stegextract
Stegextract is a Bash script that extracts hidden files and strings from images, supporting PNG, JPG, and GIF formats. It extracts any trailing data after the image's closing bytes and any hidden files embedded within the image. The tool relies on magic numbers, hexdumps, and binary data alone, and does not support Steganography related to color/pixel/filter/LSB. Note that short byte combinations might create false positives, and manual review of the hexdump may be necessary in complex cases.
FEATURES
ALTERNATIVES
Powerful tool for searching and hunting through Windows forensic artefacts with support for Sigma detection rules and custom Chainsaw detection rules.
XMLStarlet offers a suite of command line utilities for manipulating and querying XML documents.
A cross-platform registry hive editor for forensic analysis with advanced features like hex viewer and reporting engine.
Toolkit for post-mortem analysis of Docker runtime environments using forensic HDD copies.
A forensic research tool for gathering forensic traces on Android and iOS devices, supporting the use of public indicators of compromise.
Zenduty's platform provides real-time operational health monitoring and incident response orchestration to improve incident response times and build a solid on-call culture.
Python forensic tool for extracting and analyzing information from Firefox, Iceweasel, and Seamonkey browsers.
A toolkit for forensic analysis of network appliances with YARA decoding options and frame extraction capabilities.
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
System Two Security
An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.
Aikido Security
Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.
Permiso
Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.