Linux got Hacked with this AI image!

David Bombal · Beginner ·🛠️ AI Tools & Apps ·10mo ago

Key Takeaways

This video demonstrates how to use ChatGPT-5 to create a polyglot file that appears as a JPEG image but contains a hidden zip file, which can be used to run malicious code on Linux computers. The video also discusses the concept of polyglot files, data brokers, and data protection, and how hackers are using AI-generated images to create malware.

Full Transcript

Now, many of you commented on my previous video. How is this even possible? So, in this video, I'm going to demonstrate how easy it is to create a polyglot file using chat GBT to help you along the way. ChatGBT can actually create the file for you, but I'm going to show you step by step how you can do this yourself and demonstrate how a polyglot file can appear as a pretty image of a panda, but can also have malicious intent behind it by running code. In this example, we'll use something that is non-malicious, just a safe demonstration of how to use an image file like this where it can act as a different type of file. In this example, as a zip file. Hopefully, this answers the questions and hopefully this shows you how easy it is to create a polyglot file. Now, this video has got two parts. I'm going to talk about how this AI generated malware was used to hack Linux, but I'm also going to show you how you can use chat GPT to create your own image as well as your own polyglot file. So, I'm using chat GPT5 here, recently released. I've created a cute panda image and then I asked ChatGpt some information about what a polyglot file is and then how to create one. So I'll go through this and show you manually how to create your own JPEG image and show you how we can make it act like a zip file as well. So polyglot file. Jump to this timestamp if all you're interested in is the demo. Otherwise continue watching where I give you a quick overview of this hack and then show you how to create a file yourself. Now, just for any YouTube moderators or any moderators watching this video, we are going to create a safe polyglot file as a demonstration. So, there's no hack here. We're simply going to create a JPEG file that also has a hidden zip file that we can extract and then read a text file. So, there's nothing malicious here. But, this has been used in the wild to attack Linux. A hack of location data company Gravy Analytics has revealed which apps knowingly or not are being used to collect your information behind the scenes. So this data broker was hacked. Information was leaked on the dark web. Thousands of applications Candy Crush, Tinder, My Fitness Pal, etc. are being hijacked to find out your location. And I mean it just gets worse. House passes bill to prevent the sale of personal data to foreign adversaries. So, the bill bans data brokers from selling Americans personal information to countries like China, Russia, North Korea, and Iran. Okay, those countries are banned. But where's your data actually going? This is from Wyatt, a Catholic priest resigned from the church after Catholic news site The Pillar outed him by purchasing location data from a data broker on his usage of Grinder. These dodgy data brokers are collecting huge amounts of data about you. your location information, your name, your address, lots of personal data about you. And then that data is simply being sold to, you know, who knows who, news organizations, advertisers, etc., etc. And then these companies get hacked and the data gets leaked on the dark web. And that can be used by anyone. If data brokers don't have access to your data, then they can't be hacked and your data leaked or given away or purchased. So the starting point is don't allow them to have your data. And this is why I use delete me. Delete me make this process very simple. You can fill in some personal information like your name, your address, other information. And then they get data brokers to remove that data automatically. Here's a list from delete me of 750 plus data brokers. I mean there's many many of these data brokers. I don't have the time to go and manually remove this constantly because your data may be removed today but may be added tomorrow. But delete me makes this process very simple. They constantly monitor this information and then they give you a report showing you which data brokers your data was removed from. This doesn't just apply to you. It can also apply to your family. So you can pay delete me to remove your personal data but also the data of your family members. I think the less data that companies such as data brokers have about me, the better. I'm pretty sure you agree because your data is not being used for your benefit. It's being used for the benefit of others like advertisers and governments. If you want to take back your privacy, either go and manually remove your data, a lot of work, or join delete me. You can use the link below, join deleteme.com/bomble to get 20% off and get your data removed from these data brokers. If your data is not collected, it can't be stolen. It can't be sold. So, get your data removed by joining Delete Me. I really want to thank Delete Me for sponsoring this video and supporting my channel and also for helping protect both me and my family by removing our data from data broker websites. What does this look like? Just looks like an AI generated image of a panda, right? But actually, it's AI generated malware hiding in panda images that results in a persistent Linux threat. So, forgive my pronunciation. A sophisticated Linux threat shows clear signs of AI assisted development likely with help from large language models with modular payloads, evasive rootkits, and delivery through weaponized image files. Kosski represents a new breed of persistent and adaptable malware built for one purpose crypto mining. It is a warning of what is to come. So, this is from Aquasc. Their blog goes into a lot of detail showing you how the attack is launched initially. So remote code execution on misconfigured Jupyter Labs and then images are downloaded from legitimate places. So storage platforms such as free image, post image and OVH images. What they're doing is delivering code through an image because they are doing their payload delivery via polyglot abuse. This is not steography, but rather polyglot file abuse or malicious file embedding. This technique uses a valid JPEG image with malicious shell code hidden at the end. The whole idea with polyglot abuse is if you look at the image, it's just going to look like a normal image, but if an application loads it, it's going to execute payloads. It's a dual use file that evades detection by blending image data with executable payloads. So this is what the payload would look like. So this is the image file with initial bytes as JPEG ending and executable shell code. The whole idea here is you could have a single file. As an example, if you run it on Windows, it would run the Windows installer, but if you're using a Java application, it would run a Java installer. Now, a file is a valid polyglot file if it can be successfully interpreted by multiple interpreting programs. For example, a PDF zip polylot might be opened by both a valid PDF document and decompressed as a valid zip archive. To maintain validity across interpreting programs, one must ensure that constructs specific to one interpreter are not interpreted by the other and vice versa. These have been around for a long time and have been used in hacker culture since the 1990s. We have an AI created image, but it's a polyglot image file where it shows as an image when you view it, but when an application runs it, it's going to run malicious code. Notice a web hosted image contains malicious C code or malicious shell code that does something on the targeted system. As an example, downloading crypto miners. So, I asked ChatGpt, in this case, ChatGBT5, what is a polyglot file? And we told a polyglot file is a single file that's valid in one or more format or programming language at the same time. Meaning two or more different passes can read it and interpret it differently but still see it as a valid file in their own format. Think of it as a bilingual pun. One sentence that makes complete sense in English and French but with different meaning in each. Okay. So there's more information about it here. Here are some examples. PDF plus zip, GIF plus JavaScript, and there's quite a few options here. What we're going to do is use JPEG plus zip. Now, chat GPT continues about why it matters. And here's the big reason and why it was exploited in the wild. Polyglots can bypass file type checks, an upload filter that only allows JPEG might let through a JPEG plus PHP polyglot. That's actually executable code. And that's exactly what happened here. So chat GPT then asks if we want a walk through of a simple PDF plus zip polyglot file and then I got it to do that. I'm going to skip most of this because I want to show you how to do it with an image. So I told it to create a safe demonstration. Remember safe for all the moderators watching that is a cute panda JPEG image but also contains a zip file. And then I was able to download that. Now this is what it gave me. Not very nice to be honest. So the file it gave me is this Panda polyglot JPEG file. So you can see the image isn't very nice. A very basic picture. But if I open it up, notice there is the JPEG image. But if I go to my downloads folder and go to polyglot demo and then polyglot because that's where the file is and I look at this image here and use unzip to look at that image. So in other words, run this command in bash. So unzip polyglot jpeg. It's already seeing a file because it wants to overwrite the secret.ext file. I'll just say yes to replace it. So it's extracted this file here. And if I cat that file, so cat secret.ext. Notice it says you found the hidden panda treasure. So if I do lice again and let's delete those files. So, rm secret.ext rm secret1.ext. So, I'll just delete both those files. Notice there's a zip file here, but there is no secret.ext file. So, again, that's the very boring image that chatgbt gave me. And if I unzip that file, notice we are told that the a secret.ext file has been extracted. And you can see that there. And if I cat that file, notice you found the hidden panda treasure with a little image there. So that's what chat GPT gave us. I asked ChatGpt to create a cute JPEG image of a panda and it created this image. I didn't like that. So I told it to make a new image more like the image that the hackers created. So this is the image that they created again. So, I told chat GPD to look at that image and create something similar to that and it gave me a bunch of text and I told it to create the image and there you go. That's how I got this image and I downloaded it and was able to use it as part of this demonstration. So, I got chat GBT to create the image. I got ChatGpt to help me create the code for a JPEG and zip file demonstration. Now it looks like again that these hackers used an LLM to run this attack and they have this Panda image that contains malicious shell code as well as this file that contains malicious C code. So C and shell code was used there. The idea here is that we have an image file. So notice cat panda JPEG and then it has some code at the end. That's what they were using. If I cat the panda polyglot JPEG image, you'll notice it's got a whole bunch of image data here. So, here's a bunch of image data. But if I go right to the end, notice it says here secret text. You found the hidden panda treasure. So, at the end of the image is this file that can be unzipped. So, this is where ChatGpt is great. I'm going to follow their step-by-step manual to create an image. So they assuming that we have our panda image. Let's go to this demo folder. I've got a chat GPT image one file here and a secret file that has my text in it. So there's my text in my secret file, but I could get it to run bash code as an example. Here's my image. So in my text editor, I'll go back a directory. Clear the screen. So notice I am in the downloads polyglot demo directory. Alice shows me that all I've got is my image and my secret text as we can see over here. So what we're going to do now is create a zip file. So here they are creating the secret text file which I've got already and then we're going to zip that. So zip secret text. So this file here is going to be zipped. ls shows us that we've now got the secret zip file which we didn't have before. We only had those files, but now we've got that as well. Again, zip files here. Now we can combine the image and the zip file together. Back in this directory, you can see we've only got the chat GPT image secret and zip file. So all we need to do now is cat those together and put them into a new file. So simply use cat chat GPT image secret zip. And I'm going to put it into panda demo 1 jpg. And there you go. So ls shows us that we've got this image here. Back over here, you can see that's created. Double click on that. There's our little cute panda. So panda exists. So when you look at the file with an image program, it shows up as a cute panda. Simple as that. But if I use unzip panda demo1.jpeg, we told do you want to override the secret.ext file. So I'm going to say rename for this example. And I'm going to rename it as secret one.ext. That's now being extracted. So previously we had secret over there, but we've also got secret one. Now if I cat that file, secret one.ext, text. Notice we have our secret message right over there. So if I cat the Panda demo one JPEG. It's a big image file, but right at the end here, notice the zip file information is available there. So the JPEG software is only going to look at the JPEG part of the image. The unzip file looks at the end of the image and can unzip the file. Now Chat GBD very kindly shows us why this works. JPEG decoders stop reading after the end of image marker FFD9 and hex, ignoring anything afterward. Zip decoders locate their central directory by scanning backward from the end of the file. They don't care if there's image data before it. So, both formats live happily in the same file without interfering with one another. Chat GPT also provides this option. You can still edit the JPEG image in an image editor and allow to still work as a zip file which involves placing the zip inside the JPEG comment segments instead of just appending. That's a trick often used in steography challenges. This however isn't that this is a polyglot file. Okay. So I'm hoping that this quick demonstration shows you how a polyglot file actually works and how to create one. I've also shown you how to use chat GPT, in this case, chat GPT5 to help you learn how to create files like this. I actually got ChatGpt to create its own polyglot file, but then I showed you step by step how to do this yourself so that I could use a cute image. And hopefully you can see how to do the same. I did find, however, that the code that they gave me for creating a polyglot file with bash didn't work very well. But it is possible to do this yourself. I simply wanted to show you how to create a polyglot file and explain it practically rather than just reading about it. I'll link the Aqua blog below if you want to get more information about the real world example using polyglot files and how they were able to run malware on Linux computers by downloading an image from an image storage platform. Now, if you enjoyed this video, please consider subscribing to my YouTube channel and liking the video. That really does help me. So many of you who watch my channel are not subscribed.

Original Description

Big thank you to DeleteMe for sponsoring this video. Go to http://joindeleteme.com/Bombal to receive a 20% discount. Discover how hackers are weaponising AI-generated images to create malware—and how you can safely recreate the same technique using ChatGPT-5. This tutorial explains what a polyglot file is, how it's used in the wild (like the Koski Linux threat), and walks you through a hands-on demo of building a JPEG+ZIP polyglot using simple Bash commands. Learn how to bypass file-type checks, explore file format quirks, and understand why this technique matters in cybersecurity. Link to article: https://www.aquasec.com/blog/ai-generated-malware-in-panda-image-hides-persistent-linux-threat/ // David's SOCIAL // Discord: https://discord.com/invite/usKSyzb X: https://www.twitter.com/davidbombal Instagram: https://www.instagram.com/davidbombal LinkedIn: https://www.linkedin.com/in/davidbombal Facebook: https://www.facebook.com/davidbombal.co TikTok: http://tiktok.com/@davidbombal YouTube: https://www.youtube.com/@davidbombal Spotify: https://open.spotify.com/show/3f6k6gERfuriI96efWWLQQ SoundCloud: https://soundcloud.com/davidbombal Apple Podcast: https://podcasts.apple.com/us/podcast/david-bombal/id1466865532 // MY STUFF // https://www.amazon.com/shop/davidbombal // SPONSORS // Interested in sponsoring my videos? Reach out to my team here: sponsors@davidbombal.com // MENU // 00:00 – Intro 00:49 – What Are Polyglot Files? + ChatGPT-5's Role 02:00 – Sponsor Break – DeleteMe 04:45 – Exploring Koske & Polyglot File Concepts 07:30 – Creating a Polyglot File with ChatGPT 08:40 – Our Polyglot File Example (Live Demo) 10:29 – Finding Hidden Image Data 11:57 – Step-by-Step: Building a Polyglot File 14:39 – Why This Technique Works 15:24 – Final Thoughts + Outro Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting
Watch on YouTube ↗ (saves to browser)
Sign in to unlock AI tutor explanation · ⚡30

Playlist

Uploads from David Bombal · David Bombal · 0 of 60

← Previous Next →
1 RYU SDN Controller Part 4: Graphical User Interface (GUI): Practical GNS3 SDN and OpenFlow
RYU SDN Controller Part 4: Graphical User Interface (GUI): Practical GNS3 SDN and OpenFlow
David Bombal
2 HPE Network Protector SDN Application Part 1 - Introduction
HPE Network Protector SDN Application Part 1 - Introduction
David Bombal
3 HPE Network Protector SDN Application Part 2 : DNS Interception using OpenFlow
HPE Network Protector SDN Application Part 2 : DNS Interception using OpenFlow
David Bombal
4 HPE Network Protector SDN Application Part 3 - Lab Setup using Physical Switches
HPE Network Protector SDN Application Part 3 - Lab Setup using Physical Switches
David Bombal
5 HPE Network Protector SDN Application Part 4 - Demo of malicious websites blocked
HPE Network Protector SDN Application Part 4 - Demo of malicious websites blocked
David Bombal
6 HPE Network Protector SDN Application Part 5 - Demo OpenFlow table interception flows
HPE Network Protector SDN Application Part 5 - Demo OpenFlow table interception flows
David Bombal
7 HPE Network Protector SDN Application Part 6 - Demo of Physical Switch configuration
HPE Network Protector SDN Application Part 6 - Demo of Physical Switch configuration
David Bombal
8 HPE Network Protector SDN Application Part 7 - Demo Service Insertion Tunnel / GRE Tunnel
HPE Network Protector SDN Application Part 7 - Demo Service Insertion Tunnel / GRE Tunnel
David Bombal
9 HPE Network Protector SDN Application Part 8 - Demo SDN OpenFlow Reporting
HPE Network Protector SDN Application Part 8 - Demo SDN OpenFlow Reporting
David Bombal
10 HPE Network Protector SDN Application Part 9 - Demo switches interception of DNS traffic
HPE Network Protector SDN Application Part 9 - Demo switches interception of DNS traffic
David Bombal
11 GNS3 Talks: GNS3 version 1.5.X Appliance Tips
GNS3 Talks: GNS3 version 1.5.X Appliance Tips
David Bombal
12 CCNA 200-125 Exam: AAA demo: TACACS+ with GNS3
CCNA 200-125 Exam: AAA demo: TACACS+ with GNS3
David Bombal
13 GNS3 2.0.0 beta 2 install
GNS3 2.0.0 beta 2 install
David Bombal
14 CCNA #012: Learn SNMP with GNS3, Wireshark and Solarwinds NPM - CCNA 200-125 exam
CCNA #012: Learn SNMP with GNS3, Wireshark and Solarwinds NPM - CCNA 200-125 exam
David Bombal
15 CCNA #013: Spanning Tree CCNA Exam Questions: Know the answer? CCNA 200-125 exam
CCNA #013: Spanning Tree CCNA Exam Questions: Know the answer? CCNA 200-125 exam
David Bombal
16 GNS3 2.0.0 beta : GNS3 VM integration with GNS3 GUI
GNS3 2.0.0 beta : GNS3 VM integration with GNS3 GUI
David Bombal
17 CCNA #018: Routing exam questions: Who wins? OSPF, EIGRP or RIP? Sure? CCNA 200-125 exam
CCNA #018: Routing exam questions: Who wins? OSPF, EIGRP or RIP? Sure? CCNA 200-125 exam
David Bombal
18 CCNA #019: Spanning Tree CCNA Exam Questions: Root Bridge, Root Port and more: CCNA 200-125 exam
CCNA #019: Spanning Tree CCNA Exam Questions: Root Bridge, Root Port and more: CCNA 200-125 exam
David Bombal
19 GNS3 Download, installation and configuration - GNS3 1.5.3 and Windows 10
GNS3 Download, installation and configuration - GNS3 1.5.3 and Windows 10
David Bombal
20 CCNA #023 EIGRP Neighbor Troubleshooting (DUAL Issues) for the CCNA 200-125 Exam
CCNA #023 EIGRP Neighbor Troubleshooting (DUAL Issues) for the CCNA 200-125 Exam
David Bombal
21 GNS3 2.0 Architecture and schema Part 1: What is the GNS3 Controller?
GNS3 2.0 Architecture and schema Part 1: What is the GNS3 Controller?
David Bombal
22 GNS3 2.0 Architecture and schema Part 2: Emulators and virtualization
GNS3 2.0 Architecture and schema Part 2: Emulators and virtualization
David Bombal
23 CCNA #028 VTP Troubleshooting for the CCNA 200-125 Exam
CCNA #028 VTP Troubleshooting for the CCNA 200-125 Exam
David Bombal
24 CCNA #029 VTP & DTP Troubleshooting for the CCNA 200-125 Exam
CCNA #029 VTP & DTP Troubleshooting for the CCNA 200-125 Exam
David Bombal
25 CCNA #030 VTP Troubleshooting for the CCNA 200-125 Exam
CCNA #030 VTP Troubleshooting for the CCNA 200-125 Exam
David Bombal
26 GNS3 : How to download Cisco IOS images and VIRL images. Which is the best? How do you get them?
GNS3 : How to download Cisco IOS images and VIRL images. Which is the best? How do you get them?
David Bombal
27 GNS3 ASA setup: Import and configure Cisco ASAv with GNS3
GNS3 ASA setup: Import and configure Cisco ASAv with GNS3
David Bombal
28 GNS3 switching setup and options: Cisco and other switching options in GNS3
GNS3 switching setup and options: Cisco and other switching options in GNS3
David Bombal
29 GNS3 switching setup and options Part 2: GNS3 unmanaged built-in switch
GNS3 switching setup and options Part 2: GNS3 unmanaged built-in switch
David Bombal
30 GNS3 switching setup and options Part 3: Router on a sick with GNS3 unmanaged built-in switch
GNS3 switching setup and options Part 3: Router on a sick with GNS3 unmanaged built-in switch
David Bombal
31 GNS3 switching setup and options Part 4: Etherswitch Router for Cisco Dynamips Part 1
GNS3 switching setup and options Part 4: Etherswitch Router for Cisco Dynamips Part 1
David Bombal
32 GNS3 switching setup and options Part 5: Etherswitch Router for Cisco Dynamips Part 2
GNS3 switching setup and options Part 5: Etherswitch Router for Cisco Dynamips Part 2
David Bombal
33 GNS3 switching setup and options Part 6: Etherswitch, Wireshark, 802.1Q, InterVLAN routing
GNS3 switching setup and options Part 6: Etherswitch, Wireshark, 802.1Q, InterVLAN routing
David Bombal
34 GNS3 Talks: Docker, Open vSwitch, SDN and OpenFlow Part 1: GNS3 Switching Part 7
GNS3 Talks: Docker, Open vSwitch, SDN and OpenFlow Part 1: GNS3 Switching Part 7
David Bombal
35 GNS3 Talks: Docker, Open vSwitch, SDN and OpenFlow Part 2: GNS3 Switching Part 8
GNS3 Talks: Docker, Open vSwitch, SDN and OpenFlow Part 2: GNS3 Switching Part 8
David Bombal
36 GNS3 Talks: Docker, Open vSwitch, SDN and OpenFlow Part 3: GNS3 Switching Part 9
GNS3 Talks: Docker, Open vSwitch, SDN and OpenFlow Part 3: GNS3 Switching Part 9
David Bombal
37 GNS3 Talks: Docker, Open vSwitch, SDN and OpenFlow Part 4: GNS3 Switching Part 10
GNS3 Talks: Docker, Open vSwitch, SDN and OpenFlow Part 4: GNS3 Switching Part 10
David Bombal
38 GNS3 Talks: Docker, Open vSwitch, SDN and OpenFlow Part 5: GNS3 Switching Part 11
GNS3 Talks: Docker, Open vSwitch, SDN and OpenFlow Part 5: GNS3 Switching Part 11
David Bombal
39 GNS3 Nexus (NX-OSv) switch setup and configuration Part 1: GNS3 switching options Part 12
GNS3 Nexus (NX-OSv) switch setup and configuration Part 1: GNS3 switching options Part 12
David Bombal
40 GNS3 Nexus (NX-OSv) switch setup and configuration Part 2: GNS3 switching options Part 13
GNS3 Nexus (NX-OSv) switch setup and configuration Part 2: GNS3 switching options Part 13
David Bombal
41 GNS3 Talks: Docker, Open vSwitch, SDN and OpenFlow Part 6: GNS3 Switching Part 14
GNS3 Talks: Docker, Open vSwitch, SDN and OpenFlow Part 6: GNS3 Switching Part 14
David Bombal
42 GNS3 Talks: Docker, Open vSwitch, SDN and OpenFlow Part 7: GNS3 Switching Part 15
GNS3 Talks: Docker, Open vSwitch, SDN and OpenFlow Part 7: GNS3 Switching Part 15
David Bombal
43 GNS3 Cisco CSR 1000v setup and configuration Part 1: GNS3 NFV
GNS3 Cisco CSR 1000v setup and configuration Part 1: GNS3 NFV
David Bombal
44 GNS3 Cisco CSR 1000v setup and configuration Part 2: GNS3 NFV
GNS3 Cisco CSR 1000v setup and configuration Part 2: GNS3 NFV
David Bombal
45 GNS3 Talks: Use the NAT node to connect GNS3 to the Internet easily!
GNS3 Talks: Use the NAT node to connect GNS3 to the Internet easily!
David Bombal
46 GNS3 Talks: GNS3 2.0 RC1 is now available
GNS3 Talks: GNS3 2.0 RC1 is now available
David Bombal
47 GNS3 Talks: GNS3 2.0 Portable Projects - easily export and import GNS3 projects
GNS3 Talks: GNS3 2.0 Portable Projects - easily export and import GNS3 projects
David Bombal
48 GNS3 Talks: Multiple clients sharing projects in real time, plus console session shadowing!
GNS3 Talks: Multiple clients sharing projects in real time, plus console session shadowing!
David Bombal
49 CCNA #035 NAT Troubleshooting Scenario 1 - Can you find the issue? CCNA Exam 200-125 troubleshooting
CCNA #035 NAT Troubleshooting Scenario 1 - Can you find the issue? CCNA Exam 200-125 troubleshooting
David Bombal
50 CCNA #036 NAT Troubleshooting Scenario 2 - Can you find the issue? CCNA Exam 200-125 troubleshooting
CCNA #036 NAT Troubleshooting Scenario 2 - Can you find the issue? CCNA Exam 200-125 troubleshooting
David Bombal
51 GNS3 Talks: ESXi, GNS3 VM and KVM support Part 1: leverage servers and the cloud
GNS3 Talks: ESXi, GNS3 VM and KVM support Part 1: leverage servers and the cloud
David Bombal
52 CCNA #037 OSPF Troubleshooting - can you find the issue? CCNA Exam 200-125 troubleshooting
CCNA #037 OSPF Troubleshooting - can you find the issue? CCNA Exam 200-125 troubleshooting
David Bombal
53 GNS3 Talks: ESXi, GNS3 VM and KVM support Part 2:  leverage servers and the cloud
GNS3 Talks: ESXi, GNS3 VM and KVM support Part 2: leverage servers and the cloud
David Bombal
54 CCNA #038 NAT Troubleshooting Scenario 3 - Can you find the issue? CCNA Exam 200-125 troubleshooting
CCNA #038 NAT Troubleshooting Scenario 3 - Can you find the issue? CCNA Exam 200-125 troubleshooting
David Bombal
55 CCNA #039 - OSPF DR, BR and DROTHER Election - do you know the answers?
CCNA #039 - OSPF DR, BR and DROTHER Election - do you know the answers?
David Bombal
56 CCNA #040 NAT Troubleshooting Scenario 4 - Can you find the issue? CCNA Exam 200-125 troubleshooting
CCNA #040 NAT Troubleshooting Scenario 4 - Can you find the issue? CCNA Exam 200-125 troubleshooting
David Bombal
57 GNS3 Talks: Arista vEOS GNS3 import and configuration Part 1
GNS3 Talks: Arista vEOS GNS3 import and configuration Part 1
David Bombal
58 CCNA #041 - OSPF DR, BR and DROTHER Election - do you know the answers?
CCNA #041 - OSPF DR, BR and DROTHER Election - do you know the answers?
David Bombal
59 GNS3 Talks: Arista vEOS GNS3 import and configuration Part 2
GNS3 Talks: Arista vEOS GNS3 import and configuration Part 2
David Bombal
60 GNS3 Talks: ipterm: Linux, Docker, Python, SDN and more! Part 1
GNS3 Talks: ipterm: Linux, Docker, Python, SDN and more! Part 1
David Bombal

This video teaches how to create polyglot files using ChatGPT-5 and how hackers are using AI-generated images to create malware. It also discusses the concept of polyglot files, data brokers, and data protection. By following this tutorial, viewers can learn how to create polyglot files and understand the potential risks of AI-generated malware.

Key Takeaways
  1. Create a polyglot JPEG file that contains a zip file with malicious code
  2. Use the file to download a crypto miner
  3. Use an LLM to run the attack and create a Panda image that contains malicious shell code and a file with malicious C code
  4. Combine the image and the zip file together
  5. Use cat to put the image and the zip file into a new file
  6. Use unzip to extract the zip file from the image
  7. Rename the extracted file
💡 Polyglot files can be used to bypass file type checks and run malicious code on Linux computers, making them a potential threat to security.

Related Reads

📰
The Ultimate Guide to AI-Powered Resume Building: Create Your Perfect Resume in Minutes
Learn how to create an AI-powered resume in minutes with this comprehensive guide, streamlining your job search with ATS-optimized resumes.
Dev.to AI
📰
I Used AI Every Day for 30 Days — Here’s What Happened
Learn how using AI daily for 30 days can boost productivity and workflow efficiency, and discover the benefits and downsides of AI integration
Medium · AI
📰
Building Custom Prompts: Crafting Instructions for Your Specific Patent Art Area
Learn to craft custom prompts for your specific patent art area using AI, applying the principle of specificity to achieve better results
Dev.to AI
📰
About Ebuhu
Explore Ebuhu, a website about AI, programming, and web development, to enhance your skills in these areas.
Medium · AI

Chapters (10)

Intro
0:49 What Are Polyglot Files? + ChatGPT-5's Role
2:00 Sponsor Break – DeleteMe
4:45 Exploring Koske & Polyglot File Concepts
7:30 Creating a Polyglot File with ChatGPT
8:40 Our Polyglot File Example (Live Demo)
10:29 Finding Hidden Image Data
11:57 Step-by-Step: Building a Polyglot File
14:39 Why This Technique Works
15:24 Final Thoughts + Outro
Up next
I Tested Every AI Content Tool - Here's How to Use Poppy AI (Complete Beginner Tutorial)
Poppy AI
Watch →