SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
SANS Stormcast Tuesday, April 8th:
Apr 8, 2025
Discover the innovative workaround in XORsearch for searching with regular expressions. Unpack a critical vulnerability in the Model Context Protocol, revealing how major platforms could be exploited. Plus, learn about Google's efforts to enhance privacy by changing how visited links are recognized in Chrome, making your browsing experience more secure. Tune in for insights on AI tool vulnerabilities and web privacy updates!
06:18
AI Summary
AI Chapters
Episode notes
Podcast summary created with Snipd AI
Quick takeaways
- The XORsearch tool offers a workaround for using regular expressions, enhancing its functionality amidst ongoing developments for direct support.
- Google Chrome improved user privacy by modifying how visited links are displayed, thus preventing potential cross-site tracking of browsing history.
Deep dives
XOR Search Tool Enhancements
The XOR Search tool, developed by DDA, is designed to brute force various XOR parameters to identify specific strings within files. While it does not currently support regular expression searches directly, users can still achieve this by extracting all printable strings for each XOR value, akin to the strings command. By utilizing this list, users can then apply regular expressions using external tools like grep, allowing for a workaround to the limitation. DDA is reportedly working on a version that may officially incorporate support for regular expressions, indicating an ongoing effort to enhance the tool's functionality.
Remember Everything You Learn from Podcasts
Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.
