-
Notifications
You must be signed in to change notification settings - Fork 2
/
Copy pathm26.py
executable file
·30 lines (23 loc) · 879 Bytes
/
m26.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
#!/usr/bin/env python3
"""CTR bitflipping"""
from Crypto.Random import get_random_bytes
from m09 import pkcs7
from m16 import cbc_bitflip as ctr_bitflip
from m18 import aes_ctr
RANDOM_KEY = get_random_bytes(16)
def oracle(userdata: bytes) -> bytes:
prefix = b"comment1=cooking%20MCs;userdata="
postfix = b";comment2=%20like%20a%20pound%20of%20bacon"
userdata = userdata.replace(b";", b"").replace(b"=", b"")
plaintext = pkcs7(prefix + userdata + postfix)
return aes_ctr(plaintext, RANDOM_KEY)
def is_admin(cyphertext: bytes) -> bool:
plaintext = aes_ctr(cyphertext, RANDOM_KEY)
return "admin=true" in plaintext.decode(errors="replace")
def main() -> None:
plaintext = bytes(5) + b":admin<true"
cyphertext = oracle(plaintext)
cyphertext = ctr_bitflip(cyphertext)
print(is_admin(cyphertext))
if __name__ == "__main__":
main()