BobTheSmuggler is an open-source tool designed to easily compress, encrypt, and securely transport your payload. It basically enables you to hide a payload in plain sight. BobTheSmuggler is helpful in phishing campaign assessments, data exfiltration exercises, and assumed breach scenarios. Features Hiding the payload inside images and calling it separately from a JavaScript code. Using dynamic XOR encryption to hide the payloads. This helps bypass network firewalls and monitoring tools (including DLPs). Keeping the HTML … More
The post BobTheSmuggler: Open-source tool for undetectable payload delivery appeared first on Help Net Security.