April 2025 – Wojtek

New web browser extension – Keep Awake

Wojtek Apr 21, 2025 0

Simple but my own. I was looking for such extension to prevent my computer to go to sleep when I step away for a bit, but was not happy with others I found so I decided to write it. Very simple, yet fulfils my needs. Check it out – Keep Awake. It’s already published on Google Web Store.

It uses Chrome power API display setting, so not so powerful, but suitable for me. I already have some ideas for enhancements, so definitely there will be next version/s but not much to upgrade in such a simple tool.

PowerShell Scripting Software Uncategorized

Generate number of self-signed certificates

Wojtek Apr 11, 2025 0

I had a requirement to test Yubikey 5 with PIV for Windows smartcard authentication. There’s four slots for certificates 9a, 9c, 9d and 9e and by default a, d and e work for user authentication, while 9c requires minidriver to work. I wanted to deploy 4 certificates, with iterated names to confirm if slots work and if in fact 9c doesn’t work without minidriver. I used PowerShell to generate certificates:

$baseName = "wojciechjakubowski"
$certPath = "Cert:\CurrentUser\My"

for ($i = 1; $i -le 4; $i++) {
    $subject = "CN=$baseName$i"
    $cert = New-SelfSignedCertificate -Subject $subject `
        -KeyUsage DigitalSignature `
        -Type Custom `
        -TextExtension @("2.5.29.37={text}1.3.6.1.4.1.311.20.2.2") `
        -CertStoreLocation $certPath

    $pwd = ConvertTo-SecureString -String "123" -Force -AsPlainText
    $file = "$baseName$i.pfx"
    Export-PfxCertificate -Cert $cert -FilePath "C:\temp\$file" -Password $pwd
}

1.3.6.1.4.1.311.20.2.2 is an OID for smart card logon, which was something I wanted to test, but you can replace or add EKUs using below common OIDs to test against other purposes:

1.3.6.1.5.5.7.3.2 – Client Authentication
1.3.6.1.5.5.7.3.1 – Server Authentication
1.3.6.1.5.5.7.3.3 – Code Signing
1.3.6.1.4.1.311.20.2.2 – Smart Card Logon
1.3.6.1.4.1.311.10.3.12 – Document Signing

For what it’s worth, I confirmed that 9c is not showing up without minidriver and it does show up with minidriver installed.

Cryptography PQC Security

OpenSSL 3.5 with PQC support

Wojtek Apr 10, 2025 0

Long awaited version 3.5 of OpenSSL was published on April 8th. It comes with native support for NIST published PQC standards:

FIPS 203 – ML-KEM – Module Lattice Based Key Encapsulation Mechanism
FIPS 204 – ML-DSA – Module Lattice Based Digital Signature Algorithm
FIPS 205 – SLH-DSA – Stateless Hash Based Digital Signature Algorithm

OpenSSL 3.5 is an LTS release and will be supported until 2030.

Looking forward to testing the PQC capabilities of the latest OpenSSL version – will share an update soon!

Browser extensions Eurojackpot Generator Software Web

Eurojackpot Generator update #4

Wojtek Apr 9, 2025 0

It took me a while but it’s the biggest update so far, at least code wise. Version 1.4.0 allows to set notifications of upcoming Eurojackpot draws. You can mark default values of 24h, 6h and 2h or specify custom value. It can be number of hours to draw, for example 4h, or exact time on the day of the draw, for example 16:35. Extension is using system notifications and on Windows it looks like that:

This is first version that requires permissions. Check Eurojackpot Generator for version control.

Wojtek – IT guy