cryptoPromedium

Нулевой шифр (Null Cipher)

hackerlab

Task: Decrypt an intercepted HTTP request containing a Base64-encoded RC4 ciphertext. Solution: Exploited known flag format (CODEBY{...}) to recover the encryption key, since the key was derived from the first 6 characters of the flag.

$ ls tags/ techniques/

sha256 source_code_analysis base64 rc4 stream_cipher flag_format_attack arc4 known_prefix key_derivation http_request

Base64 decodingKnown prefix attack on key derivationRC4 decryption with recovered keySource code analysis for vulnerability identification

Analysis

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat.

$ python3 exploit.py --target 192.168.1.1 --port 8080
[*] Connecting to target...
[+] Shell obtained!

Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia deserunt mollit anim id est laborum.

🔒

Permission denied (requires tier.pro)

Sign in to access full writeups

$sign in

$ grep --similar

Similar writeups

[crypto][Pro]Забытый (Forgotten)— hackerlab
[crypto][Pro]Напиши мне— hackerlab
[crypto][Pro]Enigma— hackerlab
[reverse][Pro]Забытый пароль (Forgotten Password)— duckerz
[crypto][Pro]Двойной хэш (Double Hash)— hackerlab