This paper talks about detecting F5 by analyzing the histogram of DCT coefficients. I suspect this may be a more accurate means than stegdetect.
https://ws2.binghamton.edu/fridrich/Research/f5.pdf
After looking at the source for stegdetect, it appears it uses exactly the method in the paper.
Neither. For detecting F5 it's analyzing the DCT histogram of the image in comparison to the (predicted) histogram of the original image before F5 data was embedded.
Fuck sorry answering the wrong question… apparently I have two IDs but still getting my (you)s
>get wordlist string ~ "lovely8unch0fcoconut$"
>test last third string "oconut$" in e.extract(coeff, ostream, extractF5Seed(mPassword))
>if matched, test DecryptWithPassword with string "lovely8unch0fcoconut$"
>return secret message
>else, get new wordlist string
What I uploaded is like this, except it is modified to only do the F5 seed portion - the output of the string generator gets passed directly
<e.extract(coeff, ostream, mPassword)