XOR Known-Plaintext Attacks | allinfosecnews.com

Oct. 12, 2023, 7 a.m. | Didier Stevens

NVISO Labs blog.nviso.eu

In this blog post, we show in detail how a known-plaintext attack on XOR encoding works, and automate it with custom tools to decrypt and extract the configuration of a Cobalt Strike beacon. If you are not interested in the theory, just in the tools, go straight to the conclusion 🙂 . A known-plaintext attack … Continue reading →

attack attacks beacon blog blog post blue team cobalt cobalt strike configuration continue cryptanalysis decrypt encoding extract forensics plaintext plaintext attack strike theory tools xor

More from blog.nviso.eu / NVISO Labs

Top things that you might not be doing (yet) in Entra Conditional Access – Advanced … 1 month, 2 weeks ago | blog.nviso.eu

access advanced azure azure ad +16

Unpacking Flutter hives 1 month, 3 weeks ago | blog.nviso.eu

access app applications application security +22

Become Big Brother with Microsoft Purview 1 month, 4 weeks ago | blog.nviso.eu

big big brother can companies +31

Covert TLS n-day backdoors: SparkCockpit & SparkTar 2 months ago | blog.nviso.eu

amp applications backdoor backdoors +17

Top things that you might not be doing (yet) in Entra Conditional Access 2 months, 1 week ago | blog.nviso.eu

access azure azure ad b2b +20

Is the Google search bar enough to hack Belgian companies? 3 months, 1 week ago | blog.nviso.eu

applications application security awareness belgium +27

Deobfuscating Android ARM64 strings with Ghidra: Emulating, Patching, and Automating 3 months, 2 weeks ago | blog.nviso.eu

android app application security arm64 +16

Scaling your threat hunting operations with CrowdStrike and PSFalcon 4 months, 3 weeks ago | blog.nviso.eu

agent aid automation blue +22

RPC or Not, Here We Log: Preventing Exploitation and Abuse with RPC Firewall 4 months, 3 weeks ago | blog.nviso.eu

abuse blog blue team deploy +14

Principal Security Engineer

@ Elsevier | Home based-Georgia

View on infosec-jobs.com

Infrastructure Compliance Engineer

@ NVIDIA | US, CA, Santa Clara

View on infosec-jobs.com

Information Systems Security Engineer (ISSE) / Cybersecurity SME

@ Green Cell Consulting | Twentynine Palms, CA, United States

View on infosec-jobs.com

Sales Security Analyst

@ Everbridge | Bengaluru

View on infosec-jobs.com

Alternance – Analyste Threat Intelligence – Cybersécurité - Île-de-France

@ Sopra Steria | Courbevoie, France

View on infosec-jobs.com

Third Party Cyber Risk Analyst

@ Chubb | Philippines

View on infosec-jobs.com