Stegospolit: Steganography & Polyglots for Stealthy Exploit Delivery 🚀

Discover how Stegospolit leverages steganography and polyglots to covertly deliver browser exploits, revolutionizing attack techniques with style and precision.

Stegospolit: Steganography & Polyglots for Stealthy Exploit Delivery 🚀
Black Hat
11.6K views ‱ Mar 5, 2016
Stegospolit: Steganography & Polyglots for Stealthy Exploit Delivery 🚀

About this video

by Saumil Shah

"A good exploit is one that is delivered with style."

Stegosploit creates a new way to encode "drive-by" browser exploits and deliver them through image files. These payloads are undetectable using current means. This talk discusses two broad underlying techniques used for image based exploit delivery - Steganography and Polyglots. Drive-by browser exploits are steganographically encoded into JPG and PNG images. The resultant image file is fused with HTML and Javascript decoder code, turning it into an HTML+Image polyglot. The polyglot looks and feels like an image, but is decoded and triggered in a victim's browser when loaded. The Stegosploit Toolkit v0.3, to be released with improvements upon existing v0.2, contains the tools necessary to test image based exploit delivery.

Tags and Topics

Browse our collection to discover more content in these categories.

#Black Hat Europe 2015 #Information Security #InfoSec #Black Hat #BlackHat

Video Information

Views

11.6K

Likes

165

Duration

58:22

Published

Mar 5, 2016

User Reviews

4.5
(2)
Rate:

Related Trending Topics

LIVE TRENDS

Related trending topics. Click any trend to explore more videos.

Trending Now
v
200+
robert de niro
200+
ex minister macc
100+
classement coupe d'afrique des nations de football
100+