Matasano Crypto Challenges

Go solutions to the Matasano Crypto Challenges (http://cryptopals.com/). Solutions to the previous challenges are written in Erlang and can be found here.

Set 4: Stream crypto and randomness

Break an MD4 keyed MAC using length extension (problem, solution, test)
Implement and break HMAC-SHA1 with an artificial timing leak (problem, solution, test)
Break HMAC-SHA1 with a slightly less artificial timing leak (problem, solution, test)

Set 5: Diffie-Hellman and friends

Implement Diffie-Hellman (problem, solution, test)
Implement a MITM key-fixing attack on Diffie-Hellman with parameter injection (problem, solution, test)
Implement DH with negotiated groups, and break with malicious "g" parameters (problem, solution, test)
Implement Secure Remote Password (SRP) (problem, solution, test)
Break SRP with a zero key (problem, solution, test)
Offline dictionary attack on simplified SRP (problem, solution, test)
Implement RSA (problem, solution, test)
Implement an E=3 RSA Broadcast attack (problem, solution, test)

Set 6: RSA and DSA

Implement unpadded message recovery oracle (problem, solution, test)
Bleichenbacher's e=3 RSA Attack (problem, solution, test)
DSA key recovery from nonce (problem, solution, test)
DSA nonce recovery from repeated nonce (problem, solution, test)
DSA parameter tampering (problem, solution, test)
RSA parity oracle (problem, solution, test)
Bleichenbacher's PKCS 1.5 Padding Oracle (Simple Case) (problem, solution, test)
Bleichenbacher's PKCS 1.5 Padding Oracle (Complete Case) (problem, solution, test)

Set 7: Hashes

CBC-MAC Message Forgery (problem, solution, test)
Hashing with CBC-MAC (problem, solution, test)
Compression Ratio Side-Channel Attacks (problem, solution, test)

Set 8: Abstract Algebra

Diffie-Hellman Revisited: Small Subgroup Confinement (problem)
Pollard's Method for Catching Kangaroos (problem)
Elliptic Curve Diffie-Hellman and Invalid-Curve Attacks (problem)
Single-Coordinate Ladders and Insecure Twists (problem)
Duplicate-Signature Key Selection in ECDSA (and RSA) (problem)
Key-Recovery Attacks on ECDSA with Biased Nonces (problem)
Key-Recovery Attacks on GCM with Repeated Nonces (problem)
Key-Recovery Attacks on GCM with a Truncated MAC (problem)
Truncated-MAC GCM Revisited: Improving the Key-Recovery Attack via Ciphertext Length Extension (problem)
Exploiting Implementation Errors in Diffie-Hellman (problem)

Useful links

Bleichenbacher's RSA signature forgery based on implementation error (challenge 42)
The Debian PGP disaster that almost was (challenge 43)
DSA requirements for random k value (challenge 44)
Chosen Ciphertext Attacks Against Protocols Based on the RSA Encryption Standard PKCS #1 (challenges 47 and 48)
Why I hate CBC-MAC (challenge 49)
The CRIME attack (challenge 51)

Name		Name	Last commit message	Last commit date
Latest commit History 144 Commits
.eslintrc.yml		.eslintrc.yml
.gitignore		.gitignore
.travis.yml		.travis.yml
LICENSE		LICENSE
README.md		README.md
aes.go		aes.go
challenge30.go		challenge30.go
challenge30_test.go		challenge30_test.go
challenge31.go		challenge31.go
challenge31_test.go		challenge31_test.go
challenge32.go		challenge32.go
challenge32_test.go		challenge32_test.go
challenge33.go		challenge33.go
challenge33_test.go		challenge33_test.go
challenge34.go		challenge34.go
challenge34_test.go		challenge34_test.go
challenge35.go		challenge35.go
challenge35_test.go		challenge35_test.go
challenge36.go		challenge36.go
challenge36_test.go		challenge36_test.go
challenge37.go		challenge37.go
challenge37_test.go		challenge37_test.go
challenge38.go		challenge38.go
challenge38_test.go		challenge38_test.go
challenge39.go		challenge39.go
challenge39_test.go		challenge39_test.go
challenge40.go		challenge40.go
challenge40_test.go		challenge40_test.go
challenge41.go		challenge41.go
challenge41_test.go		challenge41_test.go
challenge42.go		challenge42.go
challenge42_test.go		challenge42_test.go
challenge43.go		challenge43.go
challenge43_test.go		challenge43_test.go
challenge44.go		challenge44.go
challenge44.txt		challenge44.txt
challenge44_test.go		challenge44_test.go
challenge45.go		challenge45.go
challenge45_test.go		challenge45_test.go
challenge46.go		challenge46.go
challenge46_test.go		challenge46_test.go
challenge47.go		challenge47.go
challenge47_test.go		challenge47_test.go
challenge48.go		challenge48.go
challenge48_test.go		challenge48_test.go
challenge49.go		challenge49.go
challenge49_test.go		challenge49_test.go
challenge50.dat		challenge50.dat
challenge50.go		challenge50.go
challenge50.html		challenge50.html
challenge50.js		challenge50.js
challenge50_test.go		challenge50_test.go
challenge51.go		challenge51.go
challenge51_test.go		challenge51_test.go
challenge57.txt		challenge57.txt
challenge58.txt		challenge58.txt
challenge59.txt		challenge59.txt
challenge60.txt		challenge60.txt
challenge61.txt		challenge61.txt
challenge62.txt		challenge62.txt
challenge63.txt		challenge63.txt
challenge64.txt		challenge64.txt
challenge65.txt		challenge65.txt
challenge66.txt		challenge66.txt
dsa.go		dsa.go
math.go		math.go
math_test.go		math_test.go
md4.go		md4.go
md4block.go		md4block.go
network.go		network.go
rsa.go		rsa.go
size.go		size.go
utils.go		utils.go

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Matasano Crypto Challenges

Set 4: Stream crypto and randomness

Set 5: Diffie-Hellman and friends

Set 6: RSA and DSA

Set 7: Hashes

Set 8: Abstract Algebra

Useful links

About

Releases

Packages

Languages

License

Metalnem/cryptopals-go

Folders and files

Latest commit

History

Repository files navigation

Matasano Crypto Challenges

Set 4: Stream crypto and randomness

Set 5: Diffie-Hellman and friends

Set 6: RSA and DSA

Set 7: Hashes

Set 8: Abstract Algebra

Useful links

About

Resources

License

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages