Hiding in Hex, (Wed, Oct 18th)

This post was originally published on this site

There are a variety of attacks seen from DShield honeypots [1]. Most of the time these commands are human readable. but every now and again they are obfuscated using base64 or hex encoding. A quick look for commands containing the "/x" delimiter give a lot of results encoded in hexadecimal. 

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.