Feature/fhide (#72)

version 0.18.2

build.sh

@@ -17,7 +17,9 @@ fi
 # Install packages
 if [ "$package_manager" == "apt" ]; then
     sudo apt update
-    sudo apt install -y nmap whois dirb dnsenum libc-bin iproute2 xxd iptables coreutils wget curl dnsutils traceroute openssl openssh-server xattr libimage-exiftool-perl tor foremost
+    sudo apt install -y nmap whois dirb dnsenum libc-bin iproute2 xxd iptables coreutils wget curl \
+    dnsutils traceroute openssl openssh-server xattr libimage-exiftool-perl tor foremost pkg-config \
+    libssl-dev steghide doas nala
 elif [ "$package_manager" == "yum" ]; then
     sudo yum update -y
     sudo yum install -y nmap dirb dnsenum glibc-utils xxd iptables-utils iproute wget curl bind-utils traceroute

snapcraft.yaml

@@ -1,5 +1,5 @@
 name: witchcraft-cybersecurity
-version: "0.18.0"
+version: "0.18.2"
 summary: Your OPSEC companion
 description: |
   **WITCH_CRAFT** is a versatile task automation software designed to serve as the foundation for various cybersecurity modules. It provides capabilities for tasks such as forensic research, OSINT (Open Source Intelligence), scanning, backup and copying, intrusion testing of applications and APIs, and more.
@@ -40,6 +40,10 @@ parts:
       - libimage-exiftool-perl
       - tor
       - foremost
+      - pkg-config
+      - steghide
+      - doas
+      - nala
 
 apps:
   witchcraft:

witch_craft/Cargo.toml

@@ -1,6 +1,6 @@
 [package]
 name = "witch_craft"
-version = "0.18.0"
+version = "0.18.2"
 edition = "2021"
 readme = "README.md"
 homepage = "https://github.com/cosmic-zip/witch_craft"

witch_craft/src/test/test_start.rs

@@ -85,7 +85,7 @@ fn test_network_request_response_fail() {
     let body = response.body;
 
     assert_eq!(url, "http://example.com/clover".to_string());
-    assert_eq!(status, "500 Internal Server Error");
+    assert_eq!(status, "404 Not Found");
     // assert_eq!(body, "");
 }
 

witch_docs/changelog.md

@@ -424,3 +424,10 @@ Date: Mon Sep 16 11:35:28 AM -03 2024
     → Added Ip lookup for ANS, IP Geolocation and proxy
     → Added local lookup database
     → Removed wiki (wiki will be inside cosmic-zip.github.io only)
+
+Version 0.18.2
+
+    → Add bind fhide based on steghide for steganography
+    → Update malware database
+    → Update build.sh
+    → Update showcase

witch_docs/showcase.md

@@ -1,19 +1,46 @@
-# SHOWCASE
+# APRESENTAÇÃO
 
-map.local
-map.dns
-map.default
-map.discovery
-map.auth
-map.safe
-map.vuln
+Mapea conexões locais
+`map.local`
 
-dos.simple
-dos.longpw
+Mapea propriedades de endereço DNS
+`map.dns`
 
+Escaneamento padrão do NMAP
+`map.default`
 
-nuke.hd
-nuke.file
-nuke.logs
+Script de descoberta NSE do Nmap
+`map.discovery`
 
-file.list
+Script de autenticação NSE do Nmap
+`map.auth`
+
+Script de escaneamento seguro NSE do Nmap
+`map.safe`
+
+Script de scanner de vulnerabilidades NSE do Nmap
+`map.vuln`
+
+Requisição GET simples para um ataque em massa
+`dos.simple`
+
+Requisição POST simples para um ataque em massa com uma senha muito longa
+`dos.longpw`
+
+Remoção segura de arquivos (em todo o dispositivo)
+`nuke.hd`
+
+Remoção segura de arquivos
+`nuke.file`
+
+Remoção segura de arquivos (apenas logs)
+`nuke.logs`
+
+Cria um arquivo de cabeçalho C a partir de um arquivo binário.
+`file.list`
+
+Mostra o endereço IP atual
+`map.myip`
+
+Extrai e exibe todos os metadados de um arquivo de imagem usando o exiftool.
+`file.meta`

witch_spells/dataset/db.json

@@ -1,5 +1,20 @@
 {
   "general": [
+    {
+      "description": "Hides a file within a cover image or audio file using Steghide.",
+      "name": "fhide.embed",
+      "command": "steghide embed -cf @@file -ef @@secret"
+    },
+    {
+      "description": "Extracts hidden data from a cover image or audio file using Steghide.",
+      "name": "fhide.extract",
+      "command": "steghide extract -sf @@file"
+    },
+    {
+      "description": "Displays information about a cover file, including any hidden data, using Steghide.",
+      "name": "fhide.info",
+      "command": "steghide info @@file"
+    },
     {
       "description": "Create a QR code from the provided data.",
       "name": "gen.qrcode",
@@ -193,7 +208,7 @@
     {
       "description": "Scan local open connections",
       "name": "map.local",
-      "command": "ss -tupanr"
+      "command": "ss -tupran"
     },
     {
       "description": "Show the current ip address",
@@ -378,7 +393,7 @@
     {
       "name": "self.setup",
       "description": "Setup and install witch_craft",
-      "command": "sudo apt install nmap whois dirb dnsenum libc-bin iproute2 xxd iptables coreutils wget curl dnsutils traceroute openssl openssh-server xattr libimage-exiftool-perl tor foremost doas -y"
+      "command": "sudo apt install -y nmap whois dirb dnsenum libc-bin iproute2 xxd iptables coreutils wget curl dnsutils traceroute openssl openssh-server xattr libimage-exiftool-perl tor foremost pkg-config libssl-dev steghide doas nala"
     }
   ]
 }