ASCII Smuggling

Type: technique

Description: The adversary uses Tags Unicode Block to write instructions that are visible to machine but not to humans.

Version: 0.1.0

Created At: 2024-12-31 14:18:56 -0500

Last Modified At: 2024-12-31 14:18:56 -0500

External References

• Tweeter thread on the discovery of ASCII Smuggling., Embrace the Red
• ASCII Smuggler Tool: Crafting Invisible Text and Decoding Hidden Codes., Embrace the Red
• Tags (Unicode block), Wikipedia

Related Objects

• --> Defense Evasion (tactic): An adversary can avoid raising user suspicion.
• --> Riley Goodside (entity): Demonstrated by
• <-- Microsoft Copilot: From Prompt Injection to Exfiltration of Personal Information (procedure): Stage, to the user invisible, data for exfiltration.

Related Frameworks