The Ethical Hacker Network - [Article]-Video: Alternate Data Streams (ADS): Hiding In Plain Site

Latest Additions

Who's Online

EH-Net Donations

Google Ads

EH-Net News Feeds

Latest Additions

Book Recommendations

don

Editor-In-Chief
Administrator
Hero Member

Offline

Posts: 2347

Editor-In-Chief

[Article]-Video: Alternate Data Streams (ADS): Hiding In Plain Site

« on: March 21, 2007, 05:53:24 PM »

Many thanks to Dan (p0et) for this contribution. Hopefully this is the first of many. Well done... and killer voice, dude!

Quote

By Dan Honkanen, GCIH, Security+, MCP, DCSE

This video is a companion to "Alternate Data Streams (ADS): Hiding In Plain Site" by myself and Brian Wilson. I am going to show you how Alternate Data Streams (ADS) work and show you a small example of how to make one. ADS is a feature in the NTFS file systems to make a compatibility with HFS, or the old Macintosh Hierarchical File System. ADS has been a function of NTFS since NT 4.0 and is still available in Windows XP (and yes even Windows Vista). ADS gives you the ability to inject/add file data into existing files without affecting their functionality, size, or display in utilities like Windows Explorer or even "dir" under command line.

[Article]-Video: Alternate Data Streams (ADS): Hiding In Plain Site

For comments or suggestions on other articles / videos you'd like to see from Dan, email p0et@ethicalhacker.net

Hope you enjoy,
Don


	Logged

CISSP, MCSE, CEH, Security+ SME

blackazarro

Full Member

Offline

Posts: 221

Re: [Article]-Video: Alternate Data Streams (ADS): Hiding In Plain Site

« Reply #1 on: March 21, 2007, 05:56:34 PM »

Awesome vid. With that voice, p0et should continue making videos for EH, Grin

. Thanks


	Logged

Security+, OSCP, CEH

don

Editor-In-Chief
Administrator
Hero Member

Offline

Posts: 2347

Editor-In-Chief

Re: [Article]-Video: Alternate Data Streams (ADS): Hiding In Plain Site

« Reply #2 on: March 21, 2007, 06:04:08 PM »

Submitted to digg:

http://www.digg.com/security/Video_Alternate_Data_Streams_ADS_Hiding_Data_In_Plain_Site

Let's make p0et famous!

Don


	Logged

CISSP, MCSE, CEH, Security+ SME

blackazarro

Full Member

Offline

Posts: 221

Re: [Article]-Video: Alternate Data Streams (ADS): Hiding In Plain Site

« Reply #3 on: March 21, 2007, 06:29:59 PM »

dugg it


	Logged

Security+, OSCP, CEH

slimjim100

EH-Net Columnist
Sr. Member

Offline

Posts: 363

Re: [Article]-Video: Alternate Data Streams (ADS): Hiding In Plain Site

« Reply #4 on: March 21, 2007, 07:34:52 PM »

Outstanding job p0et!!!! Just as an FYI I worked with p0et on this little project and he spent a lot of time to make this video. If you have ever made a computer based video you will understand the time and number of takes you have to put out to get a good product. Keep up the good work Dan (p0et) and I can't wait to see the next video!

Brian
(aka Slimjim100)


« Last Edit: March 22, 2007, 07:51:46 AM by slimjim100 »	Logged

CISSP, CCSE, CCNA, CCAI, Network+, Security+, JNCIA, & MCP

p0et

Full Member

Offline

Posts: 100

Re: [Article]-Video: Alternate Data Streams (ADS): Hiding In Plain Site

« Reply #5 on: March 21, 2007, 10:59:29 PM »

Wow! I've never liked my voice, so I'm glad some people do. haha

It was fun working on the paper with Brian and on this video. It was the first time doing anything like this and maybe I'll do another sometime... Wink

Thanks guys.


	Logged

GCIH, Security+, Network+, A+, MCP, DCSE

Pages: [1] Go Up

« previous next »

Support EH-Net by
Buying all of your
Amazon items using
the search bar above.

Try CBT Nuggets Free!

Recent Forum Topics

Network Pen Testing : page action (3) by lovewadhwa
Tools : Metasploit 3.2 released (1) by RoleReversal
Malware : Microsoft to Offer Free Anti-malware Tool (6) by RoleReversal
Mass Media : Movie: Untraceable (7) by jason
Hardware : DD-WRT FTW! (1) by jason
Hardware : DIY USB Keystroke Logger? (0) by jason
Other : New to Ethical Hacking? (1) by jason
Forensics : Working for the dark side (4) by Artful Dodger
Oct 2008 - Scooby Doo and the Crypto Caper : [Article]-Scooby Doo and the Crypto Caper (4) by trolley
CEH - Certified Ethical Hacker : MSS from EC-Council? (7) by BillV
Forensics : It's time to get that data back! (4) by sgt_mjc
Forensics : Gaining experience... first steps (5) by sgt_mjc
News from the Outside World : OS with Highest Security Rating from NSA goes Commercial (3) by jason
Other : Microsoft Hyper-V Server 2008 Released, Free (3) by sgt_mjc
Book Reviews : The Art Of Exploitation (3) by apollo
Social Engineering : How to Run a Con (0) by jason
Social Engineering : History Channel's Secrets of Body Language (2) by jason
Social Engineering : Facial Expression Test (0) by jason
CEH - Certified Ethical Hacker : Howdy - study question/labs bootcamp etc. (3) by BillV
Other : PC geeks Inc. (0) by iSmith
Other : UK Data Protection Act (3) by RoleReversal
Other : Yahoo CEO Jerry Yang to Step Down (0) by don
Network Pen Testing : Backtrack 3 Install (2) by KrisTeason
Certification : 7 Types of Hard CISSP Exam Questions and How To Approach Them (4) by jason
CEH - Certified Ethical Hacker : new guy (1) by jason
Programming : Small Basic (2) by jason
Other : Where to start? (5) by jason
Certification : I need your advice connecting to IS certs and careers (3) by jason
News from the Outside World : Deleting your digital past (0) by jason
OSCP - Offensive Security Certified Professional : Next Up OSCP101 v2.0 (31) by jason
Tools : NetWitness Investigator is now free! (3) by jason
Forensics : Data Recovery (6) by jason
Tutorials : problem with use MSF (12) by geekyone
Book Reviews : Hacking Exposed, 5th Edition (5) by cleanwithit0607
Forensics : Looking for advice on pursuing forensics.. (3) by Ketchup
Tutorials : about Metasploit 3.1 plz help (4) by mr.Z
Book Reviews : [Article]-Skoudis - Counter Hack Reloaded: Chapter 7 (8) by cleanwithit0607
Wireless : The best antenna for cracking wep! (24) by KrisTeason
Certification : Pounds For Dollars Study Guide (6) by FaqMe
Tools : Multi-Distro Live DVD (5) by mr.Z

Support EH-Net by Buying all of your Amazon items using the search bar above. Try CBT Nuggets Free!

Support EH-Net by
Buying all of your
Amazon items using
the search bar above.

Try CBT Nuggets Free!