Friday, June 27, 2014

PNGDrive - The easiest path to plausible deniability.

PNGDrive is a free file system for Linux licensed under the GPL 3. It is as a steganographic file system that allows users to access file systems hidden within PNG images.

By default the data is both encrypted and stored on the least significant bits of each pixel meaning that the image remains very similar to the original and the existence of a file system becomes untraceable unless both bit mask and password are available. 

Using this tool you can access any PNG image as if it were a file-system, meaning you can copy files into it, edit files from it, remove, etc... and once you've finished its just a picture.

Usage: pngdrive [-debug] [-key=<key>] [-mask=<mask>] [-format] <png image file>
  • debug: enables verbose/debug mode
  • key: uses <key> to encript the data
  • mask: is an hexacimal 32bits integer starting with 0x, each bit set in the mask will be used to store data, while bits that are not set remain unchanged. (e.g. -mask=0xFF0000 will mean that only the Red channel will contain data RGB images?). Default mask is 0x01010300.
  • format: creates an empty filesystem using current values for 'key' and 'mask'.
How to create an image that can be used for mouting?
To create the PNG (RGBA) from JPG:
  • convert sample.jpg -depth 8 -transparent none sample.png
Note: Requires package ImageMagick
Dependencies:
  • aptitude install libpng-dev libssl-doc libssl-dev
Compiling:
  • make
Installing (as root):
  • make install

No comments:

Post a Comment