Network steganography is approach how to invisible transfer data via IP computer network covered in datagram layers headers which are usually used for purposes of routing and switching to provide connectivity. This framework could help with testing of security mechanism via adding hidden information to simulate steganography attack.
- IP steganography (v4)
- ICMP steganography
- TCP steganography
- DNS steganography
- HTTP steganography
Detailed information about used fields at headers and techniques in technical description
- Mandatory install WinPcap to your computer
- System library .Net Framework 4.6.1 and newer (Windows 10 native)
- Your network driver have to be able run in promicscious mode (try Wireshark for troubleshooting)
- For testing purposes you can add localhost interface Microsoft Loopback Adapter to Microsoft KM-TEST Loopback Adapter and set ip address for that interface from private IPv4 address range (px. 172.31.31.31)
Compiled "click & run" files are in folder Releases
- Download solution and open in Visual Studio as standard projekt
- Download solution and build it from command line
MsBuild.exe SteganographyFramework.sln /t:Build /m - run command line app (SteganoNet.UI.Console)
- select role of your computer (server / client)
- select network interface
- choose network parametres
- choose steganographic method
- prepare opposite node
- run
- analyze result
- run GUI (SteganoNet.UI.WinForms)
- current WinForms GUI is quite experimental
cmd>X:\SteganoNet.UI.Console.exe
- -role c
- -ip 192.168.1.216
- -port 11011
- -ipremote 192.168.1.217
- -portremote 11001
- -methods: 301,703
- -runsame: n
- -serverTimeout: 60000
- -message: "secret message"
- IPv4 only
- Use in LAN or have reachable IP address to let it work properly (NAT principe)
- you need to know which steganography methods are not conflicting (you can't use ICMP and DNS simultaneously)
- project is x86 platform
- makes troubles on Virtual Machine - libraries missing (VmWare troubles, Azure/Hyper-V troubles, VirtualBox OK)
- New methods of existing protocols needed be implemented only in SteganoNet.Lib/NetSteganography.cs
- If needed install library from Nuget console by typing
Install-Package PcapDotNet
- more methods - anytime
- multiplatformity by converting to .NetCore, now dependent on PcapDotNet framework lock.
- improve console wizard for humans
- there is no dynamic settings for timers and other constant public values
- Do not use this software to illegal activity!
- Developed for academic purposes as Master Thesis at VŠB - Technical University of Ostrava
- Creative Commons BY-NC-SA