CyberChef is the best tool for changing and manipulating data. This browser-based “Swiss-Army Knife” was made by GCHQ to make difficult data jobs easier. This piece talks about its features and benefits, whether you work in cybersecurity, digital forensics, or just with data every day.
CyberChef is the self-purported ‘Cyber Swiss-Army Knife’ created by GCHQ. It’s a fantastic tool for data transformation, extraction & manipulation in your web-browser.
Full credit to @GCHQ for producing the tool. See
Mastering regular expressions are key to making the most of data manipulation in CyberChef (or any DFIR work). Below are some regexs that I keep coming back to.
[a-zA-Z0-9+/=]{30,} Extract Hexadecimal: [a-fA-F0-9]{10,}
Extract Character Codes: [\d]{2,3}(,|’)
(?<=foo)(.*) ^.*(?=bar) (?<=')(.*?)(?=') CyberChef provides an operation HTTP Request (see Recipe 22) which allows HTTP requests to external resources. Due to Same Origin Policy (SOP) or lack of Cross-Origin Resource Sharing configuration many do not work. SOP is a security measure in modern browsers which prevents you from reading cross-site responses from servers which don’t explicitly allow it via CORS. Check out @GlassSec’s talk on CyberChef which includes tips to boot Chrome without web-security to enable HTTP requests to otherwise restricted APIs (like Virus Total)
For more Click Here
TensorFlow is a free, open-source machine learning platform developed by Google. It is used by major…
Minecraft is one of the most popular games ever made — a sandbox game where players…
CouchDB is a free, open-source NoSQL database maintained by the Apache Software Foundation. Unlike traditional relational…
Docker Compose is a tool that lets you define and run multi-container Docker applications using a…
Composer is a dependency manager for PHP. It works similarly to npm for Node.js or pip…
Squid is a full-featured caching proxy server that supports HTTP, HTTPS, and FTP. It is most…