# Stegasoo A secure steganography system for hiding encrypted messages in images using hybrid authentication. [![Tests](https://github.com/adlee-was-taken/stegasoo/actions/workflows/test.yml/badge.svg)](https://github.com/adlee-was-taken/stegasoo/actions/workflows/test.yml) [![Lint](https://github.com/adlee-was-taken/stegasoo/actions/workflows/lint.yml/badge.svg)](https://github.com/adlee-was-taken/stegasoo/actions/workflows/lint.yml) ![Python](https://img.shields.io/badge/Python-3.10--3.12-blue) [![License: MIT](https://img.shields.io/badge/License-MIT-green.svg)](LICENSE) ![Security](https://img.shields.io/badge/Security-AES--256--GCM-red) ## Features - **AES-256-GCM** authenticated encryption - **Argon2id** memory-hard key derivation (256MB RAM requirement) - **Pseudo-random pixel selection** defeats steganalysis - **Multi-factor authentication**: Reference photo + passphrase + PIN/RSA key - **Multiple interfaces**: CLI, Web UI, REST API - **File embedding**: Hide any file type (PDF, ZIP, documents) - **DCT steganography**: JPEG-resilient embedding for social media - **Channel keys**: Private group communication channels ## Embedding Modes | Mode | Capacity (1080p) | JPEG Resilient | Best For | |------|------------------|----------------|----------| | **DCT** (default) | ~150 KB | Yes | Social media, messaging apps | | **LSB** | ~750 KB | No | Email, direct file transfer | ## Web UI | Home | Encode | Decode | Generate | |:----:|:------:|:------:|:--------:| | ![Home](data/WebUI.webp) | ![Encode](data/WebUI_Encode.webp) | ![Decode](data/WebUI_Decode.webp) | ![Generate](data/WebUI_Generate.webp) | ## Quick Start ```bash # Install (Python 3.10-3.12) pip install -e ".[all]" # Generate credentials stegasoo generate --pin --words 4 # Encode a message stegasoo encode \ --ref my_photo.jpg \ --carrier meme.jpg \ --passphrase "apple forest thunder mountain" \ --pin 123456 \ --message "Secret message" # Decode stegasoo decode \ --ref my_photo.jpg \ --stego stego_image.png \ --passphrase "apple forest thunder mountain" \ --pin 123456 ``` ## Interfaces | Interface | Start Command | Documentation | |-----------|---------------|---------------| | **CLI** | `stegasoo --help` | [CLI.md](CLI.md) | | **Web UI** | `cd frontends/web && python app.py` | [WEB_UI.md](WEB_UI.md) | | **REST API** | `cd frontends/api && uvicorn main:app` | [API.md](API.md) | ## Security Model ``` Reference Photo ──┐ (~80-256 bits) │ ├──► Argon2id KDF ──► AES-256-GCM Key Passphrase ───────┤ (256MB RAM) (~43-132 bits) │ │ PIN ──────────────┤ (~20-30 bits) │ │ RSA Key ──────────┘ (optional) ``` | Configuration | Entropy | Use Case | |--------------|---------|----------| | 4-word passphrase + 6-digit PIN | ~153 bits | Standard security | | 4-word passphrase + PIN + RSA | ~280+ bits | Maximum security | ## Requirements | Requirement | Version | |-------------|---------| | Python | 3.10-3.12 | | RAM | 512 MB+ | ## Development ```bash pip install -e ".[dev]" pytest black src/ tests/ frontends/ ruff check src/ tests/ frontends/ ``` ## Documentation - [INSTALL.md](INSTALL.md) - Installation guide - [CLI.md](CLI.md) - Command-line reference - [API.md](API.md) - REST API documentation - [WEB_UI.md](WEB_UI.md) - Web interface guide - [SECURITY.md](SECURITY.md) - Security model details - [UNDER_THE_HOOD.md](UNDER_THE_HOOD.md) - Technical deep-dive - [CHANGELOG.md](CHANGELOG.md) - Version history - [CONTRIBUTING.md](CONTRIBUTING.md) - Contributor guide ## License MIT License - see [LICENSE](LICENSE). Use responsibly. --- *This tool is for educational and legitimate privacy purposes. Users are responsible for complying with applicable laws.*