all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

XOR Known-Plaintext Attacks

Add to bookmarks
Oct. 12, 2023, 7 a.m. | Didier Stevens

NVISO Labs blog.nviso.eu

In this blog post, we show in detail how a known-plaintext attack on XOR encoding works, and automate it with custom tools to decrypt and extract the configuration of a Cobalt Strike beacon. If you are not interested in the theory, just in the tools, go straight to the conclusion 🙂 . A known-plaintext attack … Continue reading XOR Known-Plaintext Attacks

attack attacks beacon blog blog post blue team cobalt cobalt strike configuration continue cryptanalysis decrypt encoding extract forensics plaintext plaintext attack strike theory tools xor

Visit resource

More from blog.nviso.eu / NVISO Labs

Top things that you might not be doing (yet) in Entra Conditional Access – Advanced … 2 months ago | blog.nviso.eu
access advanced azure azure ad +16
Unpacking Flutter hives 2 months ago | blog.nviso.eu
access app applications application security +22
Become Big Brother with Microsoft Purview 2 months, 1 week ago | blog.nviso.eu
big big brother can companies +31
Covert TLS n-day backdoors: SparkCockpit & SparkTar 2 months, 2 weeks ago | blog.nviso.eu
amp applications backdoor backdoors +17
Top things that you might not be doing (yet) in Entra Conditional Access 2 months, 3 weeks ago | blog.nviso.eu
access azure azure ad b2b +20
Is the Google search bar enough to hack Belgian companies? 3 months, 3 weeks ago | blog.nviso.eu
applications application security awareness belgium +27
Deobfuscating Android ARM64 strings with Ghidra: Emulating, Patching, and Automating 4 months ago | blog.nviso.eu
android app application security arm64 +16
Scaling your threat hunting operations with CrowdStrike and PSFalcon 5 months ago | blog.nviso.eu
agent aid automation blue +22
RPC or Not, Here We Log: Preventing Exploitation and Abuse with RPC Firewall 5 months, 1 week ago | blog.nviso.eu
abuse blog blue team deploy +14

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada
View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA
View on infosec-jobs.com

Technical Support Specialist (Cyber Security)

@ Sigma Software | Warsaw, Poland
View on infosec-jobs.com

OT Security Specialist

@ Adani Group | AHMEDABAD, GUJARAT, India
View on infosec-jobs.com

FS-EGRC-Manager-Cloud Security

@ EY | Bengaluru, KA, IN, 560048
View on infosec-jobs.com