Arno0x
commented
6 years ago Oh I know this !
This was just a lazy choice from me to reuse simple piece of codes, and doesn't really matter as this tool is just a PoC. Implementing AES is either left as an exercise for anybody who would want to use this tool for professional matters, or for me when I want to bring the tool to another level. I've already implemented AES-CBC crypto in my DBC2 tool, which also has Python/C# encrypting/decrypting stubs.
The choice between RC4 and AES is not just a matter of taste. RC4 has serious vulnerabilities and is deprecated by RFC 7465, published three years ago. https://www.rfc-editor.org/rfc/rfc7465.txt