Evading Secure Web Gateways with Last Mile Reassembly Attacks
Contact Us
Attacks Detected By Secure Web Gateways
Malicious File Download
Malicious Website
Malicious / Sensitive File Upload
Hiding in Plain Sight
Hiding malware within components of a webpage and extracting it on the client side.
WASM
Image Steganography
HTML Embed
JS Embed
CSS Embed
SVG Embed
Locked Card
Locked Card
File Chunk Attacks
Breaking up/transforming malicious file into parts and reconstructing it on the client side.
Straight Split
Reverse Split
Randomized Size
Mix and Match
Unmonitored Channels
Sending malware through difficult-to-monitor channels.
WebRTC
WebSocket
gRPC
Firebase Cloud Messaging
Web Torrent
Server Sent Events
WebTransport
HTTP2 Streaming
File Encryption
Encrypting a malicious file and decrypting on the client side
AES Encryption
Zip (AES)
Zip (PkZip2.0)
Locked Card
Locked Card
File Encoding
Encoding a malicious file and decoding it on client side.
Base64
Binary
Hex
File Upload Attacks
Transforming the file locally before sending it over the network.
Chunk
Encrypt
Encoded
Websocket
Phishing Attacks
Obfuscating malicious website in various forms and reconstructing phishing site on the client side.
MHTML
Raw HTML
Canvas Engine