Acid: It's gotta take you a while to find that phone number then...... :D I mean Jeez, what kind of stuff do you have there that requires that kind of security..... Heck a bit of porn is hardly worth all that...... :o
Printable View
Acid: It's gotta take you a while to find that phone number then...... :D I mean Jeez, what kind of stuff do you have there that requires that kind of security..... Heck a bit of porn is hardly worth all that...... :o
that's where i keep my bicuit recipes.
Greetings All:
Encrypting important data is a great way to keep it from being viewed by others, but it is a horrible way of HIDING data (IE, you don't want anyone to know you have secret/important data on your box in the first place). There are many forensic tools that can be used to search a drive for encrypted data, reguardless of what you name it or what extension you give it.
So, encrypted data WILL be found by even a novice forensic expert. The question is, what type of encryption are you using, and what is the probability that it will be able to be cracked.
thats true JP....do you think this would work? Cutting the file up into loadsa tiny files, and scatering them around the system?
Oh, btw...isn't there a programe called camuflage or sum thing...it hides files inside other files...kinda nifty...
oh well...must -
- Noia
Greetings:
Hiding files inside if other files is called "steganography", if you'd like to do more research. I can tell you from first hand experience working with other researchers that do things for the government sector, that steganography is one of the large concerns for them now. The fear that users could be leaching classified materials out of a location by hiding it in what appear to be innocuous files.
However, steganography certainly isn't a new science, and has existed in many simpler forms for years (Ever write on a piece of paper with lemon juice as a kid, and hold it up to a hot lamp later when you wanted to read it?).
Stenography is something that I learnt about a year ago, and I found it quite interesting.
I was using a tool called S-Tools4, and basically, as JP said, you can embed any file within a file. For example, I embedded a text file into a .gif file. You can then password protect it and select your password encryption method (DES, 3DES or IDEA). Then you are done.
To the untrained eye, it looks exactly like a GIF image, but you can then extract the text with the S-Tools tool, provided you know the correct password.
about that Stenography SoggyBottom, if someone viewed the gif, could you make it a real one so there is no suspicion?
http://www.antionline.com/showthread...de+data+images
this is an old post about that, aside from file size, there is supposedly no way anyone can tell there is a file hidden within that file unless they had the original file that is hidden and the original file in which it is now hidden. meaning, if you hide a text file in an image, sans the original text file and the original image, there is no way to tell there is a hidden file.
question:
theoretically, if you add several text files to a zip file, then renamed it to a .dll like i said, without encrypting it, would a data recovery expert find it if he were searching for hidden text files?
if they guy knew what he was doing wouldn't he know that the dll was a fake, then figure that it was renamed so as to be hidden.
???
<btw, thanxs for the link>
Acid, I don't think so...I'd guess there are around 5000-6000 Dll's in a system, and with your file being any of them it yould be hard to find.....How-ever...there might be programes that find files with the wrong Extention designed for this purpose, oh well, I wouldn't know.....
- Noia