all InfoSec news
BobTheSmuggler: Open-source tool for undetectable payload delivery
Help Net Security www.helpnetsecurity.com
BobTheSmuggler is an open-source tool designed to easily compress, encrypt, and securely transport your payload. It basically enables you to hide a payload in plain sight. BobTheSmuggler is helpful in phishing campaign assessments, data exfiltration exercises, and assumed breach scenarios. Features Hiding the payload inside images and calling it separately from a JavaScript code. Using dynamic XOR encryption to hide the payloads. This helps bypass network firewalls and monitoring tools (including DLPs). Keeping the HTML … More →
The post …
assessments assumed breach breach calling campaign cybersecurity data data exfiltration delivery don't miss encrypt exercises exfiltration features github hide hot stuff images javascript open source payload penetration testing phishing phishing campaign software tool transport undetectable