First Release ============= * PaddingOracle - change print statements to configurable debug statements * New tools for easy scripted encoding/decoding at command line Future ====== * A tool that behaves like http2py, but generates a POA script * Codetective Consider using parts of this, if useful https://github.com/blackthorne/Codetective * nextrand - Expand capabilities to handle nextInt calls with arguments - Transition code to a library that could be called by Python * Consider using an SMT solver for certain problems (linear PRNGs?) http://en.wikipedia.org/wiki/Satisfiability_Modulo_Theories * Add tools for testing and conducting hash length-extension attacks. One tool: https://github.com/bwall/HashPump * Add tool to test for LCG without knowing LCG parameters See: Inferring Sequences Produced by Pseudo-Random Number Generators by JOAN BOYAR * Add Mersenne Twister attack tool See: http://seclists.org/fulldisclosure/2012/Oct/190 * Add tools for helping one determine the character set used by randomly generated passwords, as well as determining the mapping from numbers to characters