Advanced JPEG Steganography and Detection

Presented at Black Hat Asia 2014, Unknown date/time (Unknown duration)

We will dive deep into the JPEG algorithm and then explore numerous published hiding techniques, explained in plain English (as opposed to Ph.D. mathematical lingo). Some techniques are extremely difficult to detect, while others have high capacity (15% to 30%). You will be amazed at how much data can be hidden in a JPEG with almost no visible change (and ZERO quality degradation), even when comparing images side by side. Then, we'll discuss several approaches to automated detection. We will demonstrate detection against the techniques applied. The entire talk is sprinkled with images and live demonstrations. Finally, I will present a customized implementation with full cryptography and detection mitigation. Best of all, you get the program to use yourself - this will be fun!

Presenters:

• John Ortiz - Harris IT Services
  Mr. Ortiz is currently a senior computer engineer for Harris IT Services (HITS) and in this position researches and develops advanced cyber security tools and techniques. These include high bandwidth network data extraction and statistical analysis software for malicious file detection. Prior to Harris IT Services, he worked for SRA International and researched data hiding, covert botnets, and malware analysis techniques. Prior to SRA, he spent 5 years at General Dynamics developing source code analyzers, reverse engineering tools, and network security software.

Links:

• https://www.blackhat.com/asia-14/briefings.html#Ortiz
• https://www.youtube.com/watch?v=BQPkRlbVFEs

Similar Presentations:

• BSidesLV 2023 / Open Source GitOps for Detection Engineering
• DEF CON 18 (2010) / Open Source Framework for Advanced Intrusion Detection Solutions
• DEF CON 14 (2006) / Advanced File System Hiding and Detection