Welcome to our

Cyber Security News Aggregator

Cyber Tzar

provide a

platform; including automated penetration tests and risk assesments culminating in a "cyber risk score" out of 1,000, just like a credit score.

Some representative placeholder content for the first slide.

Some representative placeholder content for the second slide.

Some representative placeholder content for the third slide.

published on 2022-09-06 00:00:00 UTC by Didier Stevens
Content:

This is an update for my tool to perform XOR known plaintext attacks: xor-kpa.py.

The tool has been updated for Python 3, and 3 new plaintext have been added, all for Cobalt Strike configurations.

cs-key is the header of the configuration entry for the public key.

cs-key-dot is the header of the configuration entry for the public key XORed with value 0x2E (a dot).

cs-key-i is the header of the configuration entry for the public key XORed with value 0x69 (letter i).

xor-kpa_V0_0_6.zip (http)
MD5: 4BA5EDEAEF6C8D528227607E78A2A797
SHA256: F7BE170D09E8B8A5B4127F64EC66FFF69EFD3EFA3B4EAC0304B39905A75CDE2A

Article: Update: xor-kpa.py Version 0.0.6 - published about 2 years ago.

https://blog.didierstevens.com/2022/09/06/update-xor-kpa-py-version-0-0-6/
Published: 2022 09 06 00:00:00
Received: 2022 09 06 00:08:23
Feed: Didier Stevens
Source: Didier Stevens
Category: Cyber Security
Topic: Cyber Security
Views: 1