CTFShow-easyrsa5、6、8

最新推荐文章于 2023-07-19 01:02:33 发布
最新推荐文章于 2023-07-19 01:02:33 发布
阅读量524 收藏 1
点赞数 1
分类专栏: 密码学 文章标签: python
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/Luiino/article/details/125632870
版权

easyrsa5

 对比于easyrsa4,这里n很大,是低解密指数攻击

e和n都很大,根据加密的过程,可以很容易爆破出d,为低解密指数攻击
爆破d脚本https://github.com/pablocelayes/rsa-wiener-attack
注意要将破解脚本和rsa-wiener-attack的py文件放在同一目录下

import gmpy2
import binascii
import RSAwienerHacker

e = 284100478693161642327695712452505468891794410301906465434604643365855064101922252698327584524956955373553355814138784402605517536436009073372339264422522610010012877243630454889127160056358637599704871937659443985644871453345576728414422489075791739731547285138648307770775155312545928721094602949588237119345
n = 468459887279781789188886188573017406548524570309663876064881031936564733341508945283407498306248145591559137207097347130203582813352382018491852922849186827279111555223982032271701972642438224730082216672110316142528108239708171781850491578433309964093293907697072741538649347894863899103340030347858867705231
c = 350429162418561525458539070186062788413426454598897326594935655762503536409897624028778814302849485850451243934994919418665502401195173255808119461832488053305530748068788500746791135053620550583421369214031040191188956888321397450005528879987036183922578645840167009612661903399312419253694928377398939392827

d = RSAwienerHacker.hack_RSA(e,n)
m = gmpy2.powmod(c,d,n)
print(d)
print(binascii.unhexlify(hex(m)[2:]))

转:http://t.csdn.cn/wDqtQ

easyrsa6

 给了.py文件,先输出p、q的值,发现p、q相近,用yafu分解大整数n

 得到p和q,然和就用之前的方法就行了

import gmpy2
import binascii

e = 0x10001
N = 26737417831000820542131903300607349805884383394154602685589253691058592906354935906805134188533804962897170211026684453428204518730064406526279112572388086653330354347467824800159214965211971007509161988095657918569122896402683130342348264873834798355125176339737540844380018932257326719850776549178097196650971801959829891897782953799819540258181186971887122329746532348310216818846497644520553218363336194855498009339838369114649453618101321999347367800581959933596734457081762378746706371599215668686459906553007018812297658015353803626409606707460210905216362646940355737679889912399014237502529373804288304270563
c = 18343406988553647441155363755415469675162952205929092244387144604220598930987120971635625205531679665588524624774972379282080365368504475385813836796957675346369136362299791881988434459126442243685599469468046961707420163849755187402196540739689823324440860766040276525600017446640429559755587590377841083082073283783044180553080312093936655426279610008234238497453986740658015049273023492032325305925499263982266317509342604959809805578180715819784421086649380350482836529047761222588878122181300629226379468397199620669975860711741390226214613560571952382040172091951384219283820044879575505273602318856695503917257
p = 163515803000813412334620775647541652549604895368507102613553057136855632963322853570924931001138446030409251690646645635800254129997200577719209532684847732809399187385176309169421205833279943214621695444496660249881675974141488357432373412184140130503562295159152949524373214358417567189638680209172147385801
q = 163515803000813412334620775647541652549604895368507102613553057136855632963322853570924931001138446030409251690646645635800254129997200577719209532684847732809399187385176309169421205833279943214621695444496660249881675974141488357432373412184140130503562295159152949524373214358417567189638680209172147385163

n = (p-1) * (q-1)
d = gmpy2.invert(e,n)#即e*d mod n = 1
m = gmpy2.powmod(c,d,N)#即m = c^d mod N
print(binascii.unhexlify(hex(m)[2:]))

 easyrsa8

得到附件,给出了public.key和flag.enc,先使用分解n,e,得到n和e

from Crypto.PublicKey import RSA
from Crypto.Cipher import PKCS1_OAEP
from numpy import long

public = RSA.importKey(open('public.key').read())
n = long(public.n)
e = long(public.e)
print(n)
print(e)

在线分解大整数n,http://www.factordb.com

 

得到p和q

from Crypto.PublicKey import RSA
from Crypto.Cipher import PKCS1_OAEP
from numpy import long
import gmpy2
import binascii

public = RSA.importKey(open('public.key').read())
n = long(public.n)
e = long(public.e)
print(n)
print(e)
p = 97
q = 106249972159566919549855203174197828387397831115262336234662051342543151219702510584956705611794290291345944183845955839244363030579896461607496959399297130227066841321473005074379950936513608503266587950271044991876848389878395867601515004796212227929894460104645781488319246866661398816686697306692491058609
d = 4520639064487098151327174667961365516283539231992543792882057746866179464294032313887767783621724945557985447874376379715922452725597335427159165685648572663979688014560576024497341124412004366514253110547369977143739781801290219136578513871764574450392367530817034216313429071683911546803031169524669257788417
rsakey = RSA.importKey(open('public.key','r').read())
privatekey = RSA.construct((n,e,d,p,q))
rsa = PKCS1_OAEP.new(privatekey)
m = rsa.decrypt(open('flag.enc','rb').read())
print(m)

 参考:http://t.csdn.cn/5eA2I

Luino!
关注
  • 1
    点赞
  • 1
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
专栏目录
ctf.show----easyrsa8和funnyrsa1
Q221022的博客
05-28 855
easyrsa8 用wireshark打开public.key文件 用在线网址进行公钥解析 质因数分解 1)在线网址分解,(很方便,但是有很大的数字时,不能分解) 2)脚本 def isqrt(n): x = n y = (x + n // x) // 2 while y < x: x = y y = (x + n // x) // 2 return x def fermat(n): a = isqrt(n) b2...
ctfshow-web41~60-WP
最新发布
02-21
ctfshow-web41~60-WPctfshow-web41~60-WP
CTF ——crypto ——RSA原理及各种题型总结
热门推荐
小锤队长的博客
09-23 6万+
RSA原理及各种题型总结 Table of Contents 一,原理: 信息传递的过程: rsa加密的过程: 二,CTF 中的 常见的十种类型: 1,已知 p ,q,e 求 d? 2,已知 n(比较小),e 求 d? 3,已知 公钥(n, e) 和 密文 c 求 明文 m? 4,已知密文文件 flag.enc / cipher.bin /flag.b64和 公钥文件 ...
CTFSHOW easyrsa1-6 Writeup
abtgu的博客
09-17 2314
easyrsa1 题目: 无 解题思路: 题中给了e,n,c,可以分解n得到p,q,在线分解大整数网址http://www.factordb.com/index.php 。脚本如下: import gmpy2 import binascii e = 65537 n = 1455925529734358105461406532259911790807347616464991065301847 c = 69380371057914246192606760686152233225659503366319332
ctfshow密码easyrsa5
qq_62849498的博客
04-18 657
题目描述 e = 2841004786931616423276957124525054688917944103019064654346046433658550641019222526983275845249569553735533558141387844026055175364360090733723392644225226100100128772436304548891271600563586375997048719376594439856448714533455767284144224890757
ctfshow easyrsa系列
博客地址 www.sec0nd.top
04-09 926
文章目录 easyrsa1 easyrsa2 easyrsa3 easyrsa4 easyrsa5 easyrsa6 easyrsa7 easyrsa8
CTF加密解密—CRYPTOeasyrsa5
HAI_WD的博客
07-03 195
本体考察的是维纳攻击,攻击条件是:私钥指数d很小,即d
CTFshow-菜狗杯-WEB-变量循环取值-我的眼里只有$
03-04
CTFshow-菜狗杯-WEB-变量循环取值-我的眼里只有$
ctfshow-VIP题目-Web-详细解题思路
01-27
ctfshow-VIP题目-Web-详细解题思路
CTFShow-周末大挑战parse-url篇Writeup
05-19
CTFShow--周末大挑战parse_url篇Writeup
ctfshow web223-group盲注无数字
10-21
ctfshow web223-group盲注无数字
CTF RSA入门及ctfshow easyrsa1-8 WP
mumuzi的博客
02-27 9342
RSA入门
ctfshow easyrsa2 wp
arcuied
12-07 192
ctfshow easyrsa2 wp
ctfshow RSA
m0_62506844的博客
01-17 1002
无脑爆破的就不往上发了,虽然有绝大多数的题都可以无脑爆破 crypto easyrsa2 n1,n2不同,考虑模不互素的情况,由于n1,n2不互素,那么必然有一个公因数,由于n是由两个质数相乘得到的,所以只有两个因数,那他们的公因数设为p,则q1=n1//p, q2=n2//p,求解m就好了。 crypto easyrsa3 考虑共模攻击(前提是m和n相同,c和e不同),由于 c1 = m^e1 % n ……1 c2 = m^e2 % n ……2 由拓展欧几里得定理可以得到e1*s1+e2*s
ctfshow-rsa
yy_1111618的博客
02-21 386
ctfshow---rsa
ctf.show rsa
Q221022的博客
04-09 1082
easyrsa7 拿到题目后,p低位缺失,用sagemath恢复数据 得到p之后,就可以直接解密 import gmpy2 import binascii p = 14730552629448397529400670492827111803937061505443720640440841084885874025615447627859103545506414953135308903827028328154141145825095093665653728348233159852145707..
Ctfshow Crypto
weixin_63231007的博客
07-19 3139
[ctfshow] Crypto一栏古典密码以及RSA各类题型
RSA
YUK_103的博客
03-02 849
题目如下所示: from Crypto.Util.number import getPrime,bytes_to_long from sympy import Derivative from fractions import Fraction from secret import flag p=getPrime(1024) q=getPrime(1024) e=65537 n=p*q z=Fra...
ctfshow_rsa刷题记录
weixin_44617902的博客
10-27 2075
ctfshow-rsa刷题记录easyrsa7easyrsa8funnyrsa2unusualrsa1 easyrsa7 已知信息:e , n , c , p的高位。 需要恢复p才行,要用到工具sagemath进行p恢复。 后面就常规解题了已知p,n,e,c。求m。 easyrsa8 有两个文件一个密文,一个key文件。可以在线网站分解n,e。 在线公私钥分解 也可以代码解析。 得到n用网站分解n得到p ,q。 n,e,p,q有了d也出来了后面就简单了。 代码: funnyrsa2 解题代码:
CTFShow-Web6
09-06
根据提供的引用内容,CTFShow-Web6可能是一个数据库名。其中,通过注入语句查询数据库web2中的表信息,得到两张表flag和user。具体的注入语句如下所示: ``` username=1'/**/union/**/select/**/1,group_concat...

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值