[HN Gopher] CyberChef - The Cyber Swiss Army Knife ___________________________________________________________________ CyberChef - The Cyber Swiss Army Knife Author : simonpure Score : 204 points Date : 2022-01-18 17:16 UTC (5 hours ago) (HTM) web link (gchq.github.io) (TXT) w3m dump (gchq.github.io) | softblush wrote: | Past discussions | | https://news.ycombinator.com/item?id=20767183 | | https://news.ycombinator.com/item?id=13056254 | dang wrote: | Thanks! Macroexpanded: | | _CyberChef - Cyber Swiss Army Knife_ - | https://news.ycombinator.com/item?id=20767183 - Aug 2019 (59 | comments) | | _CyberChef - The Cyber Swiss Army Knife_ - | https://news.ycombinator.com/item?id=20543810 - July 2019 (1 | comment) | | _CyberChef - The Cyber Swiss Army Knife_ - | https://news.ycombinator.com/item?id=13099687 - Dec 2016 (1 | comment) | | _CyberChef - A Cyber Swiss Army Knife_ - | https://news.ycombinator.com/item?id=13056254 - Nov 2016 (139 | comments) | imdsm wrote: | This is perhaps the first repost where using "The" has been | successful | VectorLock wrote: | Reminds me of the old "Sam Spade." | BearsAreCool wrote: | I'm a big fan of CyberChef. One of its most useful features is | "magic" and turning on "intensive mode". This will automatically | detect the encoding used and can often detect 2-3 levels of | encoding. | rainonmoon wrote: | Sometimes it can detect quite a lot more than 2-3 levels! The | "magic" function really feels like it earns its name. | rileytg wrote: | this tool is extremely useful to have in infosec CTFs! | DerekBickerton wrote: | Love how the contributors all have what seems like dedicated | accounts with no 'legal name'. Take for example this: | https://github.com/gchq/CyberChef/commits?author=n1474335 | n1474335 | | Great name. In typical GCHQ style they have good OPSEC. | | You can find more contributors here: | | https://github.com/gchq/CyberChef/graphs/contributors | d98762625 s2224834 | | Among others :) | jinseokim wrote: | Interesting point: They just use Gmail.[1] | | [1]: | https://github.com/gchq/CyberChef/commit/c423de545fd0d27aabe... | luto wrote: | afaik those are user IDs of Chinese(?) messengers. Devs or | others there like to use those as usernames because the are (of | course) mostly unique and also enable others to easily contact | them. | raesene9 wrote: | I don't _think_ in this case it 'll be messenger IDs (and if | it is definitely not chinese) as GCHQ is the UK's equivalent | of the NSA. | | They're a pretty secretive bunch, when they present in person | they don't use real names, and if you go to their | headquarters you have to leave all electronics at the door | (did a talk there once and had to buy myself an analog watch | for the day!) | that_guy_iain wrote: | They're defo not Chinese. GCHQ is part of UK Intelligence. | They also have the $id@publicemail.provider to hide their | emails too. | usgroup wrote: | I think the landing page is more informative personally: | | https://github.com/gchq/CyberChef | mathnmusic wrote: | I recently started building an offline, desktop app in Flutter as | a collection of dev utilities: | https://github.com/nileshtrivedi/devtoolbox | | Flutter was a promising choice as it'd give me Windows, Mac OS | and Linux build from a single codebase - and even the possibility | of orgs running this internally as a self-hosted webapp. But one | of the ideas I had was to bundle CyberChef with my app and open | in a webview. Turns out, Flutter doesn't support webviews on | desktop platforms at all. | https://github.com/nileshtrivedi/devtoolbox/issues/4 | abhimanyu003 wrote: | That looks nice, I also worked on something similar but CLI | based. It's having both TUI as well as CLI modes. | | https://github.com/abhimanyu003/sttr | | Since it's written in GO, you can run it pretty much anywhere | you like :) ( cross platform ) | | Yes, it support file inputs as well. | harcipulyka wrote: | jbverschoor wrote: | Very similar to DevUtils https://devutils.app/ | thunderbong wrote: | CyberChef is free though | techwind wrote: | The author/s of Dev Utils have actually got a comparison! | https://devutils.app/devutils_vs_cyberchef/ | tacLog wrote: | I really apricated the honestly about the pros and cons of | each. | chrisweekly wrote: | This sounds like a useful tool based on the comments, but the | site is completely unusable on my iPhone. :/ | gloriana wrote: | lol | alias_neo wrote: | I run it in my "homelab". It's all very well self contained. The | UX could use some work, but I think it's a case of function over | form. | | I'm still looking for my ultimate hex editor (TUI/GUI) for | offline use. Not been impressed with any of the many options I've | tried on Linux. | rjzzleep wrote: | ht-editor was a fantastic editor[1], similar to hiew[2] on | windows. Unfortunately ht-editor codebase is a bit hard to | extend and it's based on really old modified binutils headers. | I was trying to update it, but it's probably better to just | write it from scratch, it's still much more straightforward to | use that most modern cli hex editors. | | What is with russians and their love for advanced windows cli | tools? IDA Pro, hiew and far manager[3] come to mind. | | [1] http://hte.sourceforge.net/ | | [2] https://www.hiew.ru/ | | [3] https://www.farmanager.com/ | raesene9 wrote: | I'm a great fan of cyberchef, really easy for quick chaining of | decoding techniques to look at various types of data. | TameAntelope wrote: | I'm so lame, I was hoping they'd have wrapped this in an Electron | app for the "Download" option. | gchq-7703 wrote: | It's a static website. If you want to use it as an application | you can download the compiled page | (https://gchq.github.io/CyberChef/CyberChef_v9.32.3.zip) and | create a shortcut to the 'Cyberchef.html' file contained | within. | vaibhavsagar wrote: | I was hoping this might be about the Victorinox Cyber Tool, which | is actually a Swiss Army Knife: | https://www.victorinox.com/global/en/Products/Swiss-Army-Kni... | ethbr0 wrote: | Because I knew it had to exist. Thanks for not letting me down, | Victorinox. https://www.swissknifeshop.com/collections/usb- | flash-drive-s... | smoldesu wrote: | This is actually very useful. I've been spending the past few | weeks working on a cross-platform, native dev assistant app like | this written with GTK3 and Rust. It's been a really good exercise | in designing meaningful GUIs and, well, usable code. I don't have | anything to show right now, but when I get it to an MVP state | I'll be sure to share it with everyone! | | I'm curious to hear what things people want to see out of an app | like this. What utilities are you constantly Googling for that | you'd rather have on your desktop? | ehaughee wrote: | Something I run into a lot is a JSON-like blob of text I'd like | to be formatted as JSON (new lines and indentation). Most JSON | formatters choke on improper JSON (understandably). It would be | great to have a tool that was more lax. Like browser support | for terrible HTML lax haha. If I could paste JSON-like strings | into a text area and have it fix and format it as best as can | be, that would be great. Some examples of non-JSON syntax to | handle would be like single quotes instead of double, arbitrary | JSON nodes (not necessarily wrapped in `{}`), some pre or post | text (some non-JSON text at the beginning or end), comments | amongst the JSON, etc. Another JSON aspect that would be useful | is something to escape/unescape JSON (specifically double | quotes). I deal a lot with JSON that includes escaped JSON in | values and it would be great to have some better way to | visualize and process those blobs. Sublime Text has a nice | plugin to handle some of the escaping/unescaping[1]. | | [1] https://github.com/Nadock/json_stringify | smoldesu wrote: | Thanks for the suggestion! I'll look into that as it seems | particularly feasible, Rust has notoriously good JSON | deserialization libraries. | tenken wrote: | Not a fan, I have tried say formatting a large JSON API results | (with no formatting) and it just runs out of memory because: 1) | the string is huge like 64mb+ 2) it tries to do syntax | highlighting and blows up big time on the resulting formatted | value. | | For a utility tool it's awful finnicky on real world data and I | think tries to be pretty at times rather than useful, or perhaps | a case where a browser makes a poor Editor. | gchq-7703 wrote: | We might need to try fine tuning some limits. If CyberChef | thinks it will have an issue rendering some text, we'll stop | trying to display it and offer the user the ability to render | only a part of the result or download the file. | | Here's an example of me trying to format a 100mb file. | | [0] https://imgur.com/a/3DtqnuL ___________________________________________________________________ (page generated 2022-01-18 23:00 UTC)