Hackers of India

Gibber Sense

By Ajit Hatti on 27 Jul 2017 @ Blackhat : Arsenal
πŸ’» Source Code πŸ”— Link
#secure-coding #reconnaissance #cryptography #red-teaming #blueteam #purpleteam
Focus Areas: Security Operations & Defense , Application Security , DevSecOps , Penetration Testing
This Tool Demo covers following tools where the speaker has contributed or authored
GIBBERSENSE

Abstract

Found a Gibberish string or file in the wild and don’t know what is it? Throw it to GibberSense - it might start to make some sense. GibberSense is a python-based tool and extension to LAMMA as a BCAF (Basic Crypt Analysis Framework) module.

The best use of Gibber Sense is to verify the robustness of encryption libraries if they are free from any backdoors or flaws. Itt can also be used to guess the type of encryption, hashing schemes, and type of encrypted session cookies. If you trying to develop your own secrete encryption scheme, try and see what GibberSense has to say about it.