Steghide
Jump to navigation
Jump to search
Description
Steghide is a steganography program that is able to hide data in various kinds of image- and audio-files. The color- respectivly sample-frequencies are not changed thus making the embedding resistant against first-order statistical tests.
Installation
Debian:
$ sudo apt install steghide
Fedora:
$ sudo dnf install steghide
Usage
Syntax
steghide <action> <option> <file>
To embed emb.txt in cvr.jpg:
steghide embed -cf cvr.jpg -ef emb.txt
To extract embedded data from stg.jpg:
steghide extract -sf stg.jpg
Options
Actions
- embed, --embed
- embed data
- extract, --extract
- extract data
- info, --info
- display information about a cover- or stego-file
- info <filename>
- display information about <filename>
- encinfo, --encinfo
- display a list of supported encryption algorithms
- version, --version
- display version information
- license, --license
- display steghide's license
- help, --help
- display this usage information
embedding options
- -ef, --embedfile
- select file to be embedded
- -ef <filename>
- embed the file <filename>
- -cf, --coverfile
- select cover-file
- -cf <filename>
- embed into the file <filename>
- -p, --passphrase
- specify passphrase
- -p <passphrase>
- use <passphrase> to embed data
- -sf, --stegofile
- select stego file
- -sf <filename>
- write result to <filename> instead of cover-file
- -e, --encryption
- select encryption parameters
- -e <a>[<m>]|<m>[<a>]
- specify an encryption algorithm and/or mode
- -e none
- do not encrypt data before embedding
- -z, --compress
- compress data before embedding (default)
- -z <l>
- using level <l> (1 best speed...9 best compression)
- -Z, --dontcompress
- do not compress data before embedding
- -K, --nochecksum
- do not embed crc32 checksum of embedded data
- -N, --dontembedname
- do not embed the name of the original file
- -f, --force
- overwrite existing files
- -q, --quiet
- suppress information messages
- -v, --verbose
- display detailed information
extracting options
- -sf, --stegofile
- select stego file
- -sf <filename>
- extract data from <filename>
- -p, --passphrase
- specify passphrase
- -p <passphrase>
- use <passphrase> to extract data
- -xf, --extractfile
- select file name for extracted data
- -xf <filename>
- write the extracted data to <filename>
- -f, --force
- overwrite existing files
- -q, --quiet
- suppress information messages
- -v, --verbose
- display detailed information
options for the info command
- -p, --passphrase
- specify passphrase
- -p <passphrase>
- use <passphrase> to get info about embedded data
Example
Info
$ steghide info 1.jpg
"1.jpg":
format: jpeg
capacity: 3.5 KB
Try to get information about embedded data ? (y/n) y
Enter passphrase:
embedded file "flag48":
size: 35.0 Byte
encrypted: rijndael-128, cbc
compressed: yes
Extract
$ steghide extract -sf 1.jpg Enter passphrase: wrote extracted data to "flag48". $ cat flag48 easy flag48: mu518qgfty4w5ks1l32a