# Steganography

## Introduction

Steganography is the practice of concealing a message within another message or a physical object. In computing/electronic contexts, a computer file, message, image, or video is concealed within another file, message, image, or video.

## Timestomp

Timestomp is a **utility co-authored** by developers James C. Foster and Vincent Liu. The software's goal is to allow for the deletion or modification of timestamp-related information in files. The "Timestomp MACE Change Proof" screenshot is a final shot of the operating system's interpretation of the modified timestamp.

{% embed url="<https://www.offensive-security.com/metasploit-unleashed/timestomp>" %}

```
timestomp seceret.txt. -m "02/11/2021 08:06:04"
    • -m → Modify Values
    • -a → Accessed
    • -c → Created
```

## Hiding Files using New Technology File System(NTFS) Streams

{% embed url="<https://www.howtogeek.com/howto/windows-vista/stupid-geek-tricks-hide-data-in-a-secret-text-file-compartment>" %}

## Snow

Snow is a free steganography tool to hide messages in text using white spaces. It takes a file from you and then hides the specified message after encrypting it using a password that you specify. You can hide any message in any text file and then simply retrieve it in an easy way. After hiding sensitive information in a text file, you can send that to any user via email or file-sharing services and then don’t worry about if someone steals the information as the message is encrypted.

#### Encryption

```
snow -C -m "Secret Text Goes Here!" -p "magic" readme.txt readme2.txt
    • -m → Set your message
    • -p → Set your password
```

#### Decryption

```
./snow -C -p "magic" output.txt
```

{% embed url="<https://www.ilovefreesoftware.com/01/windows/free-steganography-tool-to-hide-message-in-text-using-white-spaces.html>" %}

## OpenStego

OpenStego provides two main functionalities:

* **Data Hiding:** It can hide any data within a cover file (e.g. images).
* **Watermarking (beta):** Watermarking files (e.g. images) with an invisible signature. It can be used to detect unauthorized file copying.

{% embed url="<https://www.openstego.com>" %}


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://book.thegurusec.com/certifications/certified-ethical-hacker-practical/steganography.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.