Added lastest takeaways from recent CTFs

README.md

@@ -136,11 +136,25 @@ Steganography
 
 	For PNG images (or BMP) images, there exists a Windows utility that can hide "ENCRYPTED" text within the LSB. If you also happen to have passwords, you can decrypt this and potentially find a flag. [https://www.softpedia.com/get/Security/Encrypting/ImageHide.shtml](https://www.softpedia.com/get/Security/Encrypting/ImageHide.shtml)
 
+* [stegoVeritas](https://github.com/bannsec/stegoVeritas/)
+
+	Another steganography tool. A simple command-line tool and super easy to use -- definitely one to at least try.
 
 * Unicode Steganography / Zero-Width Space Characters
 
 	Some text that may be trying to hide something, in a seemingly innocent way, like "Hmm, there may be something hiding here..." may include zero-width characters. This is a utility that might help: [https://330k.github.io/misc_tools/unicode_steganography.html](https://330k.github.io/misc_tools/unicode_steganography.html) ... Other options are just gross find and replace operations in Python IDLE.
 
+* Online LSB Tools
+
+	There are many online LSB tools that work in different ways. If you are given a file that you know is part of a Least Significant Bit challenge, try these tools:
+
+	[https://manytools.org/hacker-tools/steganography-encode-text-into-image/](https://manytools.org/hacker-tools/steganography-encode-text-into-image/) Only supports PNG
+	[https://stylesuxx.github.io/steganography/](https://stylesuxx.github.io/steganography/)
+
+* Other stego tools:
+
+	[https://github.com/DominicBreuker/stego-toolkit](https://github.com/DominicBreuker/stego-toolkit)
+	
 * [`zsteg`][zsteg]
 
 	Command-line tool for use against Least Significant Bit steganography... unfortunately only works against PNG and BMP images.
@@ -527,6 +541,10 @@ sudo apt install foremost
 
 	A command-line tool, used to recover deleted files from a file system image. Handy to use if given a `.dd` and `.img` file etc.
 
+* [photorec]
+
+	Another command-line utility that comes with `testdisk`. It is file data recovery software designed to recover lost files including video, documents and archives from hard disks, CD-ROMs, and lost pictures (thus the Photo Recovery name) from digital camera memory. PhotoRec ignores the file system and goes after the underlying data, so it will still work even if your media's file system has been severely damaged or reformatted. 
+
 
 PNG File Forensics
 --------------------
@@ -781,6 +799,10 @@ Miscellaneous
 ----------
 
 
+* References to DICE, or EFF
+
+	If your challenges references "EFF" or includes dice in some way, or showcases numbers 1-6 of length 5, try [https://www.eff.org/dice](https://www.eff.org/dice). This could refer to a passphrase generated by dice rolls available here: [https://www.eff.org/files/2016/07/18/eff_large_wordlist.txt](https://www.eff.org/files/2016/07/18/eff_large_wordlist.txt)
+
 * [Base64], [Base32], [Base85]
 
 ```
@@ -817,6 +839,12 @@ l(DId<j@<?3r@:F%a+D58'ATD4$Bl@l3De:,-DJs`8ARoFb/0JMK@qB4^F!,R<AKZ&-DfTqBG%G
 
 * [Base41](https://github.com/sveljko/base41/blob/master/python/base41.py) 
 
+* Mac / Macintosh / Apple Hidden Files `.DS_Store` [ds_store_exp](https://github.com/lijiejie/ds_store_exp)
+
+	On Mac computers, there is a hidden index file `.DS_Store`. You might be able to find it if you have an LFI vulnerability or something of the like. A good tool to track these down on a website is the DS_Store Exposer: [https://github.com/lijiejie/ds_store_exp](https://github.com/lijiejie/ds_store_exp).
+
+
+
 
 * Wordsearches
 
@@ -989,3 +1017,4 @@ printf "$s\n" "${anything[@]}"
 [Base41]: https://github.com/sveljko/base41/blob/master/python/base41.py
 [Base65535]: https://github.com/qntm/base65536
 [Easy Python Decompiler]: https://github.com/aliansi/Easy-Python-Decompiler-v1.3.2
+[photorec]: https://www.cgsecurity.org/wiki/PhotoRec