[HN Gopher] CyberChef - The Cyber Swiss Army Knife
___________________________________________________________________
CyberChef - The Cyber Swiss Army Knife
Author : simonpure
Score : 204 points
Date : 2022-01-18 17:16 UTC (5 hours ago)
(HTM) web link (gchq.github.io)
(TXT) w3m dump (gchq.github.io)
| softblush wrote:
| Past discussions
|
| https://news.ycombinator.com/item?id=20767183
|
| https://news.ycombinator.com/item?id=13056254
| dang wrote:
| Thanks! Macroexpanded:
|
| _CyberChef - Cyber Swiss Army Knife_ -
| https://news.ycombinator.com/item?id=20767183 - Aug 2019 (59
| comments)
|
| _CyberChef - The Cyber Swiss Army Knife_ -
| https://news.ycombinator.com/item?id=20543810 - July 2019 (1
| comment)
|
| _CyberChef - The Cyber Swiss Army Knife_ -
| https://news.ycombinator.com/item?id=13099687 - Dec 2016 (1
| comment)
|
| _CyberChef - A Cyber Swiss Army Knife_ -
| https://news.ycombinator.com/item?id=13056254 - Nov 2016 (139
| comments)
| imdsm wrote:
| This is perhaps the first repost where using "The" has been
| successful
| VectorLock wrote:
| Reminds me of the old "Sam Spade."
| BearsAreCool wrote:
| I'm a big fan of CyberChef. One of its most useful features is
| "magic" and turning on "intensive mode". This will automatically
| detect the encoding used and can often detect 2-3 levels of
| encoding.
| rainonmoon wrote:
| Sometimes it can detect quite a lot more than 2-3 levels! The
| "magic" function really feels like it earns its name.
| rileytg wrote:
| this tool is extremely useful to have in infosec CTFs!
| DerekBickerton wrote:
| Love how the contributors all have what seems like dedicated
| accounts with no 'legal name'. Take for example this:
| https://github.com/gchq/CyberChef/commits?author=n1474335
| n1474335
|
| Great name. In typical GCHQ style they have good OPSEC.
|
| You can find more contributors here:
|
| https://github.com/gchq/CyberChef/graphs/contributors
| d98762625 s2224834
|
| Among others :)
| jinseokim wrote:
| Interesting point: They just use Gmail.[1]
|
| [1]:
| https://github.com/gchq/CyberChef/commit/c423de545fd0d27aabe...
| luto wrote:
| afaik those are user IDs of Chinese(?) messengers. Devs or
| others there like to use those as usernames because the are (of
| course) mostly unique and also enable others to easily contact
| them.
| raesene9 wrote:
| I don't _think_ in this case it 'll be messenger IDs (and if
| it is definitely not chinese) as GCHQ is the UK's equivalent
| of the NSA.
|
| They're a pretty secretive bunch, when they present in person
| they don't use real names, and if you go to their
| headquarters you have to leave all electronics at the door
| (did a talk there once and had to buy myself an analog watch
| for the day!)
| that_guy_iain wrote:
| They're defo not Chinese. GCHQ is part of UK Intelligence.
| They also have the $id@publicemail.provider to hide their
| emails too.
| usgroup wrote:
| I think the landing page is more informative personally:
|
| https://github.com/gchq/CyberChef
| mathnmusic wrote:
| I recently started building an offline, desktop app in Flutter as
| a collection of dev utilities:
| https://github.com/nileshtrivedi/devtoolbox
|
| Flutter was a promising choice as it'd give me Windows, Mac OS
| and Linux build from a single codebase - and even the possibility
| of orgs running this internally as a self-hosted webapp. But one
| of the ideas I had was to bundle CyberChef with my app and open
| in a webview. Turns out, Flutter doesn't support webviews on
| desktop platforms at all.
| https://github.com/nileshtrivedi/devtoolbox/issues/4
| abhimanyu003 wrote:
| That looks nice, I also worked on something similar but CLI
| based. It's having both TUI as well as CLI modes.
|
| https://github.com/abhimanyu003/sttr
|
| Since it's written in GO, you can run it pretty much anywhere
| you like :) ( cross platform )
|
| Yes, it support file inputs as well.
| harcipulyka wrote:
| jbverschoor wrote:
| Very similar to DevUtils https://devutils.app/
| thunderbong wrote:
| CyberChef is free though
| techwind wrote:
| The author/s of Dev Utils have actually got a comparison!
| https://devutils.app/devutils_vs_cyberchef/
| tacLog wrote:
| I really apricated the honestly about the pros and cons of
| each.
| chrisweekly wrote:
| This sounds like a useful tool based on the comments, but the
| site is completely unusable on my iPhone. :/
| gloriana wrote:
| lol
| alias_neo wrote:
| I run it in my "homelab". It's all very well self contained. The
| UX could use some work, but I think it's a case of function over
| form.
|
| I'm still looking for my ultimate hex editor (TUI/GUI) for
| offline use. Not been impressed with any of the many options I've
| tried on Linux.
| rjzzleep wrote:
| ht-editor was a fantastic editor[1], similar to hiew[2] on
| windows. Unfortunately ht-editor codebase is a bit hard to
| extend and it's based on really old modified binutils headers.
| I was trying to update it, but it's probably better to just
| write it from scratch, it's still much more straightforward to
| use that most modern cli hex editors.
|
| What is with russians and their love for advanced windows cli
| tools? IDA Pro, hiew and far manager[3] come to mind.
|
| [1] http://hte.sourceforge.net/
|
| [2] https://www.hiew.ru/
|
| [3] https://www.farmanager.com/
| raesene9 wrote:
| I'm a great fan of cyberchef, really easy for quick chaining of
| decoding techniques to look at various types of data.
| TameAntelope wrote:
| I'm so lame, I was hoping they'd have wrapped this in an Electron
| app for the "Download" option.
| gchq-7703 wrote:
| It's a static website. If you want to use it as an application
| you can download the compiled page
| (https://gchq.github.io/CyberChef/CyberChef_v9.32.3.zip) and
| create a shortcut to the 'Cyberchef.html' file contained
| within.
| vaibhavsagar wrote:
| I was hoping this might be about the Victorinox Cyber Tool, which
| is actually a Swiss Army Knife:
| https://www.victorinox.com/global/en/Products/Swiss-Army-Kni...
| ethbr0 wrote:
| Because I knew it had to exist. Thanks for not letting me down,
| Victorinox. https://www.swissknifeshop.com/collections/usb-
| flash-drive-s...
| smoldesu wrote:
| This is actually very useful. I've been spending the past few
| weeks working on a cross-platform, native dev assistant app like
| this written with GTK3 and Rust. It's been a really good exercise
| in designing meaningful GUIs and, well, usable code. I don't have
| anything to show right now, but when I get it to an MVP state
| I'll be sure to share it with everyone!
|
| I'm curious to hear what things people want to see out of an app
| like this. What utilities are you constantly Googling for that
| you'd rather have on your desktop?
| ehaughee wrote:
| Something I run into a lot is a JSON-like blob of text I'd like
| to be formatted as JSON (new lines and indentation). Most JSON
| formatters choke on improper JSON (understandably). It would be
| great to have a tool that was more lax. Like browser support
| for terrible HTML lax haha. If I could paste JSON-like strings
| into a text area and have it fix and format it as best as can
| be, that would be great. Some examples of non-JSON syntax to
| handle would be like single quotes instead of double, arbitrary
| JSON nodes (not necessarily wrapped in `{}`), some pre or post
| text (some non-JSON text at the beginning or end), comments
| amongst the JSON, etc. Another JSON aspect that would be useful
| is something to escape/unescape JSON (specifically double
| quotes). I deal a lot with JSON that includes escaped JSON in
| values and it would be great to have some better way to
| visualize and process those blobs. Sublime Text has a nice
| plugin to handle some of the escaping/unescaping[1].
|
| [1] https://github.com/Nadock/json_stringify
| smoldesu wrote:
| Thanks for the suggestion! I'll look into that as it seems
| particularly feasible, Rust has notoriously good JSON
| deserialization libraries.
| tenken wrote:
| Not a fan, I have tried say formatting a large JSON API results
| (with no formatting) and it just runs out of memory because: 1)
| the string is huge like 64mb+ 2) it tries to do syntax
| highlighting and blows up big time on the resulting formatted
| value.
|
| For a utility tool it's awful finnicky on real world data and I
| think tries to be pretty at times rather than useful, or perhaps
| a case where a browser makes a poor Editor.
| gchq-7703 wrote:
| We might need to try fine tuning some limits. If CyberChef
| thinks it will have an issue rendering some text, we'll stop
| trying to display it and offer the user the ability to render
| only a part of the result or download the file.
|
| Here's an example of me trying to format a 100mb file.
|
| [0] https://imgur.com/a/3DtqnuL
___________________________________________________________________
(page generated 2022-01-18 23:00 UTC)