Data Hiding/Embedding
Parchivist (Talk | contribs) (Created page with "{{FormatInfo |formattype=electronic |subcat=Encryption }} Steganography tries to remain hidden even if you're looking for it while data hiding/embedding is a more crude a...") |
Parchivist (Talk | contribs) |
||
Line 4: | Line 4: | ||
}} | }} | ||
− | + | Data hiding/embedding is a cruder form of [[Steganography]] that relies on not being noticed/looked for in the first place while true steganography tries to remain hidden even when actively being looked for. | |
Line 20: | Line 20: | ||
$ cat host.jpg hidden.zip > combined.jpg | $ cat host.jpg hidden.zip > combined.jpg | ||
+ | |||
+ | === Links === | ||
* [https://blog.nviso.eu/2020/07/13/how-to-embed-secret-data-in-jpeg-files/ Under the hood: Hiding data in JPEG images] | * [https://blog.nviso.eu/2020/07/13/how-to-embed-secret-data-in-jpeg-files/ Under the hood: Hiding data in JPEG images] | ||
* [https://blog.sucuri.net/2013/07/malware-hidden-inside-jpg-exif-headers.html Malware Hidden Inside JPG EXIF Headers] | * [https://blog.sucuri.net/2013/07/malware-hidden-inside-jpg-exif-headers.html Malware Hidden Inside JPG EXIF Headers] | ||
* [[GG-AESY]] - implements both methods of hiding data | * [[GG-AESY]] - implements both methods of hiding data | ||
+ | |||
+ | |||
+ | == [[PDF]] == | ||
+ | |||
+ | PDF allows embedding complete files in the actual PDF file. | ||
+ | |||
+ | PDF allows adding arbitrary objects anywhere (or almost anywhere) in the file. | ||
+ | |||
+ | PDF allows writing data between objects | ||
+ | |||
+ | PDF allows adding for example white text on a white background or text behind other objects. | ||
+ | |||
+ | Adobe's PDF spec allows at least 1K of fluff after the %%EOF marker (although ISO 32000 does not). | ||
+ | |||
+ | |||
+ | === Links === | ||
+ | * [https://stackoverflow.com/questions/27075859/steganography-hiding-data-in-pdf-files Discussion of hiding spots in PDF] | ||
+ | |||
+ | |||
+ | |||
+ | == [[MP3]] == | ||
+ | |||
+ | |||
+ | MP3 files are fairly tolerant of random data being added to the file, so the same file appending strategies for JPEGs can be used. |
Revision as of 16:33, 28 August 2023
Data hiding/embedding is a cruder form of Steganography that relies on not being noticed/looked for in the first place while true steganography tries to remain hidden even when actively being looked for.
Contents |
JPEG
There are two main approaches to embedding data in a JPEG file: using the EXIF headers or appending it after the end of image marker (FF D9)
A common tactic is to manually append a zip/rar file to the end of a JPEG. The resulting file will still open as a regular JPEG in any image program, but any archiver will automatically detect and open zip/rar part.
In DOS/Windows command line, files can be appended by using the command:
copy /b host.jpg + hidden.zip combined.jpg
In Linux/Mac the command looks like:
$ cat host.jpg hidden.zip > combined.jpg
Links
- Under the hood: Hiding data in JPEG images
- Malware Hidden Inside JPG EXIF Headers
- GG-AESY - implements both methods of hiding data
PDF allows embedding complete files in the actual PDF file.
PDF allows adding arbitrary objects anywhere (or almost anywhere) in the file.
PDF allows writing data between objects
PDF allows adding for example white text on a white background or text behind other objects.
Adobe's PDF spec allows at least 1K of fluff after the %%EOF marker (although ISO 32000 does not).
Links
MP3
MP3 files are fairly tolerant of random data being added to the file, so the same file appending strategies for JPEGs can be used.