[HNCTF 2022 WEEK2]mathRSA

最新推荐文章于 2024-05-27 22:12:40 发布
最新推荐文章于 2024-05-27 22:12:40 发布
阅读量192 收藏
点赞数 2
文章标签: 网络安全 网络 ctf
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/m0_62102520/article/details/138583644
版权

[HNCTF 2022 WEEK2]mathRSA

​ 已经不知道多久没有做密码题了,今天特意来做一下。

题目链接:https://www.nssctf.cn/problem/2995

原题:

from Crypto.Util.number import getPrime, bytes_to_long
from flag import flag

m = bytes_to_long(flag)
p = getPrime(512)
q = getPrime(512)
n = p*q
e = 0x10001
c = pow(m, e, n)
hint = p**5 - q**4

print(f"n = {n}")
print(f"e = {e}")
print(f"c = {c}")
print(f"h = {hint}")
print(f"f = {flag}")
"""
n = 76236418318712173274495941060488893810931309177217802334230599201457092723011685048556311576262486371987147895332408646920500226769161418792142565209634495797142268681403865426056588605013602625268553194169434049817172340173907696496945054049859221379092764811535206778031226535614731731322630330166833765943      
e = 65537
c = 7207616060389865156270906240837846478541820008527247539698331406253371238674590766101711421196342768182325013873320402422918804780590951789425587131632422554819735000106070325708057225062376701298825910565526713270553888227235612227223162695870584803109353377288421750982913226189395526612487664144379690552       
h = 130285072635228037239175162118613869214302695058325046962039091162567931492116336918638092534964417960274466351834311039222269165021532950982276262717322395682559639859781516047319178212473103057947426886870612637975024605166325017663998263834789814181250953051730859433354534450232382414565421858172075431133498326501045697132640582932453817599366612200146802110424409285814189125929844293789544163802323048780585398714263586547670912817768592459281775837372982750626103047573532664320692775783627129463700810934670066747044799514243631607384814191188276380589420289084574680852618867732847029105400406874790675559126905078326495799755425006555539699119063191489852930421412630857588890593040420277938268954008973405431053073576987401154763326417551463323055736754390446
"""

解题思路1:

对于hint等于p5-q4,由于p5远远大于q4,所以对hint开4次根大约就是p的范围,暴力破解p。

解题代码:

from Crypto.Util.number import *
import gmpy2
import RSA.return_d
n = 76236418318712173274495941060488893810931309177217802334230599201457092723011685048556311576262486371987147895332408646920500226769161418792142565209634495797142268681403865426056588605013602625268553194169434049817172340173907696496945054049859221379092764811535206778031226535614731731322630330166833765943
e = 65537
c = 7207616060389865156270906240837846478541820008527247539698331406253371238674590766101711421196342768182325013873320402422918804780590951789425587131632422554819735000106070325708057225062376701298825910565526713270553888227235612227223162695870584803109353377288421750982913226189395526612487664144379690552
h = 130285072635228037239175162118613869214302695058325046962039091162567931492116336918638092534964417960274466351834311039222269165021532950982276262717322395682559639859781516047319178212473103057947426886870612637975024605166325017663998263834789814181250953051730859433354534450232382414565421858172075431133498326501045697132640582932453817599366612200146802110424409285814189125929844293789544163802323048780585398714263586547670912817768592459281775837372982750626103047573532664320692775783627129463700810934670066747044799514243631607384814191188276380589420289084574680852618867732847029105400406874790675559126905078326495799755425006555539699119063191489852930421412630857588890593040420277938268954008973405431053073576987401154763326417551463323055736754390446
p = gmpy2.iroot(h,5)[0]
while True:
    q= n//p
    d= RSA.return_d.crack(e,p,q)
    m = long_to_bytes(pow(c,d,n))
    if b'flag' in m or b'ctf' in m:
        print(m)
        break
    else:
        p= gmpy2.next_prime(p)

解题思路2:

直接用sympy2库解方程

from Crypto.Util.number import *
import gmpy2
import RSA.return_d
import sympy
n = 76236418318712173274495941060488893810931309177217802334230599201457092723011685048556311576262486371987147895332408646920500226769161418792142565209634495797142268681403865426056588605013602625268553194169434049817172340173907696496945054049859221379092764811535206778031226535614731731322630330166833765943
e = 65537
c = 7207616060389865156270906240837846478541820008527247539698331406253371238674590766101711421196342768182325013873320402422918804780590951789425587131632422554819735000106070325708057225062376701298825910565526713270553888227235612227223162695870584803109353377288421750982913226189395526612487664144379690552
h = 130285072635228037239175162118613869214302695058325046962039091162567931492116336918638092534964417960274466351834311039222269165021532950982276262717322395682559639859781516047319178212473103057947426886870612637975024605166325017663998263834789814181250953051730859433354534450232382414565421858172075431133498326501045697132640582932453817599366612200146802110424409285814189125929844293789544163802323048780585398714263586547670912817768592459281775837372982750626103047573532664320692775783627129463700810934670066747044799514243631607384814191188276380589420289084574680852618867732847029105400406874790675559126905078326495799755425006555539699119063191489852930421412630857588890593040420277938268954008973405431053073576987401154763326417551463323055736754390446
p,q = sympy.symbols("p q")
eq1 = p**5-q**4-h
eq2 = p*q-n
sol = sympy.solve((eq1,eq2),(p,q))
print(sol)
p = sol[0][0];p = int(p)
q = sol[0][1];q = int(q)
d= RSA.return_d.crack(e,p,q)
m = long_to_bytes(pow(c,d,n))
print(m)
探险者安全团队
关注
  • 2
    点赞
  • 0
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
Writeup of NCTF
风沐白的岚
08-07 1670
南京邮电大学网络攻防训练平台 md5 collision <?php $md51 = md5('QNKCDZO'); $a = @$_GET['a']; $md52 = @md5($a); if(isset($a)){ if ($a != 'QNKCDZO' && $md51 == $md52) { echo "nctf{*****************}"; } else { e
week2day2
02-18
"week2day2"可能是一个学习计划或课程的一部分,意在深入探讨HTML的相关主题。在这个阶段,我们可能会涵盖以下几个关键知识点: 1. HTML基本结构:HTML文档通常以`<!DOCTYPE html>`开头,声明文档类型。接着是`...
HNCTF---crypto mathRSA
3tefanie丶zhou的博客
10-13 964
【真正有嚼头的男女情爱,就是哑巴吃黄连,旁人拦不住,不吃还不行。】
HNCTF
最新发布
m0_73725283的博客
05-27 891
正常·RSA常用的e是65537,那么65537-1=65536,它可能在base家族中能被找到(好明显的提示啊,想不到/(ㄒoㄒ)/~~)奇怪的字符,肯定也是一种加密,再次看到提示2^11=2048,所以是base2048(这谁想得到,摔桌(╯▔皿▔)╯)时间戳,是从1970年1月1日(UTC/GMT的午夜)开始所经过的秒数(不考虑闰秒),用于表示一个时间点。根据上图,有:模p的三阶矩阵群的阶为p(p-1)(p+1)(p^2+p+1)矩阵上的RSA,n是不大的,可以直接分解,主要还是求d的问题。
[HNCTF]crypto-wps
weixin_52118017的博客
10-28 2260
hnctf-crypto方面题解
Bugku Crypto Math&English
m0_63253040的博客
03-25 335
题目给了数学计算题 排列好结果 用元音密码表对照 解出来flagisyuanyinpwd 最后为bugku{yuanyinpwd}
Algorithm Part2 Week1 Assigment
11-22
标题中的"Algorithm Part2 Week1 Assigment"指的是一个算法课程的第二部分第一周的作业,这个作业聚焦于计算两个单词的相似度。这通常是一个在自然语言处理(NLP)领域的重要问题,用于理解词汇之间的关系和含义。在...
吴恩达机器学习2022 Advanced Learning Algorithms week2 C2
08-26
在“吴恩达机器学习2022 Advanced Learning Algorithms week2 C2”课程中,我们将会深入探讨机器学习领域的一些高级算法。这部分的学习是建立在基础机器学习概念之上的,旨在帮助学生掌握更为复杂和先进的学习策略,...
week2.zip
03-09
在本周的资料包"week2.zip"中,我们主要探讨了两个关键的IT知识点:图像处理与计算机视觉,以及可能的编程作业。首先,我们来深入理解这些主题。 1. **计算机视觉与OpenCV** - **OpenCV**:OpenCV(开源计算机视觉...
Week2.rar
03-10
很抱歉,但根据您提供的信息,"Week2.rar"是一个压缩文件,通常用于存储多个相关文件或文件夹。由于没有具体的描述或标签,我无法直接提供与压缩包内容相关的IT知识点。不过,我可以分享一些关于RAR文件格式以及压缩...
HNCTF week1
qq_49341576的博客
04-24 323
代码分析。
crypto-EasyMath(Bugku CTF)
耐酸碱高温固化材料近距离传输研究
12-30 940
大概逻辑就是生成2048bit大素数。,加密完成以后打印出密文的值,以及。,得到模数分解后套RSA解密脚本即可。老套路解密RSA的话肯定还是要求出。额外取4096bit的大素数。对flag进行RSA加密。新RSA题,记录一下。
HNCTF--Misc部分题解
m0_60715541的博客
11-03 869
分享一下,HNCTF种三道有意思的题目
pyinstaller -F XXX.py 报错 No module named 'Crypto.Math'
feiyanlhj的博客
03-26 1150
pyinstaller -F XXX.py 报错 No module named 'Crypto.Math' 如下: 53062 INFO: Loading module hook "hook-Crypto.py"... Traceback (most recent call last): File "<string>", line 2, in <module> ...
hnctf-pwn-[week1]
m0_64174759的博客
11-20 1639
hnctf pwn week1 WP,栈溢出,格式化字符串,32位,64位rop,ret2shellcode,可见字符串,格式化字符串
hnctf-pwn-week2
m0_64174759的博客
11-26 904
逆向,整数溢出,orw,栈迁移,ret2csu,partial overwrite
CTF笔记 个人HNCTF反思(部分题目)
qq_51248658的博客
10-31 2093
[WEEK2]easy_include、[WEEK2]easy_unser、[WEEK2]easy_sql、[WEEK2]ez_SSTI、[WEEK4]pop子和pipi美
HNCTF——web方向部分题解
m0_60715541的博客
11-01 1526
这是这次分享的题解的清单,主要是web的,等我啥时候有时间更新一波杂项的题解。
[HNCTF 2022 WEEK2]ez_ssrf
07-27
\[HNCTF 2022 WEEK2\]ez_ssrf是一个题目或挑战的名称,它涉及到SSRF(Server-Side Request Forgery)攻击。在这个挑战中,通过构造恶意的请求,攻击者可以利用目标服务器发起未经授权的请求,可能导致信息泄露、远程代码执行等安全问题。根据引用\[2\]中的代码片段,这个挑战可能涉及到通过传递参数来实现SSRF攻击,其中包括目标主机和端口。具体的攻击方法和解决方案需要根据题目的具体要求和环境来确定。 #### 引用[.reference_title] - *1* *2* [SSRF总结](https://blog.csdn.net/weixin_53090346/article/details/129025771)[target="_blank" data-report-click={"spm":"1018.2226.3001.9630","extra":{"utm_source":"vip_chatgpt_common_search_pc_result","utm_medium":"distribute.pc_search_result.none-task-cask-2~all~insert_cask~default-1-null.142^v91^control_2,239^v3^insert_chatgpt"}} ] [.reference_item] - *3* [2022 SWPU新生赛&HNCTF web部分题目](https://blog.csdn.net/weixin_63231007/article/details/127135455)[target="_blank" data-report-click={"spm":"1018.2226.3001.9630","extra":{"utm_source":"vip_chatgpt_common_search_pc_result","utm_medium":"distribute.pc_search_result.none-task-cask-2~all~insert_cask~default-1-null.142^v91^control_2,239^v3^insert_chatgpt"}} ] [.reference_item] [ .reference_list ]
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值