{"id":15075,"date":"2023-04-13T07:47:42","date_gmt":"2023-04-13T07:47:42","guid":{"rendered":"https:\/\/www.dfi.ch\/?p=15075"},"modified":"2023-04-13T15:03:12","modified_gmt":"2023-04-13T15:03:12","slug":"blocking-leaked-passwords","status":"publish","type":"post","link":"https:\/\/www.cheops-technology.ch\/en\/blocking-leaked-passwords\/","title":{"rendered":"Blocking leaked passwords with IntelligenceX and ModSecurity"},"content":{"rendered":"\t\t<div data-elementor-type=\"wp-post\" data-elementor-id=\"15075\" class=\"elementor elementor-15075\">\n\t\t\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-f0df4b4 ot-traditional elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"f0df4b4\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-79e92ee ot-flex-column-vertical\" data-id=\"79e92ee\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-9b79ba1 elementor-widget elementor-widget-heading\" data-id=\"9b79ba1\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h2 class=\"elementor-heading-title elementor-size-default\">Introduction<\/h2>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-a4bd404 elementor-widget elementor-widget-spacer\" data-id=\"a4bd404\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"spacer.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-spacer\">\n\t\t\t<div class=\"elementor-spacer-inner\"><\/div>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-6743b1c elementor-widget elementor-widget-heading\" data-id=\"6743b1c\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h3 class=\"elementor-heading-title elementor-size-default\">Background and objectives<\/h3>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-6b438e9 elementor-widget elementor-widget-text-editor\" data-id=\"6b438e9\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p style=\"text-align: justify;\">Data leaks are becoming more and more numerous and the data contained more and more critical (PHI, PII, Password, \u2026.). Although necessary, the use of a password manager alone is no longer sufficient. Breaches can come from many sources, and even from the password manager itself.<\/p><p style=\"text-align: justify;\">It is therefore essential to monitor the various data leaks concerning you, and to take automatic remediation or mitigation measures \u2013 trust does not exclude control. For this, two tools are available: ModSecurity and IntelligenceX.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-137c83f elementor-widget elementor-widget-spacer\" data-id=\"137c83f\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"spacer.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-spacer\">\n\t\t\t<div class=\"elementor-spacer-inner\"><\/div>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-4ab663b elementor-widget elementor-widget-heading\" data-id=\"4ab663b\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h3 class=\"elementor-heading-title elementor-size-default\">IT tools presentation<\/h3>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-781b503 elementor-widget elementor-widget-spacer\" data-id=\"781b503\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"spacer.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-spacer\">\n\t\t\t<div class=\"elementor-spacer-inner\"><\/div>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<section class=\"elementor-section elementor-inner-section elementor-element elementor-element-08e7d49 ot-traditional elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"08e7d49\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-50 elementor-inner-column elementor-element elementor-element-2e28498 ot-flex-column-vertical\" data-id=\"2e28498\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-244ec93 elementor-widget elementor-widget-image\" data-id=\"244ec93\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"image.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<img decoding=\"async\" width=\"300\" height=\"78\" src=\"https:\/\/www.cheops-technology.ch\/wp-content\/uploads\/2023\/03\/modsecurity-300x78.png\" class=\"attachment-medium size-medium wp-image-14543\" alt=\"\" srcset=\"https:\/\/www.cheops-technology.ch\/wp-content\/uploads\/2023\/03\/modsecurity-300x78.png 300w, https:\/\/www.cheops-technology.ch\/wp-content\/uploads\/2023\/03\/modsecurity-1024x267.png 1024w, https:\/\/www.cheops-technology.ch\/wp-content\/uploads\/2023\/03\/modsecurity-768x201.png 768w, https:\/\/www.cheops-technology.ch\/wp-content\/uploads\/2023\/03\/modsecurity-1536x401.png 1536w, https:\/\/www.cheops-technology.ch\/wp-content\/uploads\/2023\/03\/modsecurity-720x188.png 720w, https:\/\/www.cheops-technology.ch\/wp-content\/uploads\/2023\/03\/modsecurity.png 1616w\" sizes=\"(max-width: 300px) 100vw, 300px\" \/>\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t<div class=\"elementor-column elementor-col-50 elementor-inner-column elementor-element elementor-element-78fddfc ot-flex-column-vertical\" data-id=\"78fddfc\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-a7e6192 elementor-widget elementor-widget-text-editor\" data-id=\"a7e6192\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p style=\"text-align: left;\"><span style=\"color: #25586d;\"><b>ModSecurity<\/b> is an application firewall (WAF), whose role is to filter incoming requests to an HTTP server. It comes in the form of an Apache, Nginx or IIS module that analyzes incoming requests by using a database of rules for requests considered undesirable.<\/span><\/p><p style=\"text-align: right;\"><a style=\"font-size: 10px; font-style: italic;\" href=\"https:\/\/en.wikipedia.org\/wiki\/ModSecurity\" target=\"_blank\" rel=\"noopener\">Source: Wikipedia<\/a><\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<div class=\"elementor-element elementor-element-8c5c5aa elementor-widget elementor-widget-spacer\" data-id=\"8c5c5aa\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"spacer.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-spacer\">\n\t\t\t<div class=\"elementor-spacer-inner\"><\/div>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<section class=\"elementor-section elementor-inner-section elementor-element elementor-element-73c2ce3 ot-traditional elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"73c2ce3\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-50 elementor-inner-column elementor-element elementor-element-1959c41 ot-flex-column-vertical\" data-id=\"1959c41\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-3743868 elementor-widget elementor-widget-image\" data-id=\"3743868\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"image.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<img decoding=\"async\" width=\"192\" height=\"41\" src=\"https:\/\/www.cheops-technology.ch\/wp-content\/uploads\/2023\/03\/IntelligenceX.png\" class=\"attachment-medium size-medium wp-image-14556\" alt=\"\" \/>\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t<div class=\"elementor-column elementor-col-50 elementor-inner-column elementor-element elementor-element-5cdc978 ot-flex-column-vertical\" data-id=\"5cdc978\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-bf25650 elementor-widget elementor-widget-text-editor\" data-id=\"bf25650\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p style=\"text-align: justify;\"><strong><a href=\"https:\/\/intelx.io\/\" target=\"_blank\" rel=\"noopener\">Intelligence X<\/a><\/strong> is an independent European technology company, its mission is to develop and maintain the search engine and data archive. It searches in places such as the darknet, document sharing platforms, whois data, public data leaks and more.<\/p><p style=\"text-align: right; font-style: italic; font-size: 10px;\"><a href=\"https:\/\/intelx.io\/about\" target=\"_blank\" rel=\"noopener\">Source: Intelx.io<\/a><\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<div class=\"elementor-element elementor-element-0b02dba elementor-widget elementor-widget-spacer\" data-id=\"0b02dba\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"spacer.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-spacer\">\n\t\t\t<div class=\"elementor-spacer-inner\"><\/div>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-328d80e elementor-widget elementor-widget-heading\" data-id=\"328d80e\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h3 class=\"elementor-heading-title elementor-size-default\">Functional diagram<\/h3>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-ba92885 elementor-widget elementor-widget-image\" data-id=\"ba92885\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"image.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<img fetchpriority=\"high\" decoding=\"async\" width=\"768\" height=\"482\" src=\"https:\/\/www.cheops-technology.ch\/wp-content\/uploads\/2023\/03\/principe-768x482.png\" class=\"attachment-medium_large size-medium_large wp-image-14538\" alt=\"\" srcset=\"https:\/\/www.cheops-technology.ch\/wp-content\/uploads\/2023\/03\/principe-768x482.png 768w, https:\/\/www.cheops-technology.ch\/wp-content\/uploads\/2023\/03\/principe-300x188.png 300w, https:\/\/www.cheops-technology.ch\/wp-content\/uploads\/2023\/03\/principe-1024x643.png 1024w, https:\/\/www.cheops-technology.ch\/wp-content\/uploads\/2023\/03\/principe-1536x965.png 1536w, https:\/\/www.cheops-technology.ch\/wp-content\/uploads\/2023\/03\/principe-2048x1286.png 2048w, https:\/\/www.cheops-technology.ch\/wp-content\/uploads\/2023\/03\/principe-720x452.png 720w\" sizes=\"(max-width: 768px) 100vw, 768px\" \/>\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-206192b ot-traditional elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"206192b\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-1fda42e ot-flex-column-vertical\" data-id=\"1fda42e\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-fa46d5a elementor-widget elementor-widget-heading\" data-id=\"fa46d5a\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h2 class=\"elementor-heading-title elementor-size-default\">Automatic recovery of leaked passwords<\/h2>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-cb33294 elementor-widget elementor-widget-spacer\" data-id=\"cb33294\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"spacer.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-spacer\">\n\t\t\t<div class=\"elementor-spacer-inner\"><\/div>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-6c261ea elementor-widget elementor-widget-heading\" data-id=\"6c261ea\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h3 class=\"elementor-heading-title elementor-size-default\">Description\u200b<\/h3>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-9ec140d elementor-widget elementor-widget-text-editor\" data-id=\"9ec140d\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p>The objectives of the python script are to recover all the leaked and known passwords of the IntelligenceX platform.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-19528ef elementor-widget elementor-widget-spacer\" data-id=\"19528ef\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"spacer.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-spacer\">\n\t\t\t<div class=\"elementor-spacer-inner\"><\/div>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-b54bb37 elementor-widget elementor-widget-heading\" data-id=\"b54bb37\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h3 class=\"elementor-heading-title elementor-size-default\">Configuration<\/h3>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-666653c elementor-widget elementor-widget-text-editor\" data-id=\"666653c\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<pre style=\"line-height: 1.71429;\"># touch \/etc\/httpd\/modsecurity.d\/leaked_password.txt<br \/># vi \/opt\/intelx_ModSec.py<\/pre>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-859047b elementor-widget elementor-widget-text-editor\" data-id=\"859047b\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<pre># -*- coding: utf-8 -*-<br \/>import http.client<br \/>import json<br \/>import ssl<br \/>import requests<br \/>import os<br \/>import platform<br \/><br \/>from requests.packages.urllib3.exceptions import InsecureRequestWarning<br \/>requests.packages.urllib3.disable_warnings(InsecureRequestWarning)<br \/><br \/>### Variables<br \/>API=\"*****\"<br \/>INTELX_URL=\"3.intelx.io\"<br \/>DOMAIN=\"mydomain.tld\"<br \/>PASSWD_FILE=\"\/etc\/httpd\/modsecurity.d\/leaked_password.txt\"<br \/><br \/>def reloadHttp():<br \/>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 ### Dirty, but we're fine with it<br \/>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 configtest = os.system('sudo service httpd configtest')<br \/>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 if configtest == 0:<br \/>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 os.system('sudo service httpd reload')<br \/><br \/>def main():<br \/>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 ### Init password list<br \/>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 myPassword = []<br \/><br \/>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 ### Get all password<br \/>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 url = 'https:\/\/'+INTELX_URL+'\/accounts\/1?selector='+DOMAIN+'&limit=1000000'<br \/><br \/>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 headers = {<br \/>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 'X-Key': API<br \/>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 }<br \/><br \/>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 response = requests.request(\"GET\", url, headers=headers, verify=False)<br \/>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 intelx_result = json.loads(response.text.encode('utf8'))<br \/><br \/>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 for leak in intelx_result:<br \/>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 if leak[\"passwordtype\"] == \"Plaintext\":<br \/>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 if leak[\"password\"] not in myPassword:<br \/>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 myPassword.append(leak[\"password\"])<br \/><br \/>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 myPassword_sorted = sorted(myPassword)<br \/><br \/>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 ### Get all password in current file<br \/>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 with open(PASSWD_FILE) as f:<br \/>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 lines = f.read().splitlines()<br \/><br \/>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 ### Compare both lists for any changes<br \/>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 temp_1 = set(myPassword_sorted)<br \/>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 temp_2 = set(lines)<br \/>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 if temp_1 != temp_2:<br \/>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 with open(PASSWD_FILE, \"w\") as fp:<br \/>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 \u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0for password in myPassword_sorted:<br \/>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 fp.write(\"%s\\n\" % password)<br \/>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 reloadHttp()<br \/><br \/>if __name__ == '__main__':<br \/>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 main()<\/pre>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-f089c05 elementor-widget elementor-widget-spacer\" data-id=\"f089c05\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"spacer.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-spacer\">\n\t\t\t<div class=\"elementor-spacer-inner\"><\/div>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-64c7335 elementor-widget elementor-widget-heading\" data-id=\"64c7335\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h3 class=\"elementor-heading-title elementor-size-default\">Automatisation<\/h3>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-a7ca9f6 elementor-widget elementor-widget-text-editor\" data-id=\"a7ca9f6\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<pre style=\"line-height: 1.71429; color: #7a7a7a;\"># crontab -e<br \/>00\u00a0\u00a0\u00a0\u00a0\u00a0 00\u00a0\u00a0\u00a0\u00a0\u00a0 *\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 *\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 *\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 python3 \/opt\/intelx_ModSec.py > \/dev\/null 2>&1<\/pre>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-41c44d2 elementor-widget elementor-widget-spacer\" data-id=\"41c44d2\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"spacer.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-spacer\">\n\t\t\t<div class=\"elementor-spacer-inner\"><\/div>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-857e4d8 ot-traditional elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"857e4d8\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-2a65f81 ot-flex-column-vertical\" data-id=\"2a65f81\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-e065c47 elementor-widget elementor-widget-heading\" data-id=\"e065c47\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h2 class=\"elementor-heading-title elementor-size-default\">ModSecurity setup<\/h2>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-34fe6ff elementor-widget elementor-widget-spacer\" data-id=\"34fe6ff\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"spacer.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-spacer\">\n\t\t\t<div class=\"elementor-spacer-inner\"><\/div>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-1de64f2 elementor-widget elementor-widget-heading\" data-id=\"1de64f2\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h3 class=\"elementor-heading-title elementor-size-default\">Description\u200b<\/h3>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-f494409 elementor-widget elementor-widget-text-editor\" data-id=\"f494409\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p style=\"color: #7a7a7a;\">We will configure ModSecurity to fetch the password from the database of passwords retrieved from IntelligenceX via the script. The rule below does :<\/p><ul style=\"color: #7a7a7a;\"><li style=\"list-style-type: none;\"><ul><li>Fires if the URL called is \u201c\/secure\/login\u201d and the method is POST<\/li><li>Compares the value of the Password argument to our file<\/li><\/ul><\/li><\/ul>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-4d630cd elementor-widget elementor-widget-spacer\" data-id=\"4d630cd\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"spacer.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-spacer\">\n\t\t\t<div class=\"elementor-spacer-inner\"><\/div>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-1e3d409 elementor-widget elementor-widget-heading\" data-id=\"1e3d409\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h3 class=\"elementor-heading-title elementor-size-default\">Configuration<\/h3>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-ddb59df elementor-widget elementor-widget-text-editor\" data-id=\"ddb59df\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<pre style=\"line-height: 1.71429; color: #7a7a7a;\">### 120 - Sec rule to block leaked password usage<br \/>SecRule REQUEST_URI ^\\\/secure\\\/login \"chain,phase:2,t:none,t:lowercase,t:normalisePath,t:urlDecode,t:urlDecodeUni,t:utf8toUnicode,id:120,log,deny,msg:'Leaked Password Usage'\"<br \/>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 SecRule REQUEST_METHOD \"^POST\" \"chain,t:none\"<br \/> \u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 SecRule ARGS:Password \"@pmFromFile \/etc\/httpd\/modsecurity.d\/leaked_password.txt\" \"t:none\"<\/pre>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-d4ff062 elementor-widget elementor-widget-spacer\" data-id=\"d4ff062\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"spacer.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-spacer\">\n\t\t\t<div class=\"elementor-spacer-inner\"><\/div>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-f5995cf ot-traditional elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"f5995cf\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-00e0925 ot-flex-column-vertical\" data-id=\"00e0925\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-e884b61 elementor-widget elementor-widget-heading\" data-id=\"e884b61\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h2 class=\"elementor-heading-title elementor-size-default\">Functional validation<\/h2>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-1c5b6f2 elementor-widget elementor-widget-spacer\" data-id=\"1c5b6f2\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"spacer.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-spacer\">\n\t\t\t<div class=\"elementor-spacer-inner\"><\/div>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-ce9c796 elementor-widget elementor-widget-heading\" data-id=\"ce9c796\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h3 class=\"elementor-heading-title elementor-size-default\">BURP<\/h3>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-30564ef elementor-widget elementor-widget-spacer\" data-id=\"30564ef\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"spacer.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-spacer\">\n\t\t\t<div class=\"elementor-spacer-inner\"><\/div>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-4832676 elementor-widget elementor-widget-image\" data-id=\"4832676\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"image.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"390\" src=\"https:\/\/www.cheops-technology.ch\/wp-content\/uploads\/2023\/03\/Burp_ModSecurity-1024x390.png\" class=\"attachment-large size-large wp-image-14576\" alt=\"\" srcset=\"https:\/\/www.cheops-technology.ch\/wp-content\/uploads\/2023\/03\/Burp_ModSecurity-1024x390.png 1024w, https:\/\/www.cheops-technology.ch\/wp-content\/uploads\/2023\/03\/Burp_ModSecurity-300x114.png 300w, https:\/\/www.cheops-technology.ch\/wp-content\/uploads\/2023\/03\/Burp_ModSecurity-768x292.png 768w, https:\/\/www.cheops-technology.ch\/wp-content\/uploads\/2023\/03\/Burp_ModSecurity-720x274.png 720w, https:\/\/www.cheops-technology.ch\/wp-content\/uploads\/2023\/03\/Burp_ModSecurity.png 1246w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/>\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-e0a0112 elementor-widget elementor-widget-spacer\" data-id=\"e0a0112\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"spacer.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-spacer\">\n\t\t\t<div class=\"elementor-spacer-inner\"><\/div>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-cc3fcbc elementor-widget elementor-widget-heading\" data-id=\"cc3fcbc\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h3 class=\"elementor-heading-title elementor-size-default\">ModSecurity logs<\/h3>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-40f7bd8 elementor-widget elementor-widget-spacer\" data-id=\"40f7bd8\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"spacer.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-spacer\">\n\t\t\t<div class=\"elementor-spacer-inner\"><\/div>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-17d9de9 elementor-widget elementor-widget-image\" data-id=\"17d9de9\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"image.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"111\" src=\"https:\/\/www.cheops-technology.ch\/wp-content\/uploads\/2023\/03\/Logs_ModSecurity-1024x111.png\" class=\"attachment-large size-large wp-image-14578\" alt=\"\" srcset=\"https:\/\/www.cheops-technology.ch\/wp-content\/uploads\/2023\/03\/Logs_ModSecurity-1024x111.png 1024w, https:\/\/www.cheops-technology.ch\/wp-content\/uploads\/2023\/03\/Logs_ModSecurity-300x33.png 300w, https:\/\/www.cheops-technology.ch\/wp-content\/uploads\/2023\/03\/Logs_ModSecurity-768x83.png 768w, https:\/\/www.cheops-technology.ch\/wp-content\/uploads\/2023\/03\/Logs_ModSecurity-720x78.png 720w, https:\/\/www.cheops-technology.ch\/wp-content\/uploads\/2023\/03\/Logs_ModSecurity.png 1281w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/>\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-8923354 elementor-widget elementor-widget-spacer\" data-id=\"8923354\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"spacer.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-spacer\">\n\t\t\t<div class=\"elementor-spacer-inner\"><\/div>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-789fa77 ot-traditional elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"789fa77\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-b38ead7 ot-flex-column-vertical\" data-id=\"b38ead7\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-6462533 elementor-widget elementor-widget-heading\" data-id=\"6462533\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h2 class=\"elementor-heading-title elementor-size-default\">Conclusion<\/h2>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-c3d7340 elementor-widget elementor-widget-text-editor\" data-id=\"c3d7340\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p style=\"\"><font color=\"#7a7a7a\">The integration of the information present in the data leaks and collected by IntelligenceX is made very simple thanks to the API. The script can also be modified to connect to various other leak sources and integrated into a WAF using the same principle.<\/font><\/p>\n<p style=\"\"><font color=\"#7a7a7a\">In addition, ModSecurity logs can be integrated into your preferred SIEM or SOAR solution to trigger actions when this rule is triggered:<\/font><\/p>\n<ul style=\"\">\n<li style=\"list-style-type: none;\">\n<ul style=\"\">\n<li style=\"color: rgb(122, 122, 122);\">SOC alert<\/li>\n<li style=\"\"><font color=\"#7a7a7a\">TIP Enrichment<\/font><\/li><li style=\"\"><font color=\"#7a7a7a\"><span style=\"font-weight: var( --e-global-typography-text-font-weight );\">Etc<\/span><\/font><br><\/li>\n<\/ul>\n<\/li>\n<\/ul>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-1535170 elementor-widget elementor-widget-spacer\" data-id=\"1535170\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"spacer.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-spacer\">\n\t\t\t<div class=\"elementor-spacer-inner\"><\/div>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-f9fa57c elementor-widget elementor-widget-heading\" data-id=\"f9fa57c\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h3 class=\"elementor-heading-title elementor-size-default\">Use in the context of a SOC\/CSIRT<\/h3>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-3cfbdf0 elementor-widget elementor-widget-spacer\" data-id=\"3cfbdf0\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"spacer.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-spacer\">\n\t\t\t<div class=\"elementor-spacer-inner\"><\/div>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-e1af9ab elementor-widget elementor-widget-image\" data-id=\"e1af9ab\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"image.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"829\" src=\"https:\/\/www.cheops-technology.ch\/wp-content\/uploads\/2023\/03\/Dessin1-1024x829.png\" class=\"attachment-large size-large wp-image-14580\" alt=\"\" srcset=\"https:\/\/www.cheops-technology.ch\/wp-content\/uploads\/2023\/03\/Dessin1-1024x829.png 1024w, https:\/\/www.cheops-technology.ch\/wp-content\/uploads\/2023\/03\/Dessin1-300x243.png 300w, https:\/\/www.cheops-technology.ch\/wp-content\/uploads\/2023\/03\/Dessin1-768x622.png 768w, https:\/\/www.cheops-technology.ch\/wp-content\/uploads\/2023\/03\/Dessin1-1536x1243.png 1536w, https:\/\/www.cheops-technology.ch\/wp-content\/uploads\/2023\/03\/Dessin1-2048x1658.png 2048w, https:\/\/www.cheops-technology.ch\/wp-content\/uploads\/2023\/03\/Dessin1-720x583.png 720w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/>\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<\/div>\n\t\t","protected":false},"excerpt":{"rendered":"<p>Introduction Background and objectives Data leaks are becoming more and more numerous and the data contained more and more critical (PHI, PII, Password, \u2026.). Although necessary, the use of a password manager alone is no longer sufficient. Breaches can come from many sources, and even from the password manager itself. It is therefore essential to [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":11030,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[95,96,98],"tags":[],"class_list":["post-15075","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybers-news","category-news-en-2","category-security-en-2"],"_links":{"self":[{"href":"https:\/\/www.cheops-technology.ch\/en\/wp-json\/wp\/v2\/posts\/15075","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.cheops-technology.ch\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.cheops-technology.ch\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.cheops-technology.ch\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.cheops-technology.ch\/en\/wp-json\/wp\/v2\/comments?post=15075"}],"version-history":[{"count":5,"href":"https:\/\/www.cheops-technology.ch\/en\/wp-json\/wp\/v2\/posts\/15075\/revisions"}],"predecessor-version":[{"id":15082,"href":"https:\/\/www.cheops-technology.ch\/en\/wp-json\/wp\/v2\/posts\/15075\/revisions\/15082"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.cheops-technology.ch\/en\/wp-json\/wp\/v2\/media\/11030"}],"wp:attachment":[{"href":"https:\/\/www.cheops-technology.ch\/en\/wp-json\/wp\/v2\/media?parent=15075"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.cheops-technology.ch\/en\/wp-json\/wp\/v2\/categories?post=15075"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.cheops-technology.ch\/en\/wp-json\/wp\/v2\/tags?post=15075"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}