tag:blogger.com,1999:blog-2944716441661470310.post985418541241510963..comments2023-04-19T20:14:22.052+01:00Comments on Find 815: OpenStego Password?DarkUFOhttp://www.blogger.com/profile/08464721245509617190noreply@blogger.comBlogger73125tag:blogger.com,1999:blog-2944716441661470310.post-39826361048937059542008-01-22T02:52:00.000+00:002008-01-22T02:52:00.000+00:00that is interessting, but it does seem that the st...that is interessting, but it does seem that the stego pic and the program showed up in such odd was that they have to be directly related. The real mystery than becomes what is the password. I got a theory if you really go on the softwares site, the creator says his wife was a big inspiration. IF we could somehow find out the creators wifes name we may have a password.drewsiferhttps://www.blogger.com/profile/15317172681317586254noreply@blogger.comtag:blogger.com,1999:blog-2944716441661470310.post-83209929879159753852008-01-20T19:26:00.000+00:002008-01-20T19:26:00.000+00:00Bear with me here...I've been unknowingly interest...Bear with me here...<BR/><BR/>I've been unknowingly interested in steganography and cryptology for years because of perplexcity, i think some people are getting the wrong idea about steganography, the fundamental idea is concealment of communication and in the context of computers is that ANY media can be imbedded in ANY other, for example a .pdf can be imbedded in an .mp3, a whole film could be imbedded in a .jpeg or an .exe can be imbedded in a cookie downloaded from a website.<BR/>Using this principal, i think the stegosaurus image was a white rabbit, leading us into a wider range of stegged media, such as the .jpegs of the websites found on Sam's computer, or even the bali website. The problem with OpenStego is that it only deals with .png, .bmp and .wbmp file types. Maybe we need some other programs similar to OpenStego to find out whethere this hypothesis is true.<BR/><BR/>Also, the steganography that i am used to is alot more primative than these programs allow. For example, the most simple digital imaging steganography technique is the LSB (Least Significant Bit) technique, at it's simplest it can hide one image within another, look it up on wikipedia. Anyway i was looking to analyse the stegosaurus image using this technique (alas, to no avail.), when i stumbled upon a website giving tutorials on bit depth, and who would show up? The ever-increasingly mysterious Mr James Clerk Maxwell! Even though this was a great surprise to me, apparently he was an incredibly well established photographic scientist who did masses of work pertaining to colour and how colour is shown. (or NOT shown as the case may be) He was also known to send secret messages to people, and did substantial research in developing very early photographic microdots. Oh, i almost forgot, here is the website, it is under bit depth 101, it is a quicktime video:<BR/><BR/>http://movielibrary.lynda.com/html/modPage.asp?ID=419<BR/><BR/>This lead me to believe that, just the the image of Sam's girlfriend with the words written in obscure places, maybe we are missing something that is very small or out of place on the website or dino picture. If we can manage to LSB the picture, we may be able to see the faces that some people claim to see, hiding out in the bushes like some sort of legion of ninjas.<BR/><BR/>I don't know how much help this will be but at least i'm trying to think horizontally.., or is that vertically? Diagonally?<BR/>Ah well.<BR/><BR/>WrezzWrezzhttps://www.blogger.com/profile/15598499118842806546noreply@blogger.comtag:blogger.com,1999:blog-2944716441661470310.post-35637645615200538822008-01-20T17:11:00.000+00:002008-01-20T17:11:00.000+00:00im searching on stegosaurus and i found this http:...im searching on stegosaurus and i found this http://www.dinosauria.com/jdp/stolen/stegfoot.htm may be usefulgermabudhttps://www.blogger.com/profile/10849440765859866827noreply@blogger.comtag:blogger.com,1999:blog-2944716441661470310.post-81587452726543929482008-01-20T17:10:00.000+00:002008-01-20T17:10:00.000+00:00I had a look at the source code, there's no master...I had a look at the source code, there's no master password or something like that. Since it uses a safe algorithm there's no other way than guessing the passwords. I hacked the code so it would try every line from a file as password, and tried with the opensource english dictionaries I could find. Obviously it's not a simple password...Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-2944716441661470310.post-21621373672949862852008-01-19T10:28:00.000+00:002008-01-19T10:28:00.000+00:00ok, this is a LONG SHOT! But I think that it may w...ok, this is a LONG SHOT! But I think that it may work with someone else doing it...<BR/><BR/>I figured out the password thing. You go into the embed menu and you follow the prompts, then you enter your own password and confirm. That unlocks the site. Then you can do the extract and use your password successfully. <BR/><BR/>Now here is the long shot.. I zoomed in on the pictures of the stego, and there seems to be peoples faces in the bushes... so I am wondering if there are two files that we need to put together to be able to see the images clearly... But they are there. If I knew how to take screen shots... damit, not that savvy, but you can check for yourselves. <BR/><BR/>Please do and get back to me, this is cool, and I want to see what happens.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-2944716441661470310.post-32153434908304365182008-01-19T02:35:00.000+00:002008-01-19T02:35:00.000+00:00There is a Deputy Lock in the book "Our Mutual Fri...There is a Deputy Lock in the book "Our Mutual Friend"...sublimeskhttps://www.blogger.com/profile/01290580135602029836noreply@blogger.comtag:blogger.com,1999:blog-2944716441661470310.post-80750423282461147692008-01-19T02:23:00.000+00:002008-01-19T02:23:00.000+00:00maybe the key is the lock :)maybe the key is the lock :)Simon Bournehttps://www.blogger.com/profile/08134548548094405874noreply@blogger.comtag:blogger.com,1999:blog-2944716441661470310.post-11726294060893945822008-01-19T01:57:00.000+00:002008-01-19T01:57:00.000+00:00Over on http://abc.go.com/primetime/lost/index?pn=...Over on http://abc.go.com/primetime/lost/index?pn=mb&cat=73722&nav=search&fromUID=1872556387, someone posted about Stego. First post and his username is TheKeyisTheLocke. As Keys are passwords in encryption, has anyone tried TheLocke yet?Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-2944716441661470310.post-87856024417485771212008-01-19T00:27:00.000+00:002008-01-19T00:27:00.000+00:00Anyone try the file size?524106Or file width/heigh...Anyone try the file size?<BR/><BR/>524106<BR/><BR/>Or file width/height:<BR/><BR/>500376Unknownhttps://www.blogger.com/profile/16204787962230323159noreply@blogger.comtag:blogger.com,1999:blog-2944716441661470310.post-6462396264467026452008-01-19T00:19:00.000+00:002008-01-19T00:19:00.000+00:00I put this in a different post, so sorry for the d...I put this in a different post, so sorry for the dup, but has anyone tried the season 4 clue from the latest clue hunt? I got 36-15-28 as my answer.Morganhttps://www.blogger.com/profile/17910987079091484198noreply@blogger.comtag:blogger.com,1999:blog-2944716441661470310.post-61697098379459541392008-01-18T23:06:00.000+00:002008-01-18T23:06:00.000+00:00Global-Trance said... Ampere... referencing thi...Global-Trance said...<BR/><BR/> Ampere... referencing this person?<BR/> http://en.wikipedia.org/wiki/Andr%C3%A9-Marie_Amp%C3%A8re<BR/><BR/>At first I did not put the name in any context until after I figured out the reversed sentence. Then I thought about the name a little and it made sense with the whole electromagnetism thing. Maybe a hint we are trying too hard to get the password for the stego. We should wait for the next video.DarkVVindhttps://www.blogger.com/profile/01534468609896061060noreply@blogger.comtag:blogger.com,1999:blog-2944716441661470310.post-88307087380208899982008-01-18T23:05:00.000+00:002008-01-18T23:05:00.000+00:00ok maybe we will get the answer tonight.ok maybe we will get the answer tonight.zap800https://www.blogger.com/profile/12740809345549166765noreply@blogger.comtag:blogger.com,1999:blog-2944716441661470310.post-30773665212875780862008-01-18T22:58:00.000+00:002008-01-18T22:58:00.000+00:00Ampere... referencing this person?http://en.wikipe...Ampere... referencing this person?<BR/>http://en.wikipedia.org/wiki/Andr%C3%A9-Marie_Amp%C3%A8reGlobal-Trancehttps://www.blogger.com/profile/01601518057454306083noreply@blogger.comtag:blogger.com,1999:blog-2944716441661470310.post-21187959208515449502008-01-18T22:49:00.000+00:002008-01-18T22:49:00.000+00:00Not sure if this a real or not but a poster showed...Not sure if this a real or not but a poster showed up in the livechat as "Ampere" and posted "Reta loe divnie ulcec ne itap" which is reversed for "Patience clue in video later" maybe meaning the 3rd chapter update later on tonight.<BR/><BR/>http://img138.imageshack.us/my.php?image=amperemessagekp6.jpg]DarkVVindhttps://www.blogger.com/profile/01534468609896061060noreply@blogger.comtag:blogger.com,1999:blog-2944716441661470310.post-17029701755712965192008-01-18T22:43:00.000+00:002008-01-18T22:43:00.000+00:00It just means earlier versions didn't mask the pas...It just means earlier versions didn't mask the password when you typed it in. In the current build, whenever you type a password in, it shows up as a bunch of ****** instead.Global-Trancehttps://www.blogger.com/profile/01601518057454306083noreply@blogger.comtag:blogger.com,1999:blog-2944716441661470310.post-36878370521903190772008-01-18T22:35:00.000+00:002008-01-18T22:35:00.000+00:00random thought - I haven't had the time to try it ...random thought - I haven't had the time to try it myself yet.<BR/><BR/>But I notice there are earlier versions of open stego available (search for Open Stego 0.1).<BR/><BR/>One dl site [ http://www.softwareheadlines.com/modules/planet/view.article.php/249975 ]mentions in the "Changes" for 0.3.2 <BR/>"Changes:. [blah blah].. Support for masked password entry on the command-line was added." <BR/><BR/>Does this mean that earlier versions were designed to convert without asking for a password? Perhaps using an old version will work?Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-2944716441661470310.post-19412890240917754762008-01-18T22:28:00.000+00:002008-01-18T22:28:00.000+00:00jsupps1 said...maybe someone could download the so...<I> jsupps1 said...<BR/>maybe someone could download the source (it is open source and available from the sourceforge page), put a breakpoint where it compares the real password to what was typed in and see what the real password is.</I><BR/><BR/>The file ends like .png file ends when viewing it in a hex editor. Which has made me skeptical about anything being there (since there is no password string to replace at the end)Congestedhttps://www.blogger.com/profile/09233597416825773402noreply@blogger.comtag:blogger.com,1999:blog-2944716441661470310.post-63127596882553550782008-01-18T22:27:00.000+00:002008-01-18T22:27:00.000+00:00zap800 i couldnt find this strand of text in the h...zap800 i couldnt find this strand of text in the hex file, how far down is it?j03y.m4nc3rhttps://www.blogger.com/profile/02127704506847106439noreply@blogger.comtag:blogger.com,1999:blog-2944716441661470310.post-7133117323476748262008-01-18T22:02:00.000+00:002008-01-18T22:02:00.000+00:00one neat thing I found when you open the pic with ...one neat thing I found when you open the pic with irfan and then open as a hex file you will see in the hex it says "ADD and then a music symbol" in the hex code. Does this help I dont know. lolzap800https://www.blogger.com/profile/12740809345549166765noreply@blogger.comtag:blogger.com,1999:blog-2944716441661470310.post-50872285536927349742008-01-18T21:56:00.000+00:002008-01-18T21:56:00.000+00:00ok I got open stego and a hexidecimal editor to tr...ok I got open stego and a hexidecimal editor to try this with everyone and I have tried:<BR/>francis baon(creator of modern steg)<BR/>shakspeare (thought to have steg hidden in his plays)<BR/>Herodotus (first know n use of steg in history)<BR/>Demeratus (shaved a mans head to hide a secret message)zap800https://www.blogger.com/profile/12740809345549166765noreply@blogger.comtag:blogger.com,1999:blog-2944716441661470310.post-91546295354013871492008-01-18T21:52:00.000+00:002008-01-18T21:52:00.000+00:00maybe someone could download the source (it is ope...maybe someone could download the source (it is open source and available from the sourceforge page), put a breakpoint where it compares the real password to what was typed in and see what the real password is.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-2944716441661470310.post-43169581385659088442008-01-18T21:48:00.000+00:002008-01-18T21:48:00.000+00:00ermm what about different combanations of the lett...ermm what about different combanations of the letters/nubers in sams emails??nagra16https://www.blogger.com/profile/06972892339124489638noreply@blogger.comtag:blogger.com,1999:blog-2944716441661470310.post-18352990524356105202008-01-18T21:43:00.000+00:002008-01-18T21:43:00.000+00:00I think we're going to have to get some hints.I think we're going to have to get some hints.travishttps://www.blogger.com/profile/07424660307279458120noreply@blogger.comtag:blogger.com,1999:blog-2944716441661470310.post-11235224887142630502008-01-18T21:35:00.000+00:002008-01-18T21:35:00.000+00:00May be a long shot, but could the password maybe b...May be a long shot, but could the password maybe be linked to this "Vapour Liquid Equilibrium" thing the openstego creator has also created? Anyone looked into this?j03y.m4nc3rhttps://www.blogger.com/profile/02127704506847106439noreply@blogger.comtag:blogger.com,1999:blog-2944716441661470310.post-21302252691748114622008-01-18T21:29:00.000+00:002008-01-18T21:29:00.000+00:00^ just to add, all the other results are real, and...^ just to add, all the other results are real, and the top result for that search in google. "Maxwell iowa" exists, so do the wikipedia entries for James C Maxwell & Sir John Maxwell, and Maxwell Field is an AFB.censorhttps://www.blogger.com/profile/04580655943126431712noreply@blogger.com