Tryhackme:CC: Steganography

A crash course on the topic of steganography

Intro:

All needed files can be found inside the included zip file

Note: Basic linux knowledge required.

Steghide:

One of the greatest benefits of stegohide, is that it can encrypt data with a passphrase. Meaning that if they don’t have the password then they can’t extract any data.

steghide can be installed with the command sudo apt install steghide

1.What argument allows you to embed data(such as files) into other files?

A:embed

2.What flag let’s you set the file to embed?

A:-ef

3.What flag allows you to set the “cover file”?(i.e the jpg)

A:-cf

4.How do you set the password to use for the cover file?

A:-p

5.What argument allows you to extract data from files?

A:extract

6.How do you select the file that you want to extract data from?

A:-sf

7.Given the passphrase “password123”, what is the hidden message in the included “jpeg1” file.

A:pinguftw

zsteg:

Note: zsteg also supports BMP files, but it is primarily used for png’s.

zsteg can be installed by using ruby with the command gem install zsteg

1.How do you specify that the least significant bit comes first

A: — lsb

2.What about the most significant bit?

A: — msb

3.How do you specify verbose mode?

A:-v

4.How do you extract the data from a specific payload?

A:-e

5.In the included file “png1” what is the hidden message?

A:nootnoot

6.What about the payload used to encrypt it.

A:b1,bgr,lsb,xy

Exiftool:

Exiftool can be installed with sudo apt install exiftool

  1. In the included jpeg3 file, what is the document name?

A:Hello :)

Stegoveritas:

Note: Stegoveritas has other features as well such as color correcting images

Stegoveritas can be installed by running these two commands:

pip3 install stegoveritas

stegoveritas_install_deps

1.How do you check the file for metadata?

A:-meta

2.How do you check for steghide hidden information

A:steghide

3.What flag allows you to extract LSB data from the image?

A:-extractLSB

4.In the included image jpeg2 what is the hidden message?

A:kekekekek

Spectrograms:

Note: This introduction will be done using the included wav1 file.

When you open Sonic Visualizer you should see this screen:

From there click File->Open and then select the included wav1 file and you should see a screen similar to this:

From there click Layer->Add Spectrogram and you should see this:

And that’s it!

1.What is the hidden text in the included wav2 file?

A:google

Good luck and have fun!

The Final Exam:

What is key 1?

A:superkeykey

2.What is key 2?

It shows a link, I will go to that link and download the image file.

As the image we downloaded is in a .png format, So, we use zsteg tool to find our second key.

A:fatality

3.What is key 3?

A:killshot

please everyone join my telegram channel :https://t.me/hackerwheel

please everyone join my youtube channel :https://www.youtube.com/channel/UCl10XUIb7Ka6fsq1Pl7m0Hg

Hackerwheel
Change the world
https://t.me/hackerwheel

CTF-PLAYER, security analyst, Pentesting, vapt, digital forensics