| ▲ | Exif Smuggling(github.com) |
| 47 points by rolph 4 hours ago | 20 comments |
| |
|
| ▲ | BoppreH 3 hours ago | parent | next [-] |
| Oh, that's clever. It's not just hiding the payload in the Exif, it's hiding the fact that the payload came from the network at all, by reading it from the browser cache (presumably after embedding the image into a page the user visited). So you have a package that doesn't include (directly) malicious code or make network calls, yet it can still run malicious code from the network. This is much better than simple obfuscation because you can vary the payload, like a command-and-control server. |
|
| ▲ | Omni5cience 2 hours ago | parent | prev | next [-] |
| Why is this a link to a random fork that has no commits, rather than the original? |
|
| ▲ | Grom_PE 2 hours ago | parent | prev | next [-] |
| It isn't necessary to use Exif to embed arbitrary data inside an image. Could as well use PNG extra chunk, JFIF app marker, or simply append data to the end of the file. It would be more interesting to devise a method that survives all extra data stripping and re-encoding, perhaps taking advantage of deterministic encoders, assuming they don't randomize pixel data on purpose. In other words: turning the image data stream itself into a polyglot. |
| |
| ▲ | algoth1 2 hours ago | parent | next [-] | | Isnt this the principle behind synthid? | | |
| ▲ | Grom_PE 2 hours ago | parent | next [-] | | Maybe if you look at it from far away enough. Watermarking tries to resist image data manipulation. Smuggling data is concerned with preservation of bytes. Though if we're executing arbitrary code on the target anyway, ways of embedding data in an image are vast, including watermarking/steganography. | |
| ▲ | Gigachad 2 hours ago | parent | prev [-] | | More generally it’s called Steganography. |
| |
| ▲ | Levitating 2 hours ago | parent | prev [-] | | Do you mean steganography? |
|
|
| ▲ | _def an hour ago | parent | prev | next [-] |
| Many many years ago I saw someone using an image hoster which only checked mime type, and not filename. That's the important bit after all right? Uploading an image as image.php worked, and if the exif comment contained php code, it ran. |
|
| ▲ | mkoryak 3 hours ago | parent | prev | next [-] |
| I hid my toy vibe coded site's code inside the alpha channel of its logo. https://dogself.com I probably should have minified it too... |
|
| ▲ | ale42 3 hours ago | parent | prev | next [-] |
| Weren't similar techniques already used years ago by malvertizers to hide malicious code into images published for ads so it wouldn't be detected? (although it might have been more like steganography) |
| |
| ▲ | saghm 3 hours ago | parent | next [-] | | I'm not sure if this is exactly what you're referring to, but apparently years ago there were exploits bundling JAR files into GIFs to sneakily have them executed by the Java browser plugin: https://en.wikipedia.org/wiki/Polyglot_(computing)#GIFAR_att... | | |
| ▲ | mpeg 2 hours ago | parent [-] | | Back in the day I wrote a PoC exploit for my employers app that abused an image upload api by embedding a jar file inside an svg as XXE which then got me RCE. Fun times. |
| |
| ▲ | rolph 3 hours ago | parent | prev | next [-] | | if anything i would use EXIF data to enhance stego. generally its the JPEG standard that allows the payload, manipulation by abusing EXIF is how you operate the exploit. there is a 64k file segment specified for JPEG, and you can abuse it to hold any "data" you want, as well as extending to other segments, for more storage. the raw steganography in most primative form is a comparison of two photos, one of which is pixelshifted to encode the data. in advanced form, the pixels hold the encrypted data, but the application segments of the JPEG hold keys and or matrix values, and you need a reference image. you can move fairly large volumes of ASCII representation like this before its noticed you basicly write a webpage that local caches the payload and keys, then abuses EXIF to build and execute an exploit on the target. | |
| ▲ | firefax 2 hours ago | parent | prev [-] | | this is a variation on a common theme in steganography, but still interesting and giving something a name can be a useful contribution in itself |
|
|
| ▲ | porphyra 3 hours ago | parent | prev | next [-] |
| Mildly annoying how almost everything strips out EXIF data nowadays, in part due to security concerns like this, and then I can't find out what camera, lens, and settings were used to take photos. |
| |
| ▲ | AndrewStephens 3 hours ago | parent [-] | | My static site generator strips out exif data from images and I would expect all sensible sites would do the same. There is a lot of personal information jammed in there - if you post a picture of your dog making a funny face to social media you don’t want the exact GPS coordinates of your house plastered over the internet. You have to be selective though, some of the EXIF data specifies things like color spaces and orientation that is used by browsers for displaying the image properly. | | |
| ▲ | dllu 2 hours ago | parent [-] | | For my personal website I have a lot of photography-oriented blog posts [1], but I have special code to strip out GPS info from the location if it's close to my home [2]. EDIT: my vibe-coding slop agent put my home GPS lat long in the example config in the README lol. Please don't rob my house; I'll go run git-filter-repo later. [1] https://daniel.lawrence.lu/blog/2023-12-20-trip-to-europe/ [2] https://github.com/dllu/pupphoto/blob/main/gps.py#L81 | | |
| ▲ | booi 2 hours ago | parent [-] | | Does this inadvertently reveal the location of your home? It's like a cloud of photos except in this one circle. | | |
| ▲ | dllu 2 hours ago | parent [-] | | Yeah, if I take a dense grid of photos near my house, it would reveal a 500 m circle. But in practice I don't take _that_ many photos in the neighborhood. Also, the circle isn't perfectly centered on my home. |
|
|
|
|
|
| ▲ | motohagiography 29 minutes ago | parent | prev [-] |
| is this within the category of normal steganographic encodings and packers, or does it have the ability to execute itself? you can encode anything as anything. I am interpreting it's a slightly interesting tool to fool signature based detection, but isn't something like running a weird machine in an external decoder. |
