Evading Secure Web Gateways with Last Mile Reassembly Attacks

Hiding malware within components of a webpage and extracting it on the client side.

Breaking up/transforming malicious file into parts and reconstructing it on the client side.

Sending malware through difficult-to-monitor channels.

Encrypting a malicious file and decrypting on the client side

Encoding a malicious file and decoding it on client side.

Transforming the file locally before sending it over the network.

Obfuscating malicious website in various forms and reconstructing phishing site on the client side.