Hydan
From Just Solve the File Format Problem
(Difference between revisions)
Parchivist (Talk | contribs) (Created page with "{{FormatInfo |formattype=electronic |subcat=Encryption |subcat2=Steganography }} '''Hydan''' by Rakan El-Khalil is an open source steganography program that hides data in i38...") |
Parchivist (Talk | contribs) |
||
| Line 3: | Line 3: | ||
|subcat=Encryption | |subcat=Encryption | ||
|subcat2=Steganography | |subcat2=Steganography | ||
| + | |released=2002 | ||
}} | }} | ||
Latest revision as of 05:07, 1 September 2023
Hydan by Rakan El-Khalil is an open source steganography program that hides data in i386 applications.
BSD i386 ELF, Linux i386 ELF, and Windows XP PE/COFF are supported.
Encoding rate: 1/110
Message is Blowfish encrypted with a user-supplied passphrase before being embedded
It exploits redundancy in the i386 instruction set by defining sets of functionally equivalent instructions. It then encodes information in machine code by using the appropriate instructions from each set.
[edit] Links
- Archived Homepage
- Download v0.13
- Download v0.10
- NetBSD GitHub
- Hydan: Hiding Information in Program Binaries - original paper
- Information Hiding in Program Binaries (Blackhat presentation) (slides)
- Detecting Hydan- Statistical Methods for Classifying the Use of Hydan Based Stegonography in Executable Files
- Steganalysis of Hydan
- Description of how Hydan works - chapter from book "Malware: Fighting Malicious Code"
