Turn a target string into a list of bit flipped strings
Project description
blip
B(itf)lip Strings for Red Teaming/Bug Bounty Hunting
Install
pip install blip
OR
git clone https://github.com/zmallen/blip && cd blip && python setup.py install
Summary of tool/bitflipping
Bitflipping is a natural phenomena where bits in a packet sometimes 'flip' from 0 to 1, or 1 to 0. Typically, machines that interpret packets use checksums in order to validate the integrity of the datagram as it reads it from a socket. Other times, machines assume the original packet with the bitflip error is what was intended by the computer!
Bitsquatting is an attack thats been around for close to a decade. The concept here is that someone can change bits in a string and then register a domain in order to take advantage of this error, and perhaps direct a victim to a maliciously owned bitsquatted domain. In 2021, a blog post by Remy Hax detailed an attack on the 'Windows' string by bitsquatting domains that weren't owned by Microsoft. This led to some hilarious results as machines from all over the world resolved their infrastructure and tried to communicate it.
I wanted to write a tool to aid researchers and red teamers in generating these strings. Since bitsquatting is specifically related to bitflipped domains, I wanted to focus on the strings that are bitflipped for multiple uses, not just domain registrations. Also, I liked the word 'blip' which is short for bitflip. Bquat didnt sound as good ;)
Usage
blip -s microsoftGenerate all bitflipped strings for Microsoftblip -s microsoft --asciiGenerate ASCII-only bitflipped stringsblip -s microsoft --no-capsLowercase all candidate strings and remove uppercase characters
Use Cases
Generate bitflipped strings to make some bitsquat domain candidates
Install idn package (on Ubuntu, apt install idn)
⚡ blip -s paypal --no-cap | grep -v '[^a-zA-Z\d\s]' | idn
paypad
paypcl
paypql
paqpal
xn--paypl-0qa
paypil
paypal
xn--papal-2ua
pqypal
peypal
piypal
payral
payqal
taypal
xn--paypa-xsa
raypal
xn--aypal-hta
paypah
pcypal
payxal
xn--payal-kta
paypan
paxpal
paypam
qaypal
paipal
paytal
xn--pypal-xqa
paypel
xaypal
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
File details
Details for the file blip-0.1.0.tar.gz.
File metadata
- Download URL: blip-0.1.0.tar.gz
- Upload date:
- Size: 3.6 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/3.4.1 importlib_metadata/3.7.3 pkginfo/1.7.0 requests/2.22.0 requests-toolbelt/0.9.1 tqdm/4.59.0 CPython/3.8.5
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 808dab2fd9793a08676275450569afe5855e79486698890399f6da123294291c |
|
| MD5 | 6471ef6a913a5ee967fc0d86874d195f |
|
| BLAKE2b-256 | bf80c4e4b4f782731a72859619b32fb507f01205fddac6d44db701f2adc7309c |
File details
Details for the file blip-0.1.0-py3-none-any.whl.
File metadata
- Download URL: blip-0.1.0-py3-none-any.whl
- Upload date:
- Size: 4.5 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/3.4.1 importlib_metadata/3.7.3 pkginfo/1.7.0 requests/2.22.0 requests-toolbelt/0.9.1 tqdm/4.59.0 CPython/3.8.5
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 208d30720b283ea0d614fc5006c752b37d4a4c62fe70be03023fb75de5844f4e |
|
| MD5 | 26dcbcff929e96a3e60688197d90e0bf |
|
| BLAKE2b-256 | f01b97cb684f94935bed9ae62e8de0df1e23e06bb6011a1cbc9eaf0026892b01 |
