ADS: Ultimate Stealth Technology
The Standard Disclaimer applies. By continuing to read this webpage, you waive your right to sue me for any reason related to (directly or indirectly) reading this material. I am NOT responsible for your use or misuse of this document.
[Alternate Data Streams]
What if....
You could hide a file from Explorer...
You could hide it from any search tool...
It was diffiult to decode....
This is the PERFECT addition to polymorphic, "keep-alive" (using multiple processes to keep the main application alive), and encryption tech. It hides files within a stream, which is invisible to most tools, and definitely to users. Windows lacks a native stream decoder, so if you deny access to ADS tools (example, knock iexplore.exe from the Internet, any website or application with ADS or "streams* in the name or body text is killed) you can't be stopped. (Don't forget to break USB drivers and CDs too) I doubt you'll need to do all this just to hide a file, but hey, some people are paranoid...
ADS breaks many scanners and apps because ADS technology is not fully integrated into Windows. Referencing an ADS program normally will cause errors. See Here for full details on using ADS. The easiest way to reference an ADS app is using the command line. Batch files are insecure because they show a console and can easily be edited. Google Quick Batch File Compiler (only free if you "patch" it) or ComputerHope.com's free BAT2EXEC (.com, actually) will make the source uneditable.
This will make hiding your media much easier. I imagine you'll use it to hide video and picture files, but you can use it for documents and executables too. It works best with text files.
[Alternate Data Streams]
What if....
You could hide a file from Explorer...
You could hide it from any search tool...
It was diffiult to decode....
This is the PERFECT addition to polymorphic, "keep-alive" (using multiple processes to keep the main application alive), and encryption tech. It hides files within a stream, which is invisible to most tools, and definitely to users. Windows lacks a native stream decoder, so if you deny access to ADS tools (example, knock iexplore.exe from the Internet, any website or application with ADS or "streams* in the name or body text is killed) you can't be stopped. (Don't forget to break USB drivers and CDs too) I doubt you'll need to do all this just to hide a file, but hey, some people are paranoid...
ADS breaks many scanners and apps because ADS technology is not fully integrated into Windows. Referencing an ADS program normally will cause errors. See Here for full details on using ADS. The easiest way to reference an ADS app is using the command line. Batch files are insecure because they show a console and can easily be edited. Google Quick Batch File Compiler (only free if you "patch" it) or ComputerHope.com's free BAT2EXEC (.com, actually) will make the source uneditable.
This will make hiding your media much easier. I imagine you'll use it to hide video and picture files, but you can use it for documents and executables too. It works best with text files.
posted by ShadowHacker at 4:41 PM
0 Comments:
Post a Comment
Links to this post:
Create a Link
<< Home