Added crypto write-ups

Author: Nicholas Ferreira

crypto/basic-mod-1/README.md

@@ -0,0 +1,35 @@
+## Description
+```
+Description
+We found this weird message being passed around on the servers, we think we have a working decrpytion scheme.
+Download the message here.
+Take each number mod 37 and map it to the following character set: 0-25 is the alphabet (uppercase), 26-35 are the decimal digits, and 36 is an underscore.
+Wrap your decrypted message in the picoCTF flag format (i.e. picoCTF{decrypted_message})
+```
+
+----
+
+```txt
+message.txt:
+54 396 131 198 225 258 87 258 128 211 57 235 114 258 144 220 39 175 330 338 297 288
+```
+
+```php
+#!/usr/bin/php
+<?php
+
+$message = file_get_contents("message.txt");
+$msg_arr = explode(" ", $message);
+
+$charset = array_merge(range("A", "Z"), range(0, 9), ["_"]);
+
+echo "picoCTF{";
+foreach($msg_arr as $byte)
+	echo $charset[$byte % 37];
+echo "}";
+```
+
+```
+$ php decrypt.php
+picoCTF{R0UND_N_R0UND_79C18FB3}
+```

crypto/basic-mod-1/decrypt.php

@@ -0,0 +1,13 @@
+#!/usr/bin/php
+<?php
+
+$message = file_get_contents("message.txt");
+$msg_arr = explode(" ", $message);
+
+$charset = array_merge(range("A", "Z"), range(0, 9), ["_"]);
+//print_r($charset);
+
+echo "picoCTF{";
+foreach($msg_arr as $byte)
+	echo $charset[$byte % 37];
+echo "}";

crypto/basic-mod-1/message.txt

@@ -0,0 +1 @@
+54 396 131 198 225 258 87 258 128 211 57 235 114 258 144 220 39 175 330 338 297 288 

crypto/basic-mod-2/README.md

@@ -0,0 +1,40 @@
+# Description
+
+```
+Description
+A new modular challenge!
+Download the message here.
+Take each number mod 41 and find the modular inverse for the result. Then map to the following character set: 1-26 are the alphabet, 27-36 are the decimal digits, and 37 is an underscore.
+Wrap your decrypted message in the picoCTF flag format (i.e. picoCTF{decrypted_message})
+```
+
+
+```txt
+message.txt:
+268 413 110 190 426 419 108 229 310 379 323 373 385 236 92 96 169 321 284 185 154 137 186
+```
+
+```php
+#!/usr/bin/php
+<?php
+
+$message = file_get_contents("message.txt");
+$msg_arr = explode(" ", $message);
+$charset = array_merge(range("A", "Z"), range(0, 9), ["_"]);
+
+echo "picoCTF{";
+foreach($msg_arr as $byte)
+	echo $charset[inverse($byte, 41)-1];
+echo "}";
+
+function inverse($num, $mod){
+	for($i=0;$i<$mod;$i++){
+		$result = ($num*$i) % $mod;
+		if($result == 1)
+			return $i;
+	}
+}
+
+```
+
+`picoCTF{1NV3R53LY_H4RD_C680BDC1}`

crypto/basic-mod-2/decrypt.php

@@ -0,0 +1,21 @@
+#!/usr/bin/php
+<?php
+
+$message = file_get_contents("message.txt");
+$msg_arr = explode(" ", $message);
+$charset = array_merge(range("A", "Z"), range(0, 9), ["_"]);
+
+echo "picoCTF{";
+foreach($msg_arr as $byte)
+	echo $charset[inverse($byte, 41)-1];
+echo "}";
+
+function inverse($num, $mod){
+	for($i=0;$i<$mod;$i++){
+		$result = ($num*$i) % $mod;
+		if($result == 1)
+			return $i;
+	}
+}
+
+//echo inverse(3, 7);

crypto/basic-mod-2/message.txt

@@ -0,0 +1 @@
+268 413 110 190 426 419 108 229 310 379 323 373 385 236 92 96 169 321 284 185 154 137 186

crypto/credstuff/README.md

@@ -0,0 +1 @@
+![](/Screenshots/Pasted%20image%2020220315150539.png)

crypto/credstuff/leak.tar

@@ -0,0 +1 @@
+![](/Screenshots/Pasted%20image%2020220316023119.png)

crypto/diffie-hellman/README.md

@@ -0,0 +1 @@
+H98A9W_H6UM8W_6A_9_D6C_5ZCI9C8I_D9FF6IFD

crypto/diffie-hellman/message.txt

@@ -0,0 +1 @@
+![](/Screenshots/Pasted%20image%2020220315151849.png)

crypto/morse-code/README.md

@@ -0,0 +1 @@
+![](/Screenshots/Pasted%20image%2020220315154235.png)

crypto/morse-code/morse_chal.wav

@@ -0,0 +1 @@
+Ta _7N6D49hlg:W3D_H3C31N__A97ef sHR053F38N43D7B i33___N6

crypto/rail-fence/README.md

@@ -0,0 +1 @@
+![](/Screenshots/Pasted%20image%2020220315153053.png)

crypto/rail-fence/message.txt

@@ -0,0 +1,12 @@
+EKSZJTCMXOQUDYLFABGPHNRVIW 
+
+Mjbjhfly Ujcbeyz eblgj, rxpm e cbenj eyz gpepjui exb, eyz kblhcmp dj pmj kjjpuj
+tbld e cuegg segj xy rmxsm xp reg jysulgjz. Xp reg e kjehpxthu gsebekejhg, eyz, ep
+pmep pxdj, hyqylry pl yephbeuxgpg—lt slhbgj e cbjep fbxwj xy e gsxjypxtxs flxyp
+lt nxjr. Pmjbj rjbj prl blhyz kuesq gflpg yjeb lyj jvpbjdxpi lt pmj kesq, eyz e
+ulyc lyj yjeb pmj lpmjb. Pmj gseujg rjbj jvsjjzxycui mebz eyz culggi, rxpm euu pmj
+effjebeysj lt khbyxgmjz cluz. Pmj rjxcmp lt pmj xygjsp reg njbi bjdebqekuj, eyz,
+peqxyc euu pmxycg xypl slygxzjbepxly, X slhuz mebzui kuedj Ohfxpjb tlb mxg lfxyxly
+bjgfjspxyc xp.
+
+Pmj tuec xg: fxslSPT{5HK5717H710Y_3N0UH710Y_59533E2J}

crypto/substitution-0/README.md

@@ -0,0 +1 @@
+![](/Screenshots/Pasted%20image%2020220315164815.png)

crypto/substitution-0/message.txt

@@ -0,0 +1 @@
+IECj (jqfue cfu ixzelus eqs coxa) xus x emzs fc ifrzlesu jsiludem ifrzsededfy. Ifyesjexyej xus zusjsyesk hdeq x jse fc iqxoosyasj hqdiq esje eqsdu iusxedgdem, esiqydixo (xyk affaodya) jpdooj, xyk zuftosr-jfogdya xtdodem. Iqxoosyasj ljlxoom ifgsu x ylrtsu fc ixesafudsj, xyk hqsy jfogsk, sxiq mdsokj x jeudya (ixoosk x coxa) hqdiq dj jltrdeesk ef xy fyodys jifudya jsugdis. IECj xus x ausxe hxm ef osxuy x hdks xuuxm fc ifrzlesu jsiludem jpdooj dy x jxcs, osaxo sygdufyrsye, xyk xus qfjesk xyk zoxmsk tm rxym jsiludem auflzj xuflyk eqs hfuok cfu cly xyk zuxiedis. Cfu eqdj zuftosr, eqs coxa dj: zdifIEC{CU3NL3YIM_4774IP5_4U3_I001_4871S6CT}

crypto/substitution-1/README.md

@@ -0,0 +1 @@
+![](/Screenshots/Pasted%20image%2020220315171130.png)

crypto/substitution-1/message.txt

@@ -0,0 +1 @@
+gvjwjjoeugujajwqxzgvjwkjxxjugqfxeuvjivecvumvzzxmzbpsgjwujmswegrmzbpjgegezhuehmxsiehcmrfjwpqgwezgqhisumrfjwmvqxxjhcjgvjujmzbpjgegezhunzmsupwebqwexrzhurugjbuqibeheugwqgezhnshiqbjhgqxukvemvqwjajwrsujnsxqhibqwdjgqfxjudexxuvzkjajwkjfjxejajgvjpwzpjwpswpzujznqvecvumvzzxmzbpsgjwujmswegrmzbpjgegezheuhzgzhxrgzgjqmvaqxsqfxjudexxufsgqxuzgzcjgugsijhguehgjwjugjiehqhijomegjiqfzsgmzbpsgjwumejhmjijnjhueajmzbpjgegezhuqwjzngjhxqfzwezsuqnnqewuqhimzbjizkhgzwshhehcmvjmdxeuguqhijojmsgehcmzhnecumwepguznnjhujzhgvjzgvjwvqhieuvjqaexrnzmsujizhjopxzwqgezhqhiebpwzaeuqgezhqhizngjhvqujxjbjhguznpxqrkjfjxejajqmzbpjgegezhgzsmvehczhgvjznnjhueajjxjbjhguznmzbpsgjwujmswegreugvjwjnzwjqfjggjwajvemxjnzwgjmvjaqhcjxeubgzugsijhguehqbjwemqhvecvumvzzxunswgvjwkjfjxejajgvqgqhshijwugqhiehcznznnjhueajgjmvhelsjueujuujhgeqxnzwbzshgehcqhjnnjmgeajijnjhujqhigvqggvjgzzxuqhimzhnecswqgezhnzmsujhmzshgjwjiehijnjhueajmzbpjgegezhuizjuhzgxjqiugsijhgugzdhzkgvjewjhjbrqujnnjmgeajxrqugjqmvehcgvjbgzqmgeajxrgvehdxedjqhqggqmdjwpemzmgneuqhznnjhueajxrzwejhgjivecvumvzzxmzbpsgjwujmswegrmzbpjgegezhgvqgujjdugzcjhjwqgjehgjwjugehmzbpsgjwumejhmjqbzhcvecvumvzzxjwugjqmvehcgvjbjhzscvqfzsgmzbpsgjwujmswegrgzpelsjgvjewmswezuegrbzgeaqgehcgvjbgzjopxzwjzhgvjewzkhqhijhqfxehcgvjbgzfjggjwijnjhigvjewbqmvehjugvjnxqceupemzMGN{H6W4B_4H41R515_15_73I10S5_8J1FN808}

crypto/substitution-2/README.md

@@ -0,0 +1,5 @@
+Calculando soma e produto dos primos:
+
+![](/Screenshots/Pasted%20image%2020220317022118.png)
+
+![](/Screenshots/Pasted%20image%2020220317022028.png)

crypto/substitution-2/message.txt

@@ -0,0 +1,17 @@
+#!/usr/bin/env python
+# -*- coding:utf-8 -*-
+import binascii
+import gmpy2
+n=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
+# This way I use yafu It's broken down n
+p=98003312109211742492766078547103180302458874375031751582594385856300852883502527670257348847568307704278396061082779143716586619015707011390688920499602751203272333055894471977207396801711910074168795055647226748304769472877973696655496697151190763159772949611427327156924881240093411584911289986786645251817
+q=171605493547460749047153620147807189143153830318479320490789125997400418790068931220714964538131106519997625293387042516388121505143700224886953561940149152974090643943558758253528750845622251033033328825087914744922213112925910051618913976942968425738697927234626842286228129966348756892033903656065084360639
+e=65537
+c=0x42cafbc77ed8396a681dac328701ee02cd746488ae084f15a3e6a5b8f666c595a372a69bbca0dae934fd5ed2292d4393912ee10a22a3b57de9cee2f30b5dc7c67f574b0453f6074171cca37bd407529cb30ba17f152ef5b2484d94b38cf0a513a723255d725e5c3b3f3c985f9223095be3fa148afedf91e4ed37720c3d97dd29cf07830efa8a557a9da68d3095fc3b31f3763e030b62c70d94c3d2951e163e48683f3b9611d562ea06bf1e5d8465e8bf5a6345050a5e7b0c175faf136562cf2a196fdb61ac6503446616cffa9ed85015b86dda73f6eda4d688d3e719a07439d98f95fb5dcf675948ec58d9af83fa29afa4375213ec48f09a6c8cbc431cfe7c6a
+
+
+phi=(p-1)*(q-1)
+d=gmpy2.invert(e,phi)
+m=pow(c,d,n)
+print(hex(m))
+print(binascii.unhexlify(hex(m)[2:].strip("L")))

crypto/sum-o-primes/README.md

@@ -0,0 +1,37 @@
+#!/usr/bin/python
+
+from binascii import hexlify
+from gmpy2 import mpz_urandomb, next_prime, random_state
+import math
+import os
+import sys
+
+if sys.version_info < (3, 9):
+    import gmpy2
+    math.gcd = gmpy2.gcd
+    math.lcm = gmpy2.lcm
+
+FLAG  = open('flag.txt').read().strip()
+FLAG  = int(hexlify(FLAG.encode()), 16)
+SEED  = int(hexlify(os.urandom(32)).decode(), 16)
+STATE = random_state(SEED)
+
+def get_prime(bits):
+    return next_prime(mpz_urandomb(STATE, bits) | (1 << (bits - 1)))
+
+p = get_prime(1024)
+q = get_prime(1024)
+
+x = p + q
+n = p * q
+
+e = 65537
+
+m = math.lcm(p - 1, q - 1)
+d = pow(e, -1, m)
+
+c = pow(FLAG, e, n)
+
+print(f'x = {x:x}')
+print(f'n = {n:x}')
+print(f'c = {c:x}')

crypto/sum-o-primes/decrypt.py

@@ -0,0 +1,3 @@
+x = 17fef88f46a58da13be8083b814caf6cd8d494dd6c21ad7bf399e521e14466d51a74f51ad5499731018b6a437576e72bd397c4bb07bfbb699c1a35f1f4fa1b86dee2a1702670e9cea45aa7062f9569279d6d4b964f3df2ff8e38cf029faad57e42b831bde21132303e127cba4e80cd3c9ff6a7bad5b399a18252dc35460471ea8
+n = 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
+c = 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

crypto/sum-o-primes/gen.py

@@ -0,0 +1 @@
+![](/Screenshots/Pasted%20image%2020220315174221.png)

crypto/sum-o-primes/output.txt

@@ -0,0 +1,5 @@
+<?php
+$msg = file_get_contents("message.txt");
+$splitted = str_split($msg, 3);
+foreach($splitted as $chunk)
+	echo preg_replace("/(.)(.)(.)/","$3$1$2",$chunk);

crypto/transpositional-trial/README.md

@@ -0,0 +1 @@
+heTfl g as iicpCTo{7F4NRP051N5_16_35P3X51N3_V6E5926A}4

crypto/transpositional-trial/decrypt.php

@@ -0,0 +1 @@
+Subproject commit 4dc420bb1ed9f36341af4e6145e004b94a33fa71

crypto/transpositional-trial/message.txt

@@ -0,0 +1,3 @@
+[https://github.com/ZeroBone/PollardRsaCracker](https://github.com/ZeroBone/PollardRsaCracker)
+
+![](/Screenshots/Pasted%20image%2020220317222619.png)

crypto/very-smooth/PollardRsaCracker

@@ -0,0 +1,17 @@
+#!/usr/bin/env python
+# -*- coding:utf-8 -*-
+import binascii
+import gmpy2
+n=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
+# This way I use yafu It's broken down n
+p=99126027751293787460707333225370081580584982304038231096813161244761524095590615117831448502823590451345284755118126397029033735152688999710147646678545625634287769168400222908200102457283937611678386858046723404913983230996949238395868265074908432952904759110064966754913625273131550827408850464386561335667
+q=128965183581768163664978030498027146361112997382480284467816270831653077525969847879430397647540675619100157280183116707523593845084067419846780398725528236058905044567351849099700699570794288281913389080617917506884306793829926019232415711115188439634653794440433245851643026110952784986360042886715063777487
+e=65537
+c=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
+
+
+phi=(p-1)*(q-1)
+d=gmpy2.invert(e,phi)
+m=pow(c,d,n)
+print(hex(m))
+print(binascii.unhexlify(hex(m)[2:].strip("L")))

crypto/very-smooth/README.md

@@ -0,0 +1,17 @@
+#!/usr/bin/env python
+# -*- coding:utf-8 -*-
+import binascii
+import gmpy2
+n=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
+# This way I use yafu It's broken down n
+p=22830115979126629415193533117812360558137319176068500266603726879644325590291450954659533053975707896336537320522199421734158898847260214507005326123049297924297169241035902335701247618057835505595499700876972466126448177857781577724674820675830570842051823752434923441305580560689662769924138373183602309520419507227158627990235477030312301162435924114933053817957544525360509591601721150926936504168403258640169278288814361039235934790252
+q=559953632227062196228786501117690084867053705419198555332244725193575207011617206250429837737932190375308375289859718816462794714551958191112622937004456385913210632658931941376
+e=0x10001
+c=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
+
+
+phi=(p-1)*(q-1)
+d=gmpy2.invert(e,phi)
+m=pow(c,d,n)
+print(hex(m))
+print(binascii.unhexlify(hex(m)[2:].strip("L")))

crypto/very-smooth/decrypt.py

@@ -0,0 +1 @@
+teste

crypto/very-smooth/decrypt2.py

@@ -0,0 +1,89 @@
+#!/usr/bin/python
+
+from binascii import hexlify
+from gmpy2 import *
+import math
+import os
+import sys
+
+if sys.version_info < (3, 9):
+    math.gcd = gcd
+    math.lcm = lcm
+
+_DEBUG = True
+
+FLAG  = open('flag.txt').read().strip()
+FLAG  = mpz(hexlify(FLAG.encode()), 16)
+SEED  = mpz(hexlify(os.urandom(32)).decode(), 16)
+STATE = random_state(SEED)
+
+def get_prime(state, bits):
+    return next_prime(mpz_urandomb(state, bits) | (1 << (bits - 1)))
+
+def get_smooth_prime(state, bits, smoothness=16):
+    p = mpz(2)
+    p_factors = [p]
+    while p.bit_length() < bits - 2 * smoothness:
+        factor = get_prime(state, smoothness)
+        p_factors.append(factor)
+        p *= factor
+
+    bitcnt = (bits - p.bit_length()) // 2
+
+    while True:
+        prime1 = get_prime(state, bitcnt)
+        prime2 = get_prime(state, bitcnt)
+        tmpp = p * prime1 * prime2
+        if tmpp.bit_length() < bits:
+            bitcnt += 1
+            continue
+        if tmpp.bit_length() > bits:
+            bitcnt -= 1
+            continue
+        if is_prime(tmpp + 1):
+            p_factors.append(prime1)
+            p_factors.append(prime2)
+            p = tmpp + 1
+            break
+
+    p_factors.sort()
+
+    return (p, p_factors)
+
+e = 0x10001
+
+while True:
+    p, p_factors = get_smooth_prime(STATE, 1024, 16)
+    if len(p_factors) != len(set(p_factors)):
+        continue
+    # Smoothness should be different or some might encounter issues.
+    q, q_factors = get_smooth_prime(STATE, 1024, 17)
+    if len(q_factors) != len(set(q_factors)):
+        continue
+    factors = p_factors + q_factors
+    if e not in factors:
+        break
+
+if _DEBUG:
+    import sys
+    sys.stderr.write(f'p = {p.digits(16)}\n\n')
+    sys.stderr.write(f'p_factors = [\n')
+    for factor in p_factors:
+        sys.stderr.write(f'    {factor.digits(16)},\n')
+    sys.stderr.write(f']\n\n')
+
+    sys.stderr.write(f'q = {q.digits(16)}\n\n')
+    sys.stderr.write(f'q_factors = [\n')
+    for factor in q_factors:
+        sys.stderr.write(f'    {factor.digits(16)},\n')
+    sys.stderr.write(f']\n\n')
+
+n = p * q
+
+m = math.lcm(p - 1, q - 1)
+d = pow(e, -1, m)
+
+c = pow(FLAG, e, n)
+
+print(f'n = {n.digits(16)}')
+print(f'c = {c.digits(16)}')

crypto/very-smooth/flag.txt

@@ -0,0 +1,2 @@
+n = 65446ab139efe9744c78a271ad04d94ce541a299f9d4dcb658f66f49414fb913d8ac6c90dacc1ad43135454c3c5ac76c56d71d2816dac23db5c8caa773ae2397bd5909a1f2823c230f44ac684c437f16e4ca75d50b75d2f7e5549c034aa8a723c9eaa904572a8c5c6c1ed7093a0695522a5c41575c4dbf1158ca940c02b223f50ae86e6782819278d989200a2cd2be4b7b303dffd07209752ee5a3060c6d910a108444c7a769d003bf8976617b4459fdc15a2a73fc661564267f55be6a0d0d2ec4c06a4951df5a096b079d9e300f7ad72fa6c73a630f9a38e472563434c10225bde7d08c651bdd23fd471077d44c6aab4e01323ed78641983b29633ad104f3fd
+c = 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