ASCII Smuggling

Type: technique

Description: The adversary uses Tags Unicode Block to write instructions that are visible to machine but not to humans.

Version: 0.1.0

Created At: 2024-10-11 16:54:32 +0300

Last Modified At: 2024-10-11 16:54:32 +0300

External References

• Tweeter thread on the discovery of ASCII Smuggling., Embrace the Red
• ASCII Smuggler Tool: Crafting Invisible Text and Decoding Hidden Codes., Embrace the Red
• Tags (Unicode block), Wikipedia

Related Objects

• --> Defense Evasion (tactic): An adversary can avoid raising user suspicion.
• --> Riley Goodside (entity): Demonstrated by
• <-- Microsoft Copilot: From Prompt Injection to Exfiltration of Personal Information (procedure): Stage, to the user invisible, data for exfiltration.

Related Frameworks