-
July 27th, 2017, 08:18 AM
#1
Junior Member
Inter-word White spaces HTML steganography
Hi everyone, I've always been a reader of this forum, but this is my first post so please be gentle
I've always been intrigued by whitespaces steganography and lately I was looking for a way to make it actually usable for payload delivery, so I came up with a simple and rough tool I named html-ninja (https://github.com/ephreet).
I know this is nothing really new, it's a bit of a different approach (ie. from snow) that embeds data between words by doubling already existing whitespaces: this is actually pretty cool if you consider HTML files, which are parsed by browsers, hiding the misplaced spaces by plain sight.
The idea is that even IDPS couldn't possibly detect a file transfer or payload using this method...well I'd like to hear your honest opinion about it
Please keep in mind that the code is really rough and meant to only be a PoC.
Similar Threads
-
By King of CaveMen in forum Network Security Discussions
Replies: 3
Last Post: February 28th, 2003, 09:25 PM
-
By s0nIc in forum Microsoft Security Discussions
Replies: 0
Last Post: June 22nd, 2002, 12:21 PM
-
By Gbin@ryR in forum Site Feedback/Questions/Suggestions
Replies: 4
Last Post: March 19th, 2002, 10:00 PM
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|