# AES128 Counter Mode Decrypt Example

#### we'll use 3 texts:
##### PlainText1 (Cat.txt)
##### CipherText1 (Encrypted_Cat.txt)
##### CipherText2 (Challenge.txt)

The key used is unknown. All we know is that AES128 in counter mode is used. The Two ciphertexts are encrypted with the same key. The Objective is to retrieve the Plaintext of CipherText2 (Challenge.txt)

In [1]:
import collections

def xor(s, t):
    return bytes(((a) ^ (b)) for a, b in zip(s, t))

#Plaintext 1
with open('cat.txt', 'rb') as myfile:
    cat = myfile.read()
    
# CipherText1 of PlainText1
with open('encrypted_cat.txt', 'rb') as myfile:
    encrypted_cat = myfile.read()[0:len(cat)]
    
#CipherText2 of Unknown PlainText
with open('challenge.txt', 'rb') as myfile:
    challenge = myfile.read()[0:len(cat)] # limiting the size for xor operation


In [2]:
keystream = xor(cat,encrypted_cat)
# print(keystream.decode(errors='ignore')) #output the keystream

In [3]:
print(collections.Counter(keystream).most_common(8))
# the tuples (a, b) represents the ascii code (a) and the relative frequency (b) inside the bytearray 
# uniform distribution => pseudorandom stuff

[(43, 122), (201, 119), (36, 109), (171, 108), (213, 107), (3, 107), (205, 107), (75, 107)]


In [4]:
AES_BLOCK = 16 # 128 bit blocks
max_length = len(keystream)//10 # limiting the max length for performance purpose

# trying to exploit the counter iterating through AES blocks
index = 0
for block in [keystream [i : len(keystream)] for i in range(0, max_length, AES_BLOCK)]:
    index += 1
    temp = xor(block,challenge)
    if 32 in collections.Counter(temp).most_common(8)[0]: # checking for ASCII Code 32 => it is the Space char
        print("Initial Value shift: " + str(index - 1))
        print(temp[:200].decode(errors='ignore') + "\n")

Initial Value shift: 29
1L-]9CIw4*<UP`]AD]IO#o?֨~p Qr!v1Lpc?'GiRHyV綼l#l pe' *+nrîD_(q\m
Џ#)~[Im
Y!=Bnx]}rn-h

Initial Value shift: 30
AY:~UR7؄=7d)3@
 -''6]"4UiY(9mOSj5O.-NE~DWXC?O20'ēr_Ѡg|Z^l&Tk()!a<"ХZnƧoN

Initial Value shift: 80
THE RIME OF THE ANCIENT MARINER

IN SEVEN PARTS

By Samuel Taylor Coleridge



PART THE FIRST.

     It is an ancient Mariner,
     And he stoppeth one of three.
     "By thy long grey bea



In [6]:
t = xor(keystream[ AES_BLOCK*80 : len(keystream)],challenge)
print(t[:1000].decode(errors='ignore')) #limiting the output and decoding in readable format

THE RIME OF THE ANCIENT MARINER

IN SEVEN PARTS

By Samuel Taylor Coleridge



PART THE FIRST.

     It is an ancient Mariner,
     And he stoppeth one of three.
     "By thy long grey beard and glittering eye,
     Now wherefore stopp'st thou me?

     "The Bridegroom's doors are opened wide,
     And I am next of kin;
     The guests are met, the feast is set:
     May'st hear the merry din."

     He holds him with his skinny hand,
     "There was a ship," quoth he.
     "Hold off! unhand me, grey-beard loon!"
     Eftsoons his hand dropt he.

     He holds him with his glittering eye--
     The Wedding-Guest stood still,
     And listens like a three years child:
     The Mariner hath his will.

     The Wedding-Guest sat on a stone:
     He cannot chuse but hear;
     And thus spake on that ancient man,
     The bright-eyed Mariner.

     The ship was cheered, the harbour cleared,
     Merrily did we drop
     Below the kirk, below the hill,
 

# Mission Complete