have to.
Bonus points tho for extracting the protobuf defs that e.g. Apple bakes into their binaries.
- Show HN: AuthWin – Authenticator App for Windows
-
Create Production-Ready SDKs With gRPC Gateway
gRPC Gateway is a protoc plugin that reads gRPC service definitions and generates a reverse proxy server that translates a RESTful JSON API into gRPC.
-
Create Production-Ready SDKs with Goa
To use more recent versions of protoc in future applications, you can download them from the Protobuf repository.
-
Roll your own auth with Rust and Protobuf
Use the Protobuf CLI protoc and the plugin protoc-gen-tonic.
-
Add extra stuff to a “standard” encoding? Sure, why not
> didn’t find any standard for separating protobuf messages
The fact that protobufs are not self-delimiting is an endless source of frustration, but I know of 2 standards:
- SerializeDelimited* is part of the protobuf library: https://github.com/protocolbuffers/protobuf/blob/main/src/go...
- Riegeli is "a file format for storing a sequence of string records, typically serialized protocol buffers. It supports dense compression, fast decoding, seeking, detection and optional skipping of data corruption, filtering of proto message fields for even faster decoding, and parallel encoding": https://github.com/google/riegeli
-
Block YouTube Ads on AppleTV by Decrypting and Stripping Ads from Profobuf
It looks like it is in fact universal. Just glancing at the code here, it looks like the tool searches any arbitrary file for bytes that look like encoded protobuf descriptors, specifically looking for bytes that are plausibly the beginning of a FileDescriptorProto message defined here:
https://github.com/protocolbuffers/protobuf/blob/main/src/go...
This takes advantage of the fact that such descriptors are commonly compiled into programs that use protobuf. The descriptors are usually embedded as constant byte arrays. That said, not all protobuf implementations embed the descriptors and those that do often have an option to inhibit such embedding (at the expense of losing some dynamic introspection features).
- How to learn to use protoc in 21 easily infuriating steps
What are some alternatives?
totp-cli - A cli-based pass-backed TOTP app.
FlatBuffers - FlatBuffers: Memory Efficient Serialization Library
otpauth-migration-decoder - Convert otpauth-migration to plain link
SBE - Simple Binary Encoding (SBE) - High Performance Message Codec
android-otp-extractor - Extracts OTP tokens from rooted Android devices
MessagePack - MessagePack implementation for C and C++ / msgpack.org[C/C++]
google-authenticator-exporter - Get the TOTP secrets exported by Google Authenticator
cereal - A C++11 library for serialization
scrcpy - Display and control your Android device
Apache Parquet - Apache Parquet
twrpdtgen - A Python library/script to automatically generate TWRP-compatible device tree from a boot/recovery image
Bond - Bond is a cross-platform framework for working with schematized data. It supports cross-language de/serialization and powerful generic mechanisms for efficiently manipulating data. Bond is broadly used at Microsoft in high scale services.