For Microsoft.AspNetCore.Identity:
When PasswordHasherOptions.IterationCount is < 100,000, highlight the IterationCount attribute.
When PasswordHasherOptions.CompatibilityMode is set to PasswordHasherCompatibilityMode.IdentityV2, highlight the
corresponding attribute.
For Microsoft.AspNetCore.Cryptography.KeyDerivation:
When KeyDerivation.Pbkdf2 is called with iterationCount < 100,000, highlight the iterationCount parameter.
For System.Security.Cryptography:
When Rfc2898DeriveBytes is instantiated with an iterations parameter < 100,000, highlight the iterations parameter.
When Rfc2898DeriveBytes is instantiated without a hashAlgorithm parameter highlight the whole constructor call.
For Microsoft.AspNet.Identity:
When a PasswordHasher is instantiated highlight the constructor.
For System.Security.Cryptography:
When Rfc2898DeriveBytes is instantiated with an iterations parameter < 100,000 or
when Rfc2898DeriveBytes.Pbkdf2 is called with an iterations parameter < 100,000, highlight the iterations parameter.
When Rfc2898DeriveBytes is instantiated without a hashAlgorithm parameter highlight the whole constructor call.
For Org.BouncyCastle.Crypto.Generators.OpenBsdBCrypt, or Org.BouncyCastle.Crypto.Generators.BCrypt:
When Generate is called with cost < 12, highlight the cost parameter.
For Org.BouncyCastle.Crypto.PbeParametersGenerator:
When Init is called with iterationCount < 100,000, highlight the iteration count parameter.
For Org.BouncyCastle.Crypto.Generators.SCrypt:
When Generate is called with N < 2^12, r < 8, or dklen < 32, highlight the weak parameter.