Tag / zip

by Kush Sharma

How to: Hide your data in a Audio Song

sound-secret-files-newfile

Introduction

Due to the way different file types are read it is possible to have a single file that acts differently depending on how it is read. For example sounds & images are read from the header down whereas ZIP files are read from the footer up.

All sound files should work, but some are more unpredictable that others. Mp3s seem to be the most reliable so this tutorial will be using them in the examples (plus who doesn’t love mp3 songs). All the steps are same if you want to use an image(.jpg) instead of sound.

How to create one

Firstly get hold of a sound file you want to hide the data in (example sound.mp3), then gather all your files you want to hide and put them in a ZIP (example secret.zip).

Our chosen Sound and zip file:

sound-secret-files

Windows 7: Shift+right click in the folder containing the files will open command prompt in that directory Windows: Open command prompt (start->run cmd), then use cd to get to the folder where the files are stored. Linux: You know what to do, open terminal and move to directory containing files.

We now need to merge these files together, but we want to use a binary merge to keep the two files intact. With Windows copy command this uses the /B switch. (Binary Data)

Windows

Code:

copy /B sound.mp3+secret.zip newfile.mp3

Linux

Code:

cat sound.mp3 secret.zip > newfile.mp3

You should now have gained a new file called newfile.mp3. This should look identical to the sound you started with when opened with a media player, but with a secret payload hidden within. Here is the example sound containing a ZIP:

sound-secret-files-command

The two simplest ways to get your data back out of these files is to either change the extension from .mp3 to .zip or to open your chosen ZIP program and open newfile.mp3 within that. You should now be presented with your original files.

sound-secret-files-access-data

One more way of getting your .zip file back is to run this code:

copy /b newfile.mp3 file.zip

This is clearly not a secure way to store your data but as a quick and dirt solution to hide files it works well enough. If you are storing text documents in the ZIP then the contents of them will still be visible in a HEX editor looking at newfile.mp3. There are much better steganography tools that use encryption keys to securely store your data within other files.

This method only appends new data (from secret.zip, in this article) into after the footer identifier of mask file (sound.mp3). Good media player will only read from header to footer, and will not read further than that. So whatever data we add will not be read, and the original file will remain in good condition. only it’s size is changing because we add more data into it. The same applies to every file which has header and footer identifier (e.g. jpeg, png, gif, mp3, mp4, exe, and most of known file format).

by Kush

WinRAR

It evolved from a simple file archiver into a professional instrument capable to manage, control and personalize compressed bundles. The amount of options and features currently available in the application is way beyond the needs of a regular user, but it manages to accommodate.

WinRAR is a lightweight, flexible, and easy-to-use archiving utility that can unpack most archive formats, as well as compress to both RAR and ZIP. Free to try for 40 days ($29 for single license), WinRAR is a top dog in the compression category.

WinRAR’s interface is about as simple as it gets. Start creating (or add to) an archive by dragging and dropping your files into the interface or by browsing through the Folder Tree side panel (when enabled). From there, the most common functions are laid out in the form of colorful, mostly intuitive icons along the top, which can all be customized by downloading themes from the company’s Web site. You can Add files to, Extract, Test, Delete, or even Repair archives right from the main interface. Drop-down menus house the program’s more advanced features, including self-extracting archives, archive locking, benchmarking, and autodeletion of temp files.

During this step you get to choose the archive formats you want WinRAR to decompress: RAR, ZIP, CAB, ARJ, LZH, ACE, 7-Zip, TAR, GZip, UUE, BZ2, JAR, ISO and Z. Compression is available only in RAR and ZIP formats.

Unlike the set of features in the application and its abilities, the interface has not evolved too much. In fact, changes are barely visible and apart from a slight brush-up and adding icons to reflect the new features, all modifications could very well go unnoticed.

Preserving a familiar layout, however, benefits old time users. Also on the upside, keeping it simple helps less experienced users quickly find their way around.

Standout features

  • Archive Options: There are a ton of configuration settings for creating archives (including maintaining NTFS security settings and spanning multiple archive files), and they are presented in a way that is not overwhelming to the user.
  • Archive Profiles: WinRAR has an innovative feature which allows you to save a set of archival settings as a “profile” and apply the profile to new archives, which can be a real time saver.
  • File Format Support: WinRAR can create the popular RAR format files, as well as the common ZIP files. It extracts a decent number of archive formats as well (but not as many as 7-Zip).
  • Cost: WinRAR is price and feature competitive with WinZip standard. In addition, WinRAR is sold with deep price discounts when bought in bulk. Unlike WinZip, WinRAR gives free upgrades for life.

The Good

Despite being an instrument with lots of options mostly suitable for advanced users, WinRAR manages to offer easy handling for the less experienced as well.

It can open the most popular archive formats on the market and support for ZIP has been greatly extended lately, as it can go past the 2GB limit and can create split volumes.

There are several compression profiles available to which you can add your own. Professional users have an extensive range of settings to choose from, which include configuration of self-extracting modules, file exclusions, encryption or file viewer settings.

The Bad

The password manager stores the countersigns in the Registry and they are in plain text. As such, anyone with medium computer skills snooping on your computer can access them.

The Truth

WinRAR continues to stay true to its reputation of professional archive utility that can accommodate regular, as well as advanced users alike.

Overall, WinRAR is a winner because of its speed, simple interface, flexibility with file formats, and powerful advanced features. If you’re looking for a one-stop archiving shop, look no further.