panki/RAPS
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

README

Browse Source
This commit is contained in:
Felix Pankratz 2023-05-09 09:36:56 +02:00
parent ada711f182
commit 166934a526
1 changed files with 19 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

19
README.md Normal file
View File

@ -0,0 +1,19 @@
# RAPS - Remote Admin Password Solution
A little play on M$ LAPS.
This tool is designed to work similar to an OTP app: it generates rotating passwords based on a shared secret.
## Use case
You have some external contractor that needs access to your systems every now and then, but password policy sometimes makes it impossible for them to login. RAPS can be set up on your server to automatically set a new complex password on the first of the month.
Your contractor then executes the RAPS script and gets the same password.
## How it works
On the first run, a shared secret is generated. This secret must be passed to the other party securely.
To generate a password, the secret is concatenated with the UNIX timestamp of the first day of the month. This combined value gets hashed with SHA256, the resulting hash is used to seed the RNG.
Since the secret and timestamps are the same for both parties, they will have the same SHA256 hash and generate identical passwords.