1.[BUUCTF]REVERSE——rsa
解压后发现有两个文件,用notepad打开,可以发现flag.enc即为加密后的flag,pub为公钥,即RSA加密
先使用在线网站分解公钥,得到E和N
指数即为E,模数即为N,将模数转化为十进制后分解得到p和q
使用RSA工具解出d
编写脚本得到答案
import rsa
e = 65537
n = 86934482296048119190666062003494800588905656017203025617216654058378322103517
p = 285960468890451637935629440372639283459
q = 304008741604601924494328155975272418463
d = 81176168860169991027846870170527607562179635470395365333547868786951080991441
key = rsa.PrivateKey(n, e, d, q, p)
with open(r'C:\Users\Lenovo\Downloads\41c4e672-98c5-43e5-adf4-49d75db307e4\output\flag.enc', 'rb') as data:
date = data.read()
print(rsa.decrypt(data,key))
2.[FlareOn4]login1
HTML文件,用DevC++打开它
分析一下加密的地方
var rotFlag = flag.replace(/[a-zA-Z]/g, function(c){return String.fromCharCode((c <= "Z" ? 90 : 122) >= (c = c.charCodeAt(0) + 13) ? c : c - 26);});
replace()函数两个参数,用后一个替换前一个,这里就是用function函数得到的结果来替换一下a-z和A到Z
fromCharCode()函数即在这里判断判断c是大于Z,还是小于等于Z;若小于等于Z,令c=90,否则等于122,也就是说A-Z则等于90,a-z则等于122
后面即判断90或122对应的字符是否大于等于原来的c+13,若大于等于c+13,则取c+13,否则取c+13-26,即c-13
编写代码解出
#include <stdio.h>
int main() {
char a[37] = "PyvragFvqrYbtvafNerRnfl@syner-ba.pbz";
char b[37];
char flag[37];
for (int i = 0; i < 37; i++) {
if ('A' <= a[i] && a[i] <= 'Z') {
b[i] = a[i];
a[i] = 90;
if (a[i] >= b[i] + 13) {
flag[i] = b[i] + 13;
} else {
flag[i] = b[i] + 13 - 26;
}
} else if ('a' <= a[i] && a[i] <= 'z') {
b[i] = a[i];
a[i] = 122;
if (a[i] >= b[i] + 13) {
flag[i] = b[i] + 13;
} else {
flag[i] = b[i] + 13 - 26;
}
} else {
flag[i] = a[i];
}
}
for (int j = 0; j < 37; j++) {
printf("%c", flag[j]);
}
return 0;
}