Collaborate Disseminate
I’m participating to some bug bounty programs and I found some interest thinks in a javascript file. The problem is that the code is obfuscated.
What do you do when you see this ? Do you skip it, or clean it ?
Continue reading As an attacker, what do you do when you see an obfuscated js?
I’m not an expert on this topic but I know a little about hashing and encryption which is why I tried the algos mentioned above. I have reason to believe they correlate with the colors down below but other than the algos I listed above I’m… Continue reading Any ideas on what might have been used to encode/hash/encrypt these? I’ve tried base64, base32, MD5 and SHA1 [closed]
How we took part in the Machine Learning Security Evasion Competition (MLSEC) — a series of trials testing contestants’ ability to create and attack machine learning models. Continue reading How we took part in MLSEC and (almost) won
I was browsing a German website when I noticed that during the initial page load there were some non printable characters displayed on the page (like “). As a result the score of the match can’t be seen while the page is still fetching al… Continue reading HTML obfuscation using special fonts [migrated]
There are a lot of different URL shorteners out there, like Bitly or TinyURL. Besides their main purpose of shortening a link, they also:
obfuscate the actual URL
collect statistics about the usage of the short link
From the obfuscation,… Continue reading Can I safely preview a short link?
Probably as most of Facebook users I receive many malicious requests with link and JS.
I usually delete or ignore them, but now out of curiosity decided to research it.
I’ve unsuccessfully tied some deobfuscating services.
Full virus code … Continue reading Decode malicious javascript [duplicate]
A few days ago, I was googling information about the Ethiopian Jewish holiday of Sigd. The third Google result was https://knesset.gov.il/lexicon/eng/sigd_eng.htm [potentially malicious], a page that had several paragraphs of information a… Continue reading Does this code indicate the Israeli parliament site got malicious code placed on it this year? [closed]
Somebody hacked my webserver and uploaded many of the following files with random names in different subdirectories of my webroot. The file looks something like this and – even though I managed to beautify it – I am unable to decipher the … Continue reading What does this potentially malicious php code do? [duplicate]
I created my own anti-adblock system, that does something similar to services like BlockAdblock except mine goes about Adblocker detection in a different manner (and so far cannot be bypassed like ones such as BlockAdblock).
If you go to m… Continue reading How can I prove to users that my obfuscated code is not malicious without unobfuscating?
I got a suspicious text message which acted differently based upon if the user agent was the user agent of an iPhone vs a Desktop. When I tried a normal browser user agent, it threw a 303 status code and redirected to google.com. When I us… Continue reading Suspicious Javascript code in Text Message [closed]