RSA or HMAC?

cryptohack

Task: JWT auth where jwt.decode accepts both HS256 and RS256 using the same RSA public key, which is exposed publicly. Solution: algorithm confusion (CVE-2016-5431) — forge an HS256 token using the PEM public key bytes (with trailing newline) as the HMAC secret to set admin:true.

jwt rsa pyjwt hmac jwt_algorithm_confusion key_confusion cve_2016_5431

jwt_algorithm_confusionrs256_to_hs256_key_confusionhmac_with_public_key_forgerylibrary_patching

$ ls tags/ techniques/

jwt rsa pyjwt hmac jwt_algorithm_confusion key_confusion cve_2016_5431

jwt_algorithm_confusionrs256_to_hs256_key_confusionhmac_with_public_key_forgerylibrary_patching

Analysis

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat.

$ python3 exploit.py --target 192.168.1.1 --port 8080
[*] Connecting to target...
[+] Shell obtained!

Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia deserunt mollit anim id est laborum.

Permission denied (requires tier.pro)

Sign in to access full writeups

$sign in

$ grep --similar

Similar writeups

[web][Pro]RSA or HMAC? Part 2— cryptohack
[web][Pro]JWT Secrets— cryptohack
[web][Pro]JSON in JSON— cryptohack
[web][Pro]Moment s JWT (JWT Moment)— hackerlab
[web][Pro]No Way JOSE— cryptohack