Windows tips – How to hide file in Alternate Data Streams (ADS)

Posted by aidas | Posted in Windows 2003, Windows XP | Posted on 14-06-2009

0




This post will show you how to hide file in Alternate Data Streams.

ADS (Alternate Data Streams) is a “feature” of the NTFS that permit files to be completely hidden from the system.

Lets say we have  secret.txt file that contains confidential info and it is placed in C:\Test folder . We want to hide secret.txt file from unwanted eyes and hidden file attribute is too simple solution for us.

secret

In this case we can use ADS feature to completely hide it from system. Lets fork secret.txt file to C:\Windows\Zapotec.bmp file which is one of desktop backgrounds installed by default on Windows XP.

To fork it press “Start” > “Run”, type cmd and press “OK”.

In command line window type:

type c:\test\secret.txt > c:\Windows\Zapotec.bmp:secret.txt

ads-hide

Press “Enter”.

Ok, you forked secret.txt file to zapotec.bmp.

Now go to c:\Test folder and delete secret.txt file. Yep, you got it right, delete it.

After that you can start windows Search and try to locate secret.txt file. No traces… it is gone…

And now the Magic moment!

Open command line and type:

notepad c:\Windows\Zapotec.bmp:secret.txt

and press “Enter”

ads-show

Secret info file is there and it is hidden pretty well this time.

Well done!

Share and Enjoy:
  • Digg
  • del.icio.us
  • Facebook
  • Google
  • Reddit
  • StumbleUpon
  • Blogosphere News


Follow us on Twitter !
Follow us on Twitter!


Read More

Write a comment