There's a secret passcode hidden in the robot's "history of cryptography" module. But it's encrypted! Here it is, hex-encoded: encrypted.txt. Can you find the hidden passcode?

Hint:
Like the title suggests, this is repeating-key XOR. You should try to find the length of the key - it's probably around 10 bytes long, maybe a little less or a little more.

Follow the following procedure
STEP 1: Key length identification
1.1 set the key length to test
1.2 shift the secret string by key_length
1.3 count the number of characters that are the same in the same position
      between the original secret and its shifterd version
1.4 take the highest frequency over different key length by repearing 1.1 - 1.3


STEP 2. Cryptoanalysis

In [None]:
import gdown
import os

# Specify the Google Drive file ID
file_id = '18Mid1WM_XvCEwXFFMwQnvBodURp3Gqyu'

# Specify the output file path
output_path = 'top_secret'

# Download the file
gdown.download(f'https://drive.google.com/uc?id={file_id}', output_path, quiet=False)

# Check if the file exists
if os.path.exists(output_path):
    # Read the content of the downloaded file
    with open(output_path, 'rb') as f:
        secret = f.read()
    print(len(secret))
else:
    print(f"File '{output_path}' not found.")

with open("top_secret", 'r') as file:
    secret_hex = file.read()



Downloading...
From: https://drive.google.com/uc?id=18Mid1WM_XvCEwXFFMwQnvBodURp3Gqyu
To: /content/top_secret
100%|██████████| 7.85k/7.85k [00:00<00:00, 3.64MB/s]

7849





this code belows converts a hexadecimal string into a list of decimal integers using the hex2dec function. It's a common operation when working with cryptographic or hexadecimal-encoded data.

In [None]:
def hex2dec(text): #because the description of the data said that this is hex-encoded, hence we turn it into list of decimal integer
    res = []
    for i in range(len(text)//2):
        #get the current pair of hex
        curr = text[i*2:(i+1)*2]
        #convert to int
        res.append(int(curr, 16))

    return res

secret = hex2dec(secret_hex)
print(secret)


[58, 239, 174, 16, 43, 132, 109, 20, 36, 160, 178, 17, 49, 194, 57, 16, 33, 179, 234, 1, 50, 208, 50, 70, 119, 229, 186, 1, 51, 132, 55, 17, 34, 227, 189, 0, 106, 131, 96, 64, 38, 180, 235, 80, 50, 214, 96, 70, 114, 229, 237, 84, 110, 210, 11, 127, 12, 238, 251, 83, 60, 194, 76, 20, 49, 227, 179, 66, 58, 219, 54, 64, 111, 160, 175, 10, 110, 194, 113, 7, 44, 240, 180, 17, 110, 134, 33, 49, 6, 211, 251, 21, 106, 145, 33, 5, 54, 226, 183, 11, 120, 138, 100, 17, 99, 233, 181, 66, 127, 138, 100, 85, 5, 229, 191, 7, 121, 131, 109, 85, 17, 229, 188, 11, 120, 150, 100, 7, 109, 160, 139, 23, 105, 142, 104, 22, 99, 227, 180, 15, 102, 135, 111, 1, 48, 160, 172, 7, 121, 135, 33, 7, 38, 241, 174, 7, 120, 150, 100, 17, 111, 160, 186, 12, 111, 194, 104, 27, 99, 244, 179, 7, 43, 132, 110, 25, 47, 239, 172, 11, 101, 133, 33, 12, 38, 225, 169, 66, 127, 149, 110, 85, 44, 240, 190, 12, 43, 149, 110, 7, 40, 243, 179, 13, 123, 145, 33, 2, 38, 242, 190, 66, 99, 135, 109, 17, 99, 244, 180, 66, 111, 139, 114, 

##### BRUTEFORCE
the brute force part in this code is the determination of the key length. The code iterates over different key lengths (between 5 and 15) and calculates the frequency of matching characters between the original message and its shifted version. The goal is to identify the key length that produces the highest frequency of matching characters, which indicates a potential repeating pattern in the XOR-encrypted message.


In [None]:
#STEP 1: Key length identification
#shift string -> it allows us the comparison
def shift(text, key_length):
    return text[key_length:] + text[:key_length]

#freq counter
#we compare the original sentence with its shifted version
#we count the amount of same charcters in the same position
def freq_counter(s1, s2):
    freq = sum([1 for (x, y) in zip(s1, s2) if x == y])
    return freq

#test over different lengths.
#the hints suggests us that the length is ~8. we look between [5, +15]
#bruteforce
for kl in range(5, 16):
    print(f"Lenght:\t{kl}\tFreq:\t{freq_counter(secret, shift(secret, kl))}")

#the highest value is with length = 8.


Lenght:	5	Freq:	3
Lenght:	6	Freq:	18
Lenght:	7	Freq:	2
Lenght:	8	Freq:	250
Lenght:	9	Freq:	5
Lenght:	10	Freq:	13
Lenght:	11	Freq:	4
Lenght:	12	Freq:	39
Lenght:	13	Freq:	4
Lenght:	14	Freq:	8
Lenght:	15	Freq:	6


In [None]:
#STEP 2: Cryptoanalysis
#split the corpus in 8-chars lengths
def splitter(text, key_length):
    res = []
    for i in range(key_length):
        res.append(text[i::key_length])

    return res

secret_ = splitter(secret, 8)
print(secret_)



[[58, 36, 33, 119, 34, 38, 114, 12, 49, 111, 44, 6, 54, 99, 5, 17, 109, 99, 48, 38, 111, 99, 47, 38, 44, 40, 38, 99, 54, 51, 99, 39, 99, 38, 42, 99, 99, 111, 42, 99, 40, 55, 99, 48, 99, 99, 55, 42, 42, 48, 39, 45, 99, 55, 97, 97, 39, 99, 49, 38, 49, 13, 99, 44, 43, 34, 46, 38, 55, 38, 55, 47, 99, 48, 55, 54, 38, 99, 34, 34, 51, 48, 47, 38, 99, 39, 48, 106, 55, 99, 38, 48, 99, 55, 58, 34, 52, 99, 45, 99, 16, 38, 47, 46, 45, 42, 38, 55, 48, 48, 38, 43, 43, 99, 58, 38, 53, 10, 45, 42, 34, 43, 39, 54, 99, 111, 46, 52, 99, 43, 44, 37, 16, 45, 99, 49, 40, 99, 37, 99, 55, 48, 55, 47, 44, 110, 54, 99, 55, 43, 37, 16, 55, 99, 33, 55, 44, 99, 44, 55, 34, 55, 34, 38, 52, 55, 44, 55, 16, 44, 49, 43, 45, 99, 43, 58, 1, 55, 39, 99, 44, 46, 99, 45, 42, 34, 55, 44, 99, 38, 99, 58, 34, 55, 50, 49, 46, 99, 55, 49, 55, 52, 45, 45, 38, 99, 99, 34, 32, 55, 38, 51, 7, 49, 55, 42, 14, 10, 23, 39, 39, 34, 99, 10, 34, 38, 42, 33, 32, 36, 44, 38, 99, 99, 42, 49, 45, 37, 55, 51, 34, 7, 38, 44, 48, 42, 55, 99, 34

In [None]:
#we need to define a method that show us the k-the most frequent character in a given string
from collections import Counter
def k_char(text, k):
    #use the counter
    freq = Counter(text)


    #order
    ordered = sorted(freq.items(), key=lambda x: x[1], reverse=True)

    return ordered[k][0]

## we can now see the top N freuqent words
#print(k_char(secret))



In [None]:
#we now work on the Cryptoanalysis, based on each column of the matrix M[secret//8 X 8]
#we can first assume that the most common character in each column is the space ' '.
key_sec = [k_char(secret_[0], 0), k_char(secret_[1], 0), k_char(secret_[2], 0), k_char(secret_[3], 0),
    k_char(secret_[4], 0), k_char(secret_[5], 0), k_char(secret_[6], 0), k_char(secret_[7], 0)]

print(key_sec)



Counter({99: 82, 38: 48, 55: 38, 34: 29, 45: 27, 42: 26, 44: 22, 48: 21, 49: 17, 43: 15, 47: 14, 39: 13, 54: 11, 58: 10, 46: 9, 52: 9, 32: 9, 37: 8, 36: 7, 33: 7, 51: 7, 111: 5, 16: 5, 109: 4, 40: 4, 10: 4, 1: 4, 13: 3, 53: 3, 50: 3, 14: 3, 119: 2, 6: 2, 97: 2, 7: 2, 2: 2, 122: 2, 114: 1, 12: 1, 5: 1, 17: 1, 106: 1, 110: 1, 23: 1, 73: 1, 117: 1, 59: 1, 30: 1, 121: 1})
Counter({160: 75, 229: 47, 233: 35, 244: 33, 239: 25, 243: 24, 225: 23, 242: 23, 227: 21, 238: 21, 232: 21, 230: 13, 228: 12, 237: 12, 236: 11, 245: 11, 240: 9, 211: 7, 226: 7, 247: 7, 231: 7, 249: 5, 235: 4, 174: 3, 205: 3, 212: 3, 246: 2, 193: 2, 138: 2, 172: 2, 197: 2, 194: 2, 201: 2, 206: 2, 173: 2, 179: 1, 180: 1, 241: 1, 200: 1, 215: 1, 213: 1, 185: 1, 195: 1, 204: 1, 183: 1, 248: 1})
Counter({251: 69, 190: 50, 175: 36, 181: 34, 186: 31, 178: 29, 180: 28, 168: 20, 169: 18, 179: 17, 184: 17, 191: 15, 182: 11, 183: 10, 188: 10, 162: 10, 174: 9, 172: 9, 189: 8, 136: 7, 171: 7, 245: 6, 185: 5, 176: 4, 150: 3, 154: 3, 17

In [None]:
#xor the key
real_key = [k ^ ord(' ') for k in key_sec]
print(real_key)


[67, 128, 219, 98, 11, 226, 1, 117]


This code below appears to be part of a process to decrypt or reveal the original message by performing a bitwise XOR operation between each element of the secret list and corresponding elements of a real_key list.

In [None]:
#decode the secret
real_message = ''
for i, c in enumerate(secret):
    key_pos = i % 8
    real_message+= chr(c ^ real_key[key_pos])

print(real_message)

#your flag is: 8eb31c92334eac8f6dacfbaaa5e40294a31e66e0


your flag is: 8eb31c92334eac8f6dacfbaaa5e40294a31e66e0

On 17 March 1975, the proposed DES was published in the Federal Register. Public comments were requested, and in the following year two open workshops were held to discuss the proposed standard. There was some criticism from various parties, including from public-key cryptography pioneers Martin Hellman and Whitfield Diffie, citing a shortened key length and the mysterious "S-boxes" as evidence of improper interference from the NSA. The suspicion was that the algorithm had been covertly weakened by the intelligence agency so that they - but no-one else - could easily read encrypted messages. Alan Konheim (one of the designers of DES) commented, "We sent the S-boxes off to Washington. They came back and were all different." The United States Senate Select Committee on Intelligence reviewed the NSA's actions to determine whether there had been any improper involvement. In the unclassified summary of their findings, published in 1978