Slashdot Mirror

← Back to Stories (view on slashdot.org)

Hydan: Steganography in Executables

Posted by ryuzaki0 on from the something-to-hack-on dept.

An anonymous reader says "Ever wanted to hide a message into an executable? Now you can with Hydan. Presented recently by Rakan El-Khalil at Defcon and Blackhat, this tool lets you embed data into an application without changing its functionality or filesize! Check it out. Use includes steganography as well as embedding a program's signature into itself to verify it's not been tampered with."

18 of 235 comments (clear)

  1. What ... by Anonymous Coward · · Score: 4, Funny

    "What are you doing?"

    "Oh, hydan out."

    1. Re:What ... by Anonymous Coward · · Score: 1, Funny

      Oh, I've read this story before. It's OK, but the pacing is a little slow.

  2. Now every virus program will say... by Barondude · · Score: 3, Funny

    I am 1337.

    --
    "That's the sort of blinkered, philistine pig ignorance I've come to expect from you non-creative garbage."-Monty Python
  3. Right now by Tsiangkun · · Score: 4, Funny

    it looks like the information is being hidden by a slashdotted executable.

  4. Re:SCO connection by irongrip · · Score: 1, Funny

    NOOOOOOOOOOO!

  5. The question, answered. by caluml · · Score: 4, Funny
    Ever wanted to hide a message into an executable?

    Not really :)
    But I'd like to make that dog downstairs stop barking.

    --
    Get your own free personal location tracker
  6. bologna by Nuttles · · Score: 2, Funny

    without changing file sizes... let me stick my pirated version of War and Piece in my Hello world application.

    sometimes you don't even have to rtfa to rip on a topic...

    Nuttles
    Christian and proud of it

    1. Re:bologna by itwerx · · Score: 3, Funny

      "War and Piece" = 13 chars - no problem!
      Now the full text of "War and Peace" might be a different story... (Literally! Chuckle/snort :)

  7. A new low... by ivan256 · · Score: 4, Funny

    Not only a dupe, but a link to the original story is listed on the referenced page.

    Wow.

    1. Re:A new low... by callipygian-showsyst · · Score: 4, Funny
      You're just not playing the game! I'll let you in on it:

      A bunch of folks who got pissed off that their stories never got approved on /. got together on alt.syntax.tactical and devised a plan. What they're doing is finding OLD slashdot stories and resubmitting them.

      So far, it's been moderatly successful with 4-5 dupes getting through each week. This story was particularly amusing because the article has a link to their /. mention! Good work to the folks at a.s.t!

      I suggest you start playing along too! It's fun to show how worthless the /. editors are.

      --
      Best Buy can have you arrested
  8. Hydan... by Anonymous Coward · · Score: 5, Funny

    The message retrieval method should be called "Hydan Seek"

  9. What they should have done by theManInTheYellowHat · · Score: 2, Funny

    They should have put their message in the web servers executable so that when it gets slashdotted it could just shit itself and we could still get how it works.

  10. Re:Without changing its size??? by darc · · Score: 3, Funny

    Ironically, on the other hand, emacs has been doing this for years, without much data compression.

    *ducks*

    --
    Tired of legitimate data sources? Try UNCYCLOPEDIA
  11. Re: For the slightly less knowledgable by Black+Parrot · · Score: 5, Funny


    > steganography: the hiding of a secret message within an ordinary message and the extraction of it at its destination.

    I thought steganography meant pictures of stegasaurs making little stegasarus.

    --
    Sheesh, evil *and* a jerk. -- Jade
  12. In related news... by jamonterrell · · Score: 2, Funny

    A new virus is quickly spreading across the internet. Experts say it started at Defcon with a demonstration of a program that allows users to add a secret text to an executable file without altering it's filesize. Apparently the program also attached a message of it's own... don't run programs demonstrated at defcon!

    --
    I can count to 1023 on my hands. Ask me about #132.
  13. Re:Embed in Viruses? by pclminion · · Score: 2, Funny
    I mean, who that's tech savvy enough to need steganography would feel comfortable downloading intentionally tampered .EXE's, even if they're not intending to run the dang things?

    I feel no anxiety about EXE files. Maybe it's because I run Linux.

  14. M$ Outlook prevents terrorism! by mswope · · Score: 2, Funny

    Now, that "block all executables" setting that I can't turn find or off in Outlook will prevent terrorists from exchanging secret messages embedded in trojan executables that are attached to emails purporting to be great pornography!

    It's not an annoyance; it's a *feature*!

  15. I found a message! by Anonymous Coward · · Score: 1, Funny

    Hey, I was disassembling all of my executables looking for hidden messages, and I found one. It reads "0xDEADBEEF"! Does anyone know what that means?!