Slashdot Mirror


Program Hides Secret Messages in Executables

DmuZ writes "My friend Rakan has created a new steganographic tool named Hydan which can embed messages into an executable without altering its size. He recently presented this tool to the public for the first time at codecon. This new technique was intriguing enough to get coverage on SecurityFocus.com. The code is available here."

8 of 243 comments (clear)

  1. How long... by ymgve · · Score: 4, Funny

    ...until somebody embeds "seineeW erA sreenignE epacsteN"?

  2. new compression standard: rm -rf by more+fool+you · · Score: 4, Funny

    so how do i add my 6MB ogg to the 526K ls?

  3. Re:You might have gotten hoaxed. by Michael+Dorfman · · Score: 5, Funny

    > Second, and most importantly, the size of the file is dependent on the size of the bytes
    > within the file.

    I don't know about you, but where I come from all bytes are pretty much 8 bits in size.

    >Because the bytes in the file have differing values depending on the instructions they
    >encode, altering the data will alter the size unless you're borrowing from one byte to inflate
    >another -- and in this case, again, you run afoul of the first problem.

    Altering the value of a byte changes its size?
    Man, I need to get me some of them new magic size-changing bytes! Down with the tyranny of 8-bit bytes!

  4. Yes, it can be done... by CoderByBirth · · Score: 4, Funny

    ...but why?
    Why would I want to hide messages in my executable files?
    Because I'm a secret little squirrel who just in general likes to hide stuff, like INSIDE other stuff?

  5. Wrong product by Mostly+a+lurker · · Score: 5, Funny
    ...the Declaration of Independence in a single copy of Microsoft Word

    Surely, a declaration of independence should be stored in a non Microsoft product.

  6. Re:The problem is if you have two copies by Reziac · · Score: 4, Funny

    "Of course just like in the film 'A Beutiful Mind', you could just end up seeing encrypted data left right and center, whether or not it is really there."

    On second thought, I have another idea: make a huge file that is nothing but stenographic data. Hide an executable in it. ;)

    Actually, for stuff like DeCSS, that may not be so farfetched. :/

    --
    ~REZ~ #43301. Who'd fake being me anyway?
  7. I do this already! by zulux · · Score: 4, Funny


    I hide all sorts of stuff in my C comments.
    Nobody can detect them in my executables.
    HA! I'm so sneaky!

    --

    Moneyed corporations, non-working 'poor' and criminal prisoners are turning productive citizens into tax-slaves.

  8. Re:stenography by WzDD · · Score: 5, Funny

    RPG values?

    "Bring me my +5 Sword of Information Hiding!"