TIL that You can spot base64 encoded JSON, certificates, and private keys
9 months ago
- #security
- #base64
- #JSON
- Base64 encoded JSON can be identified by the 'ey' prefix, which decodes to '{"'.
- Base64 encoded certificates and private keys often start with 'LS', hinting at TLS certificates.
- The trick involves recognizing patterns in base64 strings without decoding them.
- This method is not foolproof but serves as a quick identification tool.
- Acknowledgments to colleagues for sharing this practical trick.