Cryptography - iExploit

Crappy Crypto challenge

Sh3llc0d3 — Tue, 04 Sep 2012 14:03:59 -0400

Well lots of talk of challenges and competitions so thought i'd put something together quickly... see if you can work things out. There's two an easy challenge and another which contains an extra stage to get the message. So yeah the point? You find negotiate various methods of encryption and then send my the message in a private message. What do you get? Eternal wisdom and knowing you're awesome... and of course a virtual high-five from me.

Easy - http://pastebin.com/edQGBsev
Extra stage - http://pastebin.com/LrTufUbW

If you get really stuck then I'll send you a script I used to produce/crack the output/input and you can work it out yourself.

Clues...

The cipher being used at one stage is a common way of encoding and produces a very distinctive output... before anyone corrects me this isn't true in all cases!
Another stage's encryption is a modern day application of a very old and famous cipher.
This is an easy challenge now... the last stage is less about crypto and more about hiding a message.

Instead of giving similar clues for each challenge... one of the stages doesn't apply to the first challenge... work out which.

"What Encryption Standard Has Yet To Be Cracked"?

McKittrick — Thu, 30 Dec 2010 23:16:57 -0500

just curious...are there any out there that have been impervious to getting cracked? for awhile people thought that WPA2 would stand the test of time until it was recently thwarted. so what standard of encryption do we have out there that has not been defeated as of yet? SHA? Blowfish? 3DES?

Free Online Crypto Course

Xin — Sun, 03 Jun 2012 07:02:11 -0400

https://class.coursera.org/crypto/auth/welcome

Please help me ! what is this category encryption

Kid4vn — Fri, 30 Sep 2011 04:57:38 -0400

Hi ! everybody
Please,anyone can help me ! what is this category encryption ?

caw7Shwj5D4q2

cabZYxVNYXRUE

cakDiq2SO2STU

caWmQqtTqtRM6

capODNLKRth6c

Thanks !

Caesar Cipher

Sh3llc0d3 — Sat, 30 Apr 2011 16:33:16 -0400

Caesar Cipher by Sh3llc0d3

Another hobby of mine is mathematics, alegbra specifically although trigonometry is another area I like. Today Iâ€™m going to move away from networking and demonstrate the Caesar cipher which is a monoalphabetic cipher/substitution. The Caesar Cipher uses a very slight encryption of n+3. â€˜nâ€™ being the letter of the alphabet you wish to encrypt, itâ€™s also known as Caesarâ€™s code, the â€˜shiftâ€™ cipher and the Caesar shift (shift meaning it shifts places).

[align=center]http://www.stealthcopter.com/blog/wp-content/uploads/2009/12/320px-Caesar3.png
[/align]
A very simple example of a plaintext string is below:

â€˜iexploit is awesome by shellcodeâ€™

Using the Caesar Cipher we encrypt it thus:

â€˜lhasorlw lv dzhvrph eb vkhoofrghâ€™

Most people would not understand that but to a cryptologist/cryptanalyst it would be easily broken. Therefore we can use other methods to distort the code, please note this is not a second layer of encryption!

Original encrypted string:

â€˜lhasorlw lv dzhvrph eb vkhoofrghâ€™

Removing the spaces gives a slight distortion, however not very much:

â€˜lhasorlwlvdzhvrphebvkhoofrghâ€™

A common practice is to remove all the normal spaces in the phrase and then add spaces at set intervals, for instance after every 4th character:

â€˜lhas orlw lvdz hvrp hebv khoo frghâ€™

From the original phrase/string we could clearly make out words by the spacing, using the frequency of the characters and the ideology that certain letters appear more frequently in words than others we could crack the encrypted phrase. I might also add, removing/adding spaces does not alter frequency, it would still be 'crackable'.

The modular arithmetic representation is shown below:
Where â€˜xâ€™ is the letter and â€˜nâ€™ is the shift:
Encryption
http://i.imgur.com/H5xib.png
Decryption
http://i.imgur.com/BjSCT.png

Please note: I'm not here to give maths lessons :P

This thread is short as I didn't really want to lose anyone half-way through frequency analysis. Using several high-level mathematical equations the code can be broken, however as a lot of people here and in forums like this in general aren't out of school/college I've kept the maths to a minimum. I just wanted to demonstrate a simple cipher and maybe some of you will learn more about it :)

I'll give more examples soon and I'm working on a full-blown paper on ciphers at the moment so bare with me.

Code Example
Java - Thanks to Deque for providing this code snippet in Java.

public String encrypt(String plainText, int shift) {
        StringBuilder code = new StringBuilder();

        for (char c : plainText.toCharArray()) {
                if (Character.isWhitespace(c)) {
                        code.append(c); //leave whitespaces the way they are
                } else {
                        int s = ((c % 'A' + shift) % 26); //the encryption formula
                        if (s > 25) {
                                s = s - 26; //result is not in range 0...25
                        } else if (s < 0) {
                                s = s + 26; //result is not in range 0...25
                        }
                        code.append((char) (s + 'A')); //append resulting letter to the encrypted string
                }

        }
        return code.toString();
}

public String decrypt(String code, int shift) {
        return encrypt(code, -shift);
}

Crypters Guide

undead — Tue, 04 May 2010 19:54:52 -0400

Crypters Guide for beginners

What is a crypter?
A crypter is a program used to make viruses undetectable by anti-viruses.

Crypter types:

Runtime: Crypters that crypt your virus and when you run it in a computer it is undetectable by the anti-virus.

Scantime: Crypters that crypt your virus and when you scan it it is undetectable but when your run it in a computer the anti-virus detects it.

Crypter parts:

[list][*]Client: The porgram where you can load your file and crypt it.
[/*:m]
[*]Stub: Stub is a filter for the file you chose at the client. If you delete it the client is useless but some crypters don't have a stub (internal stub).[/*:m][/list:u]

FUD & UD

UD means UnDetectable.
FUD means Fully UnDetectable.
You can check if your crypted virus is FUD or UD at NoVirusThanks.

http://scanner.novirusthanks.org/

http://img37.imageshack.us/img37/9051/30845381.png

Always check "Do not distribute the sample"!

If your virus is FUD it will be like this:

http://img228.imageshack.us/img228/2372/95777792.png

Best Online MD5 Cracker By Far!

Xin — Sun, 14 Mar 2010 01:24:42 -0500

http://md5cracker.org/
It uses all the online crackers put together and has an amazing success rate, i definately recommend it!

Can you decipher this?

Integer — Sat, 16 Jul 2011 20:24:35 -0400

I created a cipher and I want to know how secure it is.
So can you decipher it?

Here is the cipher text:
âŒ #Ã³ÂºÃ³;Ã¤%_!ÂºÏ€+Ã‘%_Ã âŒ âŒ :âŒ

Full Disk Encryption Question

Rajah — Mon, 20 Jun 2011 09:53:53 -0400

Does anyone know a good way to get full disk encryption for Linux? I've used Truecrypt for Windows but have heard of compatibility issues with Linux.
Any suggestions or hints would be much appreciated. =)

PGP keys - A simple tutorial

chroniccommand — Sat, 09 Apr 2011 23:51:01 -0400

I've spent the last 5 days trying to fully understand Public and Private key, with little luck. I don't think anybody fully understands the concept of keys, nobody. But I will try and explain what I know via wikipedia etc.

I will be using the simple email example. Anyway, lets say we have two people. Joe and John. Joe wants to send John a secret file that has bank account information and such that he wants nobody else to see. So what does he do? Encrypts it. Joe runs Arch Linux so he uses GPG(GNU Privacy Guard) which implements PGP(Pretty Good Privacy). First, Joe generates a pair of asymmetrical keys. Public and private keys. The public key is as the name implies, public. The public key is distributed to anybody. But as the private keys name implies, private keys are meant for one person and one person only. You. You wouldn't normally give people private possesions would you(Unless privates == sexual organs). But anyway, Joe runs Arch Linux so he fires up a terminal, creates a pair of keys(public and private), and then gives John his public key. John also generates his own public / private key pair. Joe take his secret bank account file and encrypts it. He then emails the encrypted file to John, along with his PGP public key. John imports Joes public key and proceeds to decrypt the secret bank information.

So how can we go about doing all this? Well it's simple(In windows, just download a PGP or GPG program).
First, lets go ahead and generate our keys.


gpg --gen-key

This will take you along a couple steps. First, select what type of key you want. The first is a pretty good one. Then select the key size. The stronger the key size, the stronger it is. But 2048 is pretty good. Now we can select when the keys expire. Expiring keys can be good and bad. Lets say the key is comprimised by a malicious attacker, it will only be comprimised until the key is expired.
After that, we need to input some info. Our name, email and the comment for these keys. After this is done it asks for a passphrase. This should be a pretty strong one to prevent brute force attacks.

After all information for the keys are created, the OS needs to gather some entropy to generate the keys. Just move around the mouse, press keys etc until enough is gathered to generate the key. After that, we can see our keys:


gpg --list-keys

You can list private keys with


gpg --list-secret-keys

Now we need to export the public key to a public.key file.


gpg --export -a \"Your Name\" > public.key

This will export the key for "Your Name" to public.key. For me, I supplement Your Name with Chronic Command.
Now lets encrypt the file with gpg and send it.


gpg -e -u \"Your Name\" -r \"Recipient Name\" secret.file

Now we have our encrypted file :)

So we have our keys set up and the ecrypted file. Now we send the encrypted file to John who has our public key.
Once John gets it, John just imports the key and decrypts the data.
To import:


gpg --import public.key

Done :D

Anyway, I don't fully understand it but I understand enough to write this simple tutorial on it. So I hope you enjoyed it and learned something. I suggest googling it and reading up on wikipedia some more, maybe you can understand it better :P

--chroniccommand

Does anyone know how to decrypt this ?

wTg — Wed, 11 May 2011 16:07:23 -0400

iec30a2jtyftj345whpwgwf1

I was wondering if anyone knew what type of hash or encryption this is? It is 24 characters and i cant find a type of hash that is that length. Thanks for any help :)

Need some e-books/videos for understanding Various types of encryptions and hashing

mandi — Sun, 19 Dec 2010 20:29:26 -0500

As the title says I am much more being Attracted to cryptography,but i am not very good at math,but i still like to know the indepth working and fundamentals of the top hashing and encrypting algorithms

When ever i see about cryptography i am seeing these Algorithms and hashing methods
1)AES 2)DES 3)3DES 4)SHA 5)MD5 6)SALTED MD5 7)SSL encryption 8)SSH encryption 9)IP-sec encryption 10)Encryption used in GRE tunnels

I am willing to have some fundamental knowledge about these encryption,ho it works and how it can be cracked or breaked etc,

If you do have any documents or links or e-books for understanding the fundamentals of the above things,please feel free to guide me....

Hope some one will help me...

Please help ... MD5 Salt

Hardcore-Gabber — Tue, 24 May 2011 18:09:32 -0400

Please someone cane crack me this hahs`s ... are salted md5

cbbba8df8550d49cde4232ffb4cd1e5f:qPtFZ,-R5Q>>S8R~0;ZhA&E-I(vu!w
e76984c790dfea99f9573cd09fb0c359:\@c#?D{SJ=AyUsvx{|wpJGr\m>gS)
e9140a61d31c3de698dc4b8e92ee0288:,GKt@!')sslyM&d1T9G@F7'xak^hO#

Thanks

Can you decode this?

chroniccommand — Fri, 15 Apr 2011 20:26:02 -0400

Hey everybody, I've recently finished a new script in Python to encode text with a key:value pair for characters a-z, A-Z, 0-9, and some other characters. I was just posting as a test to see if anybody can decode this text.


~ax) &^SY~ax) x)&^T30)9(9G ap9(0)x#9GSY?

Thanks, just testing to see if this needs any improvement.

Openwall Wordlist Collection CD (Includes the paid for CD-offered only wordlist)

zer0day — Thu, 31 Mar 2011 05:36:00 -0400

[align=center] http://i292.photobucket.com/albums/mm25/bktruss/owl.jpg [/align]

[align=center] Openwall Wordlists Collection CD [/align]

[align=center] Info:
Included in this collection are wordlists for 20+ human languages and lists of common passwords. The included languages are: Afrikaans, Croatian, Czech, Danish, Dutch, English, Finnish, French, German, Hungarian, Italian, Japanese, Latin, Norwegian, Polish, Russian, Spanish, Swahili, Swedish, Turkish, and Yiddish. There's also a list of the common passwords and unique words for all the languages combined in one file (over 40 MB for almost 4 million entries).

Included only on the CD and not available in the freely downloadable version of the collection is a huge list of all the common passwords and words from all the languages with word mangling rules applied (to form other likely passwords, such as by adding capitalization or digits to words) and any duplicates purged. This wordlist is provided as a single uncompressed text file usable directly off the CD. Its size is almost 500 MB and it has over 40 million entries.

For all wordlists, the entries are sorted either alphabetically or for more common to less common passwords/words/languages with alphabetical order within each section (for about equally common passwords or words, or for individual languages). There are no duplicates. [/align]

[align=center]

http://www.megaupload.com/?d=77SYKQL4

[/align]

Crack this hash... [MD5]

Sh3llc0d3 — Thu, 24 Mar 2011 21:32:27 -0400

Let me know if you can crack this hash as I'm having no luck with online databases :( Think I'm gonna have to upload it for cracking

f259271b6555a346196e4ad2011e1006

Could anybody crack this?

chroniccommand — Tue, 01 Mar 2011 00:06:17 -0500

Just wondering if anybody could crack this MD5 hash. I've been trying for a while now. No success.
HASH:

8e63fd6ac05325fa1650ed7cc616aaa2

Thanks in advance :)

EDIT:
I think it's actually an LM DES hash. That's what JTR says anyway.

What Hash is this?

wTg — Sat, 15 Jan 2011 17:45:03 -0500

Does anyone know what type of Hash value this is or what program i could use to crack it?

The Hash is: 844765f5ed6dfe78652a1ae8f61dbb54

:)

MD5 Cracker [PERL]

undead — Tue, 09 Mar 2010 20:37:02 -0500

MD5 Cracker

The code is not created by me. Credits goes to pr0n for the code...

#!/usr/bin/perl
use Digest::MD5 qw( md5_hex );
use LWP::UserAgent;
use HTTP::Request::Common;

print \"MD5 Hash ToolKit [mr.pr0n]\";

#*************************** [Main Menu] ******************************
menu:;
print \"\nMenu:\n\";
print \" 1. Create your MD5 Hash. \n\";
print \" 2. Crack your MD5 Hash with Dictionary Attack.\n\";
print \" 3. Crack your MD5 Hash with Brute Force Attack.\n\";
print \" 4. Search for your MD5 Hash.\n\";
print \" 5. Exit.\n\";
print \"\nOption: \";
$option=<STDIN>;

if ($option!=1 && $option!=2 && $option!=3 && $option!=4 && $option!=5) 
{
print \"Oups!Wrong Option!!\n\";
goto menu;
}
# Epilogh Option
if ($option==1)
{&create_md5}
if ($option==2)
{&dic_attack}
if ($option==3)
{&brute_attack}
if ($option==4)
{&search_md5}
if ($option==5)
{&quit}

#****************************** [Option 1] ******************************
sub create_md5
{
$word;
print \"MD5 Hash Creator\n\";
print \"Give me your word: \";
$word = <STDIN>;
chomp($word);
print \"MD5 Hash is: \", md5_hex(\"$word\"), \"\n\n\";
goto menu;
}
#****************************** [Option 2] ******************************
sub dic_attack
{
print \"MD5 [Worldlist] Cracker [mr.pr0n]\n\";
print \"Enter MD5: \";
chomp($hash = <STDIN>);
if(length($hash)!=32)
{
die \"$hash is NOT valid\n\";
}
$words=\"passes.txt\";
open (WORDLIST, $words);
print \"Wordlist opened successfully!\n\";
   @wordlist = <WORDLIST>; 
   for ($i = 0; $i < @wordlist; $i++){
      $h = $wordlist[$i]; 
   	chomp($h);
        $dec=md5_hex($h);
   	if($dec eq $hash){
         die \"[+]Your password is: $h\n\";}
}
print \"[-]Not Cracked!!\n\"; 
goto menu;
}
#****************************** [Option 3] ******************************
sub brute_attack 
{
$min=1;
$max=10;
print \"MD5 [BruteForce] Cracker [mr.pr0n]\n\";
print \"Enter Type: \";
chomp($type = <STDIN>);
if ($type=~\"a\") {
$alpha = \"abcdefghijklmnopqrstuvwxyz\";}
if ($type=~\"A\") {
$alpha = $alpha. \"ABCDEFGHIJKLMNOPQRSTUVWXYZ\";}
if ($type=~\"1\") {
$alpha = $alpha.\"1234567890\";}
if ($type=~\"!\") {
$alpha = $alpha. \"!\\"\$%&/()=?-.:\\*'-_:.;,\";}
print \"Enter MD5: \";
chomp($md5 = <STDIN>);
if(length($md5)!=32)
{die \"$md5 is NOT valid\n\";}
for ($j=1; $j<=10; $j++)
{mainbrute ($j);}
sub mainbrute
{
$CharSet = shift;
@RawString = ();
for ($i =0;$i<$CharSet;$i++){ $Brute[i] = 0;}
do{
for ($i =0; $i<$CharSet; $i++){
if ($Brute[$i] > length($alpha)-1){
if ($i==$CharSet-1){
print \"Î?h Shit!\nNo Results with type '$type' and $Chars chars.\n\";
$try=0;
return false;
}
$Brute[$i+1]++;
$Brute[$i]=0;
}}
$pass = \"\";
for ($i =0;$i<$CharSet;$i++)
{
$pass = $pass . substr($alpha,$Brute[$i],1);
}
$hash = md5_hex($pass);
$try++;
print \"$hash ($pass)\n\";
if ($md5 eq $hash)
{
print \"\n**FOUND PASSWORD** [ $pass ]\nTried $try passwords \n\";
goto menu;
}
$Brute[0]++;
}while($Brute[$CharSet-1]<length($alpha));
}
goto menu;
}
#****************************** [Option 4] ******************************
sub search_md5
{
print \"Search for your MD5 Hash\n\";
print \"(Î?atch your MD5 hash with six most famous online databases)\";
print \"\nEnter MD5: \";
chomp($hash = <STDIN>);
if(length($hash)!=32)
{
die \"$hash is NOT valid\n\";
}
$lwp = LWP::UserAgent->new;

#**** [md5oogle]****
$crack = \"http://www.md5oogle.com/decrypt.php?input=$hash&meta=01\";
$request = $lwp->request(HTTP::Request->new(GET=>$crack));
$c = $request->content =~ /<b>Result: (.*?)<\/b>/;
if ($c) {
print \"[md5oogle] Password: $1\n\";
} else {

#**** [md5decrypter]****
$url = 'http://www.md5decrypter.com/index.php';
$response = LWP::UserAgent->new->post( $url, [ \"hash\" => $hash ] );
die \"$url error: \", $response->status_line
unless $response->is_success;
die \"Weird content type at $url -- \", $response->content_type
unless $response->content_type eq 'text/html';
if( $response->content =~ /Normal Text: <\/b>(.+)/ ) {
print \"[md5Decrypter] Password: $1\n\";
} else {

#**** [passcracking]**** 
$url = 'http://passcracking.ru/index.php';
$response = LWP::UserAgent->new->post( $url, [ \"datafromuser\" => $hash ] );
die \"$url error: \", $response->status_line
unless $response->is_success;
die \"Weird content type at $url -- \", $response->content_type
unless $response->content_type eq 'text/html';
if( $response->content =~ /<td bgcolor=#FF0000>(.+)<\/td><td>/ ) {
print \"[PassCracking] Password: $1\n\";
} else {

#**** [hashchecker] ****
$url = 'http://www.hashchecker.com/index.php';
$response = LWP::UserAgent->new->post( $url, [ \"search_field\" => $hash ] );
die \"$url error: \", $response->status_line
unless $response->is_success;
die \"Weird content type at $url -- \", $response->content_type
unless $response->content_type eq 'text/html';
if( $response->content =~ /<li>$hash is <b>(.+)<\/b>/ ) {
print \"[HashChecker] Password: $1\n\";
} else {

#**** [Milw0rm] **** 
$ua = $lwp->request(POST 'http://www.milw0rm.com/cracker/search.php',
[ hash => \"$hash\", Submit => 'Submit', ] );
@content = split(/[n]/, $ua->content);
@password = split( /[><]/, $content[47]);
if($password[1]) { 
print \"[Milw0rm] Password: $password[1]\n\";
}else {

#**** [GdataOnline] **** 
$gdo = $lwp->request(GET 'http://gdataonline.com/qkhash.php?mode=xml&hash='.$hash);
@content = split(/<result>/, $gdo->content);
@password = split( /[><]/, $content[1]);
if(@password[0]) {
print \"[GdataOnline] Password: $password[0]\n\";
}
else { print \" Password Not Found!!\"; }
}}}}}
goto menu;
}
#****************************** [Option 5] ******************************
sub quit
{
exit(1);
}
#****************************** [The End] *******************************

Save it as anything.pl
You must have Active Perl installed. Google it :)
Go to CMD and type:
cd [place where it is saved]
ex. cd Desktop
then: perl anything.pl

Any body got links about how RIM's encryption is implemented in Black Berrys?

mandi — Sat, 08 Jan 2011 12:28:09 -0500

I am bit confused,
i had readed in a article saying that blackberry encryption is cracked finally,but when i asked to my friends about this ,they said it is true,but they are yet to crack this RIM's encryption,as a hacker i am much more fascinated about how the RIM's encryption is implemented and working with black-berries,but i can not able to find a good source for understanding them,when i googled i had been ended up with some news feeds in general about the blackberry and it's feauter's ,if possible can any 1 point me to some nice links for understanding this thing?

hope some one will help me..