Download the signature for the tarball.
Download my key
older versions of stegtunnel
Stegtunnel provides a covert channel in the IPID and sequence number fields of any desired TCP connection. It requires the server and client to have a previously shared secret in common to detect and decrypt the data. You don't have to worry about the connections looking unlike real TCP connections, because they are real connections, just with extra info in certain fields.
Stegtunnel 0.4 brings a ton of new features, and was the subject of a recent presentation at ToorCon . This release adds a new file transfer mode, and breaks some of the functionality in stegtunnel-0.2 into Packet Purgatory (Packet Purgatory is included with the stegtunnel tarball, no need to download it twice).
Prior to that, Stegtunnel was the subject of a presentation at Rubi-Con. version 0.2 is the cleaned-up version of the demo at the conference. In addition, a couple of features were added. The presentation itself has been turned into a full article. Read it, let me know if there are any clarifications needed, or if you have ideas for improving stegtunnel.
Stegtunnel requires libpcap , and libdnet version 1.2 or higher.
Hey! Fedora Users! Having Problems?
Go here to learn about the fix for compiling libdnet under Fedora.