文章作者:无双坏坏 信息整理
信息来源:邪恶八进制信息安全团队(
www.eviloctal.com)
论坛传不了,就直接在前头给出下载地址
http://free.ys168.com/?kijs CameraShy.0.2.23.1.exe 1.3MB 这个就是
Camera/Shy is the only steganographic tool that automatically scans for and delivers decrypted content straight from the Web. It is a stand-alone, Internet Explorer-based browser that leaves no trace on the user's system and has enhanced security
The application, once called Peek-a-Booty, is now known as Camera/Shy and is a browser-based steganography program that can hide data inside GIF images on any Web page. Camera/Shy is designed to allow Internet users in countries such as China or Cuba to access Web content that their governments have banned.
Hacktivismo, a small offshoot of the famed Cult of the Dead Cow hacker collective in Lubbock, Texas, introduced Camera/Shy at the H2K2 Hackers on Planet Earth Convention in New York last week. The group has been working on the application since early last year, and there has been much speculation in the hacker/security community over what exactly the program would be.
The software, based on Internet Explorer, uses a technique called LSB (Least Significant Bit) steganography to hide data. Steganography is the art of disguising a message so that its existence is hidden. The LSB method is used to insert the hidden content in the least-significant portions of the image. It is one of the faster and easier steganographic methods but has the drawback of altering the color content of images, which can betray the existence of a hidden message.
The hidden messages are also encrypted using 256-bit AES (Advanced Encryption Standard) encryption. Camera/Shy automatically scans each Web page the user views for hidden or encrypted GIF files. The user can then decrypt and parse the hidden content with one click, according to a statement issued by Hacktivismo.
Camera/Shy also automatically clears a machine's cache and Internet history.
Camera/Shy's developers said they believe the software's potential benefits far outweigh any concerns over its possible use by criminals.
"But put another way, do terrorists use telephones, ICQ, [Microsoft Corp.'s] Word programs? Of course they do," said Oxblood Ruffin, executive director of Hacktivismo and the lead developer of the Camera/Shy browser.
Ruffin said that he expects Camera/Shy to spread quickly on the Internet via Internet Relay Chat channels, mailing lists and file-sharing applications.
Hacktivismo members said they would release the software under the GNU General Public License. Camera/Shy will run on machines running Windows 95 and later and Internet Explorer 5 and later.
Camera/Shy Screen Shot
That's all there is to it. All you need to know is the web page that has a Camera/Shy encrypted image file, and the password and signature (signature is just a second password).
Along with viewing stegged images, you can create them with Camera/Shy:
1. Open Camera/Shy. Click the View menu and uncheck "Don't show gif steg window" if it is checked.
2. You have 2 choices here, navigate to a web page to encrypt or encrypt text from a file.
To encrypt text from a file, you can enter the path to the file in the Camera/Shy browser window address field. Do this in the format of f:///c:\docs\mydoc.txt. That is, f:/// followed by the path to your text file. You have to use a text file. No MS Word or Excel files.
Instead of using the Camera/Shy browser window, you can copy and paste the text in the little window to the right that says "Content to put in gif".
Note: The amount of information you can encrypt is dependent on the size of the image file. Camera/Shy will tell you how much text you can encrypt. The bigger the image file, the more text you can add.
3. Create a password and signature, in the fields with the asterisks, at the top of Camera/Shy. This is the password and signature that others will enter to see the text in the encrypted graphics file.
Once again, what Camera/Shy calls a signature is just a second password. It can be the same as the first password if you want.
4. Next, you need to load a .gif image file that you will be encrypting. Click the blue arrow up by the password fields that says "Load Image" when you move the mouse over it.
Note: At this time, Camera/Shy supports only .gif image files.
5. Once you have your passwords set, the image file loaded and text to encrypt (or a web page), click either the "Encrypt Text" button above the window where you paste text, or click the "Encrypt current web page" button above the Camera/Shy browser window - depending on where you loaded your information from.
6. Finally, go back to the top of the program window and the click the blue arrow that says
"Unload and Save Image" when you move your mouse over it.
You will now have an image file with encrypted information that you can put on a web page or email someone.
Camera/Shy is an effective steganography tool. However, it could use some improvements. The support of larger amounts of text in smaller image files. Supporting more image file types (in addition to .gif files), and hopefully they will improve the Help in the program. These are minor things, and being an open source program, Camera/Shy will only improve over time as different developers add to the program... at least that is one of the ideas behind open source software.
How you use Camera/Shy, if you do find a use for it, is up to you. You can use it for good or bad, the choice is yours.
PS:
Source Forge - you can find the latest build of Camera/Shy here:
http://sourceforge.net/projects/camerashy/
Other Steganography software:
http://www.jjtc.com/stegoarchive/stego/software.html
A technical discussion of Steganography
http://www.jjtc.com/stegdoc/steg1995.html
Outguess - a program that can detect stegged images:
http://www.outguess.org/detection.php
Another site discussing the defeat of stegged images:
http://www.citi.umich.edu/u/provos/stego/
