2021-07-06, 16:10–16:45, Zoom room
This talk covers various ways of bypassing security by fooling filetype identification, either by signatures via mock files, or by dual formats via binary polyglots.
Near polyglots are also covered and how when combined with standard cryptographic operations, they can produce uncommon results such as surviving encryption or getting different valid contents from the same ciphertext via authenticated decryption.
This talk also introduces Mitra, an open-source file mixer, the combination strategies that it uses, and how little it knows about file formats to do its magic.
File formats enthusiast - author of Corkami.
Currently Infosec Engineer at Google.