cryptoPromedium

Birds of Randomness

HackTheBox

The server generates a random 256-bit "ticket number" as a seed for a Wichmann-Hill PRNG (three coupled LCGs with moduli 30269, 30307, 30323). It rotates the PRNG until all three components (x, y, z) are prime, computes scalar `d = x·y·z`, and returns the EC point `d·G` as the "departing station coo

$ ls tags/ techniques/

prng lcg ecc wichmann_hill pohlig_hellman ecdlp smooth_order baby_step_giant_step

pohlig_hellman_ecdlpbsgs_subgroupprng_state_recoverycrt_reconstructionprime_triple_factorization

Analysis

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat.

$ python3 exploit.py --target 192.168.1.1 --port 8080
[*] Connecting to target...
[+] Shell obtained!

Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia deserunt mollit anim id est laborum.

🔒

Permission denied (requires tier.pro)

Sign in to access full writeups

$sign in

$ grep --similar

Similar writeups

[crypto][free]Rhome— HackTheBox
[pwn][Pro]Birdy— spbctf
[crypto][Pro]GFPRNG— volgactf
[crypto][Pro]Ghost— codegate
[crypto][Pro]worrier— hxp_39c3