## **Python & Cybersecurity**

- Introduction to Cybersecurity
- How Python is Used in Cybersecurity
- Resources and Tools
- Experimentation with Cryptohack 

**Disclaimer:** The information and tools presented in this cybersecurity class are intended for educational purposes and awareness only. Unauthorized use of these tools outside of controlled environments or without permission may violate legal and institutional policies. Please ensure you comply with your university's guidelines and obtain appropriate permissions before experimenting with any tools or techniques introduced in this material.

Note: Content compiled in collaboration with ChatGPT

### **1. Introduction to Cybersecurity**

   - **What is Cybersecurity?**
     - Cybersecurity involves protecting systems, networks, and data from digital attacks to ensure Confidentiality, Integrity, and Availability (CIA Triad).

   - **Key Areas of Cybersecurity**
     - **Network Security**: Protects network infrastructure from unauthorized access.
     - **Application Security**: Secures applications at every stage of development and deployment.
       - **OWASP (Open Web Application Security Project)**: A prominent organization that publishes guidelines for secure coding, including the [OWASP Top 10](https://owasp.org/www-project-top-ten/), which highlights the most critical security risks in web applications (e.g., Injection, Cross-Site Scripting, Insecure Deserialization).
     - **Information Security**: Protecting data privacy and integrity.
     - **Operational Security**: Managing and protecting sensitive data and systems in everyday operations.
     - **Incident Response & Forensics**: Detecting, analyzing, and responding to security breaches.
   
   - **Source:**  
     - [NIST Cybersecurity Framework](https://www.nist.gov/cyberframework)  
     - [OWASP Top 10](https://owasp.org/www-project-top-ten/)

### **2. How Python is Used in Cybersecurity**

   - **Why Python?**
     - Python’s readability, flexibility, and libraries make it suitable for cybersecurity, enabling rapid development for scripting, automation and testing.

   - **Popular Use Cases**
     - **Web Application Security**: Large library of tooling for vulnerability scans and simulate attacks on applications.
     - **Network Scanning**: Tools like `nmap` for analyzing network topology.
     - **Data Encryption**: `pyca/cryptography` for implementing encryption and decryption techniques.

   - **Source:**  
     - [python-nmap](https://pypi.org/project/python-nmap/)
     - [awesome-python-security](https://github.com/guardrailsio/awesome-python-security?tab=readme-ov-file)

### **3. Resources and Tools**

   - **Libraries & References to Explore**
     - [awesome-python-security](https://github.com/guardrailsio/awesome-python-security?tab=readme-ov-file)
     - Tools
       - **`Scapy`**: For network packet analysis, useful in vulnerability scanning.
         - [Scapy Documentation](https://scapy.readthedocs.io/)
       - **`Requests` and `BeautifulSoup`**: For open-source intelegence (OSINT) tasks and simulating OWASP web application security tests.
       - **`PyCryptodome`**: For cryptographic functions like encryption, useful in ensuring data integrity.
       - **`Impacket` and `Pwntools`**: For penetration testing and exploitation, aligning with the OWASP principles for security testing.
  
   - **Organizations to Follow**
     - [CMU Cybersecurity Programs](https://catalog.coloradomesa.edu/areas-study/cyber-security/)
     - [NIST Cybersecurity](https://www.nist.gov/cyberframework)  
     - [OWASP](https://owasp.org/)
     - [SANS](https://www.sans.org/)

### **4. Cryptohack**
Cryptohack is a free hacking playground to learn more about crypotography using Python.
1. [CryptoHack Registration](https://cryptohack.org/register/)
2. [Introduction to Cryptohack](https://cryptohack.org/courses/intro/course_details/)

Exercise: Encoding ASCII Challenge

In [None]:
import sys
# import this

ords = [99, 114, 121, 112, 116, 111, 123, 65, 83, 67, 73, 73, 95, 112, 114, 49, 110, 116, 52, 98, 108, 51, 125]

# print("Here is your flag:")
print("".join(chr(o) for o in ords))

Exercise: Encoding Hex Challenge

In [None]:
# Hex Challenge
print("Here is your flag:")
print(bytes.fromhex("63727970746f7b596f755f77696c6c5f62655f776f726b696e675f776974685f6865785f737472696e67735f615f6c6f747d"))


Exercise: base64 challenge

In [None]:
# base64 Challenge
import base64
result = bytes.fromhex("72bca9b68fc16ac7beeb8f849dca1d8a783e8acf9679bf9269f7bf")
print(base64.b64encode(result))

Exercise: XOR Properties

- Commutative: A ⊕ B = B ⊕ A
- Associative: A ⊕ (B ⊕ C) = (A ⊕ B) ⊕ C
- Identity: A ⊕ 0 = A
- Self-Inverse: A ⊕ A = 0

In [None]:

# XOR 3 Key Challenge
# KEY1 = a6c8b6733c9b22de7bc0253266a3867df55acde8635e19c73313
# KEY2 ^ KEY1 = 37dcb292030faa90d07eec17e3b1c6d8daf94c35d4c9191a5e1e
# KEY2 ^ KEY3 = c1545756687e7573db23aa1c3452a098b71a7fbf0fddddde5fc1
# FLAG ^ KEY1 ^ KEY3 ^ KEY2 = 04ee9855208a2cd59091d04767ae47963170d1660df7f56f5faf

key1 = bytes.fromhex("a6c8b6733c9b22de7bc0253266a3867df55acde8635e19c73313")
key2key1 = bytes.fromhex('37dcb292030faa90d07eec17e3b1c6d8daf94c35d4c9191a5e1e')
key3key2 = bytes.fromhex('c1545756687e7573db23aa1c3452a098b71a7fbf0fddddde5fc1')
flagkey = bytes.fromhex('04ee9855208a2cd59091d04767ae47963170d1660df7f56f5faf')

counter = 0
resultKey2 = []
resultKey3 = []
flag = []

#Find key2
while counter < 26:
    resultKey2.append(key1[counter] ^ key2key1[counter])
    print("----")
    print(key1[counter])
    print(key2key1[counter])
    print(chr(key1[counter] ^ key2key1[counter]))
    counter += 1

counter = 0
#Find key3
while counter < 26:
    resultKey3.append(key3key2[counter] ^ resultKey2[counter])
    print("----")
    print(resultKey2[counter])
    print(key3key2[counter])
    print(chr(key3key2[counter] ^ resultKey2[counter]))
    counter += 1
    
counter = 0
#Find flag
while counter < 26:
    flag.append(chr(key1[counter] ^ resultKey2[counter] ^ resultKey3[counter] ^ flagkey[counter]))
    print("----")
    print(flag[counter])
    counter += 1
    
print(flag)

In [None]:
# install pwntools
# Mac $ brew install https://raw.githubusercontent.com/Gallopsled/pwntools-binutils/master/macos/binutils-$ARCH.rb
# Ubuntu
 
import pwntools

