Bucket Stream: Finding S3 Buckets by watching certificate transparency logs

[CapacitorSet]

A is a realistic case of security by obscurity - there's a sizable amount of people who believe that to be secure.

B is in my opinion much less realistic: very few people believe a password two bytes long (or better, with two bytes of entropy) to be secure. Even a trivial password like "TelnetSucks" scores 31 bits of entropy with https://apps.cygnius.net/passtest/.

[rocqua]

That app doesn't seem to be great. It complains when a password contains spaces or is longer than 16 words.