728x90
import random
import socketserver
import socket, os
import string
flag = open('flag.txt','r').read().strip()
# send message : encoding -> send
def send_message(server, message):
enc = message.encode()
server.send(enc)
def setup(server, key):
flag = 'THM{thisisafakeflag}'
xored = ""
for i in range(0,len(flag)):
xored += chr(ord(flag[i]) ^ ord(key[i%len(key)]))
hex_encoded = xored.encode().hex()
return hex_encoded
def start(server):
res = ''.join(random.choices(string.ascii_letters + string.digits, k=5))
key = str(res)
hex_encoded = setup(server, key)
send_message(server, "This XOR encoded text has flag 1: " + hex_encoded + "\n")
send_message(server,"What is the encryption key? ")
key_answer = server.recv(4096).decode().strip()
try:
if key_answer == key:
send_message(server, "Congrats! That is the correct key! Here is flag 2: " + flag + "\n")
server.close()
else:
send_message(server, 'Close but no cigar' + "\n")
server.close()
except:
send_message(server, "Something went wrong. Please try again. :)\n")
server.close()
class RequestHandler(socketserver.BaseRequestHandler):
def handle(self):
start(self.request)
if __name__ == '__main__':
socketserver.ThreadingTCPServer.allow_reuse_address = True
server = socketserver.ThreadingTCPServer(('0.0.0.0', 1337), RequestHandler)
server.serve_forever()
import socket
import binascii
import argparse
def derive_key_part(hex_encoded, known_plaintext, start_index):
encrypted_bytes = bytes.fromhex(hex_encoded)
derived_key = ""
for i in range(len(known_plaintext)):
derived_key += chr(encrypted_bytes[start_index + i] ^ ord(known_plaintext[i]))
return derived_key
def xor_decrypt(hex_encoded, key):
encrypted_bytes = bytes.fromhex(hex_encoded)
decrypted_message = ""
for i in range(len(encrypted_bytes)):
decrypted_message += chr(encrypted_bytes[i] ^ ord(key[i % len(key)]))
return decrypted_message
def connect_and_get_flag(server_ip, server_port):
with socket.socket(socket.AF_INET, socket.SOCK_STREAM) as s:
s.connect((server_ip, server_port))
welcome_message = s.recv(1024).decode()
print("Received:", welcome_message)
encoded_flag = welcome_message.split("flag 1: ")[1].split("\n")[0]
known_start_plaintext = 'THM{'
known_end_plaintext = '}'
derived_key_start = derive_key_part(encoded_flag, known_start_plaintext, 0)
print("Derived start of the key:", derived_key_start)
derived_key_end = derive_key_part(encoded_flag, known_end_plaintext, len(encoded_flag) // 2 - 1)
print("Derived end of the key:", derived_key_end)
key_length = 5
derived_key = (derived_key_start + derived_key_end)[0:key_length]
print("Derived key:", derived_key)
# Decrypt the full message using the derived key
decrypted_message = xor_decrypt(encoded_flag, derived_key)
print("Decrypted message:", decrypted_message)
# Send the derived key back to the server
s.sendall(derived_key.encode() + b'\n')
# Read the server response with flag 2
response = s.recv(1024).decode()
print("Server response:", response)
s.sendall(derived_key.encode() + b'\n')
response = s.recv(1024).decode()
print("Server response:", response)
if __name__ == '__main__':
# Define the server IP and port
server_ip = "10.10.218.175"
server_port = 1337
# Connect to the server and get the flag
connect_and_get_flag(server_ip, server_port)
728x90
'호그와트' 카테고리의 다른 글
| 한국어 어휘량을 폭발적으로 증가시키는 앱에 관하여 (2) by 영웅 A to Z (0) | 2024.06.25 |
|---|---|
| 한국어 어휘량을 폭발적으로 증가시키는 앱에 관하여 (1) by 영웅 A to Z (0) | 2024.06.24 |
| happy monday (0) | 2024.06.24 |
| 어느 통계학자의 기록 with 캐럿 my codes (2) (0) | 2024.06.23 |
| 어느 통계학자의 기록 with 캐럿 my codes (1) (0) | 2024.06.23 |