hack.lu 2023

Cloaking malicious web content delivery
2023-10-16 , Salle Europe

Website cloaking is a technique that enables websites to deliver different content to
different clients, with the goal of hiding particular content from certain clients. Website
cloaking is based on client detection, which is achieved via browser fingerprinting. In an
attempt to hide their malicious web pages from detection, cyber criminals (can) use cloaking.
They use vulnerability detection to only target clients that seem vulnerable. On top
of that, they (can) also provide benign content in case they suspect someone or something is
trying to detect them. In this talk I quickly go over what cloaking is, how it works, and why I think it deserves some more attention from the cyber community.


Very short introduction into browser fingerprinting, cloaking and CTI related to it.

I am a computer scientist with a background in software testing (automation), incident handling and threat intelligence sharing.

This speaker also appears in: