sha1collisiondetection
go-mtree
sha1collisiondetection | go-mtree | |
---|---|---|
7 | 7 | |
1,291 | 73 | |
- | - | |
0.0 | 5.5 | |
17 days ago | about 2 months ago | |
C | Go | |
GNU General Public License v3.0 or later | BSD 3-clause "New" or "Revised" License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
sha1collisiondetection
- ScrapScript: In-Development Language with Some Cool Features (Not Mine)
-
Is it ever possible for 2 commits to have the same hash?
It's far more likely that somebody would try to artificially create a collision. There is code in git to try to detect this https://github.com/cr-marcstevens/sha1collisiondetection
-
C compiler in .NET
First milestone is to be able to compile this code https://github.com/cr-marcstevens/sha1collisiondetection/ using Cesium.
-
Hash collisions and exploitations – Instant MD5 collision
For sha1, people made a system where you can detect the patterns that lead to a collision, and (for example) replace it with a different hash only for inputs that would be a problem. https://github.com/cr-marcstevens/sha1collisiondetection i think git does this to eek more life out of sha1.
I imagine you could take a similar counter-cryptnalysis approach to md5. (I am out of my depth here, so there could be reasons this doesnt work for md5 im unaware of)
- Library and command line tool to detect SHA-1 collisions (2017)
-
Apart from using exec.Command, is there a better way to check version of any external system app in /usr/local/bin like fzf or nodejs using go?
I'm saying that Git is on my side of opinion, that's why Git added collision detection (hardened SHA1) and added support for more stronger hashes and Git's goal is transition out of SHA1. The same is with fossil, that added hardened SHA1 since 2017 and by default uses SHA3 for new repositories.
- SHA-1 'Fully and Practically Broken' by New Collision
go-mtree
-
File Integrity and checksums
go-mtree can take care about it. It calculates files hashes and you can use it to compare it later.
-
Monitoring files for changes and corruption
There is old unix utility called 'mtree' (there also is fully binary static compatible with mtree version on github go-mtree ) to check integrity of files. Another solution is - ZFS that do it dynamically
-
Creating a file with the name as the hash of another file
There is FreeBSD utility called mtree that also ported to Linux systems, that walk specified filesystem and creates hashes for all found content which later can be used to check integrity against corruption/modification. If your distribution of choice doesn't have ported version of mtree, you can use multiplatform version go-mtree that replicate the same workflow
-
What is the coolest Go open source projects you have seen?
go-mtree # Integrity
-
[App Discovery] Favorite and Underrated Self Hosted App
go-mtree: portable implementation of well known utility mtree) that can be used to save/test file's integrity as well directory structures. Open source, portable across most popular operation systems, no dependencies, single executable file.
-
Checking backup integrity
There is standard utility for integrity testing mtree) that ported to linux too. Also there is multi platform version of upstream written in Go (read works everywhere from one single file) that called go-mtree
-
Apart from using exec.Command, is there a better way to check version of any external system app in /usr/local/bin like fzf or nodejs using go?
SHA1 is dead, and there is a better dedicated tool mtree(8) for such tasks (which by the way exists as implementation in Go as go-mtree ) but I believe OP wants to check versions (like fzf --version) not an integrity of files
What are some alternatives?
pocorgtfo - a "Proof of Concept or GTFO" mirror with an extensive index with also whole issues or individual articles as clean PDFs.
gluetun - VPN client in a thin Docker container for multiple VPN providers, written in Go, and using OpenVPN or Wireguard, DNS over TLS, with a few proxy servers built-in.
smhasher - Hash function quality and speed tests
HedgeDoc - HedgeDoc - Ideas grow better together
collisions - Hash collisions and exploitations
go-tarfs - Read a tar file contents using go1.16 io/fs abstraction
OrangeC - OrangeC Compiler And Tool Chain
Kavita - Kavita is a fast, feature rich, cross platform reading server. Built with the goal of being a full solution for all your reading needs. Setup your own server and share your reading collection with your friends and family.