exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New

stego-crack.txt

stego-crack.txt
Posted Jan 13, 2007
Authored by NT Wako, NoPh0BiA

Steganography version 1.7.1 and 1.8 suffer from a vulnerability that allows access to encrypted files.

tags | exploit
SHA-256 | 2866bc89f0024863497a19a2f5736883c6b6fa1e4738291d9918b88532f1aa4d

stego-crack.txt

Change Mirror Download
Direct Link 
http://homepage.mac.com/adonismac/Advisory/steg/steganography.html

A Major design Bug in Steganography 1.7.x, 1.8 (latest)

Disclaimer
==========
This material is presented for informational purposes ONLY. I do not condone or encourage vandalism or theft.
I do not accept any liability for anything anyone does with this information. So, don't shoot the messenger.

Remember: Use a computer in ways that ensure respect for your fellows.


Author
======
Adonis a.K.a. NtWaK0
Abed a.K.a. NoPh0BiA

Affected Product
================
Steganography 1.7.1 and 1.8 (latest).
http://www.securekit.com/hidefiles.htm

Bug Type and Date
=================
Type: Very Bad Design
Date: 01/07/2007


Bug Results
===========
Cracking encrypted (steganography application 1.7.x 1.8) files without any bruteforce.

WHY LOSING TIME ON MATH AND BRUTEFORCE WHEN YOU CAN PLAY WITH YOUR HEX EDITOR :-).


Bug Description
===============
Firstly, computer forensic investigators can take advantage of this bug to access file protected with (steganography application 1.7.x 1.8) without the knowledge of the original password. Now it is time to check your cold cases for steganography files.

You can crack (steganography application 1.7.x 1.8) encrypted files very easy, in fact in less than two minute. The problem is similar to the bug I found in PGP last year.

(steganography application 1.7.x 1.8) leave a footprint after you stag a file. If you look at the end of your stagged file you will notice it will end with 30 00 0X FF FF. So a simple HEX search will reveal all stagged files.

So now we have identified the stagged file our next step is to access the HIDDEN messages or files without cracking the password, here is how.


Proof-of-Concept (THIS WILL WORK ON HIDDEN MESSAGES and HIDDEN FILES)
=====================================================================
For screen capture please check http://homepage.mac.com/adonismac/Advisory/steg/steganography.html

Step 01
1. We use a file cover (carrier file) called "picture_original.jpg"
2. We will hide inside it a message "Hello Adonis"
3. We will use a password "aaaaaa"
4. We generated the steged file we will call it "picture_with_hidden_msg.jpg"

Step02

To access the hidden message WITHOUT the original password "aaaaaa" we will do the followings:
1. We will use any other picture file say "mypicture.jpg"
2. We will hide inside it a message "WHATEVER"
3. We will use a password "a"
4. We generate the steged file we will call it "mypicture_steg.jpg"
5. We will open Both pictures in a hex editor
6. We will replace the last 20 bites of " picture_with_hidden_msg.jpg" with the one from mypicture_steg.jpg
7. We will Save the picture "picture_with_hidden_msg.jpg"
8. We will open "picture_with_hidden_msg.jpg" with (steganography application 1.7.x 1.8) using "a" as password. YES we overwrite the password with something we know.


Simple hein !!!






Peace to you all

Copyright © 2007 Adonis a.K.a NtWaK0
Login or Register to add favorites

File Archive:

December 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    0 Files
  • 2
    Dec 2nd
    41 Files
  • 3
    Dec 3rd
    25 Files
  • 4
    Dec 4th
    0 Files
  • 5
    Dec 5th
    0 Files
  • 6
    Dec 6th
    0 Files
  • 7
    Dec 7th
    0 Files
  • 8
    Dec 8th
    0 Files
  • 9
    Dec 9th
    0 Files
  • 10
    Dec 10th
    0 Files
  • 11
    Dec 11th
    0 Files
  • 12
    Dec 12th
    0 Files
  • 13
    Dec 13th
    0 Files
  • 14
    Dec 14th
    0 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close