### JWT secrets

In [1]:
import jwt
# need pyjwt==0.4.3

In [4]:
### default secret is 'secret'
key = 'secret'

In [5]:
enc = jwt.encode({'username':'cb','admin':'true'},key,algorithm='HS256')

In [8]:
# put output to https://web.cryptohack.org/jwt-secrets/
print(enc)

eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ1c2VybmFtZSI6ImNiIiwiYWRtaW4iOiJ0cnVlIn0.hDtlBtslb7B1i3GtVyS876IG_uYjOGlChucRJC1okRs


### No Way Jose

In [9]:
enc = jwt.encode({'username':'cb','admin':'true'},'',algorithm='none')

In [11]:
# Paste output to https://web.cryptohack.org/no-way-jose
print(enc)

eyJhbGciOiJub25lIiwidHlwIjoiSldUIn0.eyJ1c2VybmFtZSI6ImNiIiwiYWRtaW4iOiJ0cnVlIn0.


### RSA or HMAC

In [5]:
import requests, jwt

In [6]:
# get pub key
resp = requests.get(url=f'http://web.cryptohack.org/rsa-or-hmac/get_pubkey').json()

In [7]:
resp['pubkey']

'-----BEGIN RSA PUBLIC KEY-----\nMIIBCgKCAQEAvoOtsfF5Gtkr2Swy0xzuUp5J3w8bJY5oF7TgDrkAhg1sFUEaCMlR\nYltE8jobFTyPo5cciBHD7huZVHLtRqdhkmPD4FSlKaaX2DfzqyiZaPhZZT62w7Hi\ngJlwG7M0xTUljQ6WBiIFW9By3amqYxyR2rOq8Y68ewN000VSFXy7FZjQ/CDA3wSl\nQ4KI40YEHBNeCl6QWXWxBb8AvHo4lkJ5zZyNje+uxq8St1WlZ8/5v55eavshcfD1\n0NSHaYIIilh9yic/xK4t20qvyZKe6Gpdw6vTyefw4+Hhp1gROwOrIa0X0alVepg9\nJddv6V/d/qjDRzpJIop9DSB8qcF1X23pkQIDAQAB\n-----END RSA PUBLIC KEY-----\n'

In [9]:
# flip admin to true and algo to hs256 - need pyjwt==0.4.3
enc = jwt.encode({'admin': True}, resp['pubkey'], algorithm='HS256').decode()

In [None]:
resp2 = requests.get(url=f'http://web.cryptohack.org/rsa-or-hmac/get_pubkey/authorise/{enc}').json()

### JSON in JSON

In [26]:
import json, requests

In [27]:

username = '", "admin": "True'

admin_token = json.loads(requests.get(f"https://web.cryptohack.org/json-in-json/create_session/{username}/").text)["session"]


In [28]:
print(requests.get(f"https://web.cryptohack.org/json-in-json/authorise/{admin_token}/").text)

{"response":"Welcome admin, here is your flag: crypto{https://owasp.org/www-community/Injection_Theory}"}



### Point Addition
Use Python Sage software

In [1]:
from Crypto.Util.number import inverse

In [2]:
# Algo as part given in Cryptohack
a=497
c=1768
n=9739

class Ep:
    def __init__(self,x,y):
        self.x=x
        self.y=y
    def __add__(self,other):
        if self.x==other.x and self.y==other.y:
            l=(3*self.x*self.x+a)*inverse(2*self.y,n)%n
        else:
            l=(self.y-other.y)*inverse(self.x-other.x,n)%n
        x3=(l*l-self.x-other.x)%n
        y3=(l*(self.x-x3)-self.y)%n
        return Ep(x3,y3)
    def __str__(self):
        return "{},{}".format(self.x,self.y)

p=Ep(493,5564)
q=Ep(1539,4742)
r=Ep(4403,5202)
s=p+p+q+r
print("crypto{"+str(s)+"}")

crypto{4215,2162}


In [None]:
# Code used with sage 
# mod_val = Zmod(9739)
# E = EllipticCurve(mod_val, [497,1768])
# P = E([493, 5564])
# Q = E([1539, 4742])
# R = E([4403,5202])
# print(E)
# print("P =", P)
# print("Q =", Q)
# print(" P + P + Q + R =", (P+P+Q+R).xy())

### Scalar Multiplication
Using Sage

In [None]:
# sage: E = EllipticCurve(GF(9739),[497,1768])
# sage: P = E(2339, 2213)
# sage: 7863*P
# (9467 : 2742 : 1)

### Curves and Logs
Using Sage Sha1 the output to get the flag

In [3]:
# sage: E = EllipticCurve(GF(9739),[497,1768])
# sage: QA = E(815,3190)
# sage: nB = 1829
# sage: S = QA*nB
# sage: S
# (7929 : 707 : 1) # Sha1 7929 = 80e5212754a824d3a4aed185ace4f9cac0f908bf

### Efficient Exchange

In [None]:
# Given by cryptohack
{'iv': 'cd9da9f1c60925922377ea952afc212c',
 'encrypted_flag': 'febcbe3a3414a730b125931dccf912d2239f3e969c4334d95ed0ec86f6449ad8'}

In [None]:
# E = EllipticCurve(GF(9739), [497, 1768])
# P = E(4726, 6287)

# print(str((6534*P)[0]))
# (1791,2181) # shared secret