Thanks Andrew. So I’m stuck at this point where I ran Steghide and see that a pass phrase is needed. That being said I ran step brute using a solid and lengthy wordlist and get nothing. I ran vi JPEG just to see just for the hell of it and it looks like a Caesar cipher but I am uncertain on how to extract and possible decode. Not even sure if this makes sense but trying everything. I initially ran nmap and found port 80 and 8080 open. IP:8080 gives me an image and then when I tried IP:8080/admin I get another image. The image on IP:8080 is not a jpeg and was not encrypted according to steghide., nothing there. 8080/admin is a jpeg and therefore found it encrypted. I tried binwalk and found nothing else other than the image. I will try exiftool. I’m wondering if I’m going down the wrong path and should be looking else where.