HackTricksText Steganography
Tip
Jifunze na fanya mazoezi ya AWS Hacking:
HackTricks Training AWS Red Team Expert (ARTE)
Jifunze na fanya mazoezi ya GCP Hacking:HackTricks Training GCP Red Team Expert (GRTE)
HackTricks Training Azure Red Team Expert (AzRTE)
Support HackTricks
- Angalia mpango wa usajili!
- Jiunge na 💬 kikundi cha Discord au kikundi cha telegram au tufuatilie kwenye Twitter 🐦 @hacktricks_live.
- Shiriki mbinu za hacking kwa kuwasilisha PRs kwa HackTricks na HackTricks Cloud repos za github.
Tafuta:
- Unicode homoglyphs
- Zero-width characters
- Whitespace patterns (spaces vs tabs)
Njia ya vitendo
Iwapo plain text itatenda kinyume na matarajio, kagua codepoints na normalize kwa uangalifu (usiharibu ushahidi).
Mbinu
Text stego mara nyingi inategemea herufi zinazochapwa kwa njia ile ile (au zisizoonekana):
- Homoglyphs: Unicode codepoints tofauti ambazo zinaonekana sawa (Latin
avs Cyrillicа) - Zero-width characters: joiners, non-joiners, zero-width spaces
- Whitespace encodings: spaces vs tabs, trailing spaces, line-length patterns
Mifano ya ziada yenye ishara kubwa:
- Bidirectional override/control characters (zinaweza kupangia upya maandishi kimaoni)
- Variation selectors and combining characters zinazotumika kama chaneli ya siri
Vifaa vya decode
- Unicode homoglyph/zero-width playground: https://www.irongeek.com/i.php?page=security/unicode-steganography-homoglyph-encoder
Kagua codepoints
python3 - <<'PY'
import sys
s=sys.stdin.read()
for i,ch in enumerate(s):
if ord(ch) > 127 or ch.isspace():
print(i, hex(ord(ch)), repr(ch))
PY
Tip
Jifunze na fanya mazoezi ya AWS Hacking:
Jifunze na fanya mazoezi ya GCP Hacking:Support HackTricks
- Angalia mpango wa usajili!
- Jiunge na 💬 kikundi cha Discord au kikundi cha telegram au tufuatilie kwenye Twitter 🐦 @hacktricks_live.
- Shiriki mbinu za hacking kwa kuwasilisha PRs kwa HackTricks na HackTricks Cloud repos za github.