Skip to content

bi0s wiki Zsteg

teambi0s/bi0s-wiki

bi0s wiki

teambi0s/bi0s-wiki

Introduction
Basics
Basics
- Getting Started
- WSL install
- Linux Commands
- Bash conditions and loops
- Files
- Python
  Python
Reversing
Reversing
- Roadmap
- Getting Started
  Getting Started
- Binary Analysis
  Binary Analysis
  - Dynamic
    Dynamic
    
    Linux ELF
    Linux ELF
    
    Angr
    
    Z3
- Tools
  Tools
  - Tool Guides
    Tool Guides
    
    GDB
    
    radare
    
    Process Explorer
  - Tool Setup
    Tool Setup
    
    Linux
    
    Windows
- Reverse engineering
Pwning
Pwning
- Roadmap
- Introduction
- Getting Started
- Stack Overflow
  Stack Overflow
  - Introduction to Stack
  - Smash the Stack
  - ret2libc
  - ret2shellcode
  - ROP
    ROP
    
    Static
    
    Dynamic
- Format String Vulnerability
  Format String Vulnerability
- Integer Overflow
- Introduction to Heap Exploitation
Forensics
Forensics
- Roadmap
- Introduction
- Image Forensics
  Image Forensics
  - Introduction
  - LSB Encoding
  - Image Manipulation
    Image Manipulation
    
    PIL
- Network Forensics
  Network Forensics
- Memory Forensics
  Memory Forensics
Steganography
Steganography
- Roadmap
- Introduction
- Tools
  Tools
  - Screening Tools
    Screening Tools
    
    Exiftool
    
    GHex
    
    Binwalk
    
    Steghide
    
    Stegdetect
    
    Zbarimg
    
    GPG
    
    Practice
  - Protected Files Cracking
    Protected Files Cracking
    
    John The Ripper
    
    Stegcracker
    
    Fcrackzip
    
    PDFCrack
  - Image Analysis in different planes
    Image Analysis in different planes
    
    Stegsolve
    
    Stegoveritas
  - Whitespace Steganography
    Whitespace Steganography
    
    Stegsnow
  - PDF Files Analysis
    PDF Files Analysis
    
    Peepdf
  - PNG Files Analysis
    PNG Files Analysis
    
    Pngcheck
    
    TweakPNG
  - Audio Files Analysis
    Audio Files Analysis
    
    Audacity
    
    Sonic Visualiser
    
    Deep Sound
  - LSB Detection in Images
    LSB Detection in Images
    
    Jsteg
    
    Zsteg Zsteg
    Table of contents
    
    Installation
    
    Usage
    
    References
Cryptography
Cryptography
- Roadmap
- Introduction
- Tools
- Basics
  Basics
- Stream Cipher
  Stream Cipher
- Block Cipher
  Block Cipher
  - Introduction
  - Operation modes
    Operation modes
    
    ECB mode
    
    CBC mode
    
    CTR mode
  - CBC IV detection
  - DES weak keys
  - CBC Bit Flipping
  - CTR Bit Flipping
- Number Theory
  Number Theory
- RSA
  RSA
- Others
  Others
  - Hashing
  - PRNG
Web
Web
Hardware
Hardware
- Introduction
- Basic electronics and embedded systems
  Basic electronics and embedded systems
- Firmware analysis
  Firmware analysis
  - Introduction
  - Firmware reverse engineering
- Wireless security
  Wireless security
  - Introduction
  - Bluetooth Security
    Bluetooth Security
    
    Introduction
    
    Machine In The Middle Attacks
    
    Bluetooth Sniffing
  - RFID
    RFID
    
    The Proxmark 3
    
    MIFARE Classic
  - Tools
- Automotive security
  Automotive security
  - Introduction

Zsteg

Zsteg is also a tool like Jsteg but it is used to detect LSB steganography only in the case of PNG and BMP images.

Installation¶

$ sudo apt install ruby
$ sudo gem install zsteg

Usage¶

Zsteg tool can be initialised by typing the following command.

$ zsteg

Sorry, the image can't be displayed

Now, let's see a challenge from Securinets CTF Quals 2019 in which the following PNG image is given .

Sorry, the image can't be displayed

Let's use zsteg on this image and see what happens. The syntax is as follows.

$ zsteg <filename>

Then the result can be seen below.

Sorry , the image can't be displayed.

In the above result, we can find some meaningful data embedded in the LSBs of the PNG image. This meaningful data helped in solving the challenge.

References¶

For further reference of this tool, click here.