<span style="color: blue;">

# **TASK-1A:**

**Accept input from a user, and with the input as an argument, create a function that:**
- Creates a random 32-byte salt value (remember to use a cryptographically secure random number generator).
- Hash the input from the user with the salted value with SHA-256.
- Store the value and the salt in a file.
- Print both values.
</span>

In [8]:
import os
import hashlib
import base64

def secure_hash_and_store(user_input):
    # Create a 32-byte salt using a cryptographically secure random generator
    # os.urandom generates a random sequence of bytes suitable for cryptographic use
    salt = os.urandom(32)

    # Combine the salt with the user input (encoded as bytes) and hash it using SHA-256
    # hashlib.sha256() generates a SHA-256 hash object which is a cryptographic hash function
    hash_object_with_salt = hashlib.sha256(salt + user_input.encode('utf-8'))
    hash_object_without_salt = hashlib.sha256(user_input.encode('utf-8'))
    
    # Extract the raw binary hash value from the hash object
    hashed_value = hash_object_with_salt.digest()
    hashed_value_without_salt = hash_object_without_salt.digest()

    # Encode the salt into a Base64 string for safe and human-readable storage
    # Base64 encoding ensures the binary data is represented in a printable format
    salt_encoded = base64.b64encode(salt).decode('utf-8')

    # Encode the hashed value into a Base64 string for safe and human-readable storage
    hash_encoded = base64.b64encode(hashed_value).decode('utf-8')
    hash_encoded_without_salt = base64.b64encode(hashed_value_without_salt).decode('utf-8')

    # Open a file in write mode ("w") and store the salt and hashed value
    # Each line contains one piece of information: the salt and the hash
    with open("hashed_values.txt", "w") as file:
        file.write(f"Salt: {salt_encoded}\n")  # Write the salt to the file
        file.write(f"Hash: {hash_encoded}\n")  # Write the hash to the file

    print(f"Salt in clear text: {salt.hex()}")
    # Print the encoded salt and hash to the console for user verification
    print(f"Salt encoded: {salt_encoded}")
    print(f"SHA-256 Hash when salted: {hash_encoded}")
    print(f"SHA-256 Hash without salt: {hash_encoded_without_salt}")

# Main block to execute the function if the script is run directly
if __name__ == "__main__":
    # Prompt the user to enter a string to hash
    user_input = input("Enter a string to hash: ")
    
    # Call the function to hash the input and store the values
    secure_hash_and_store(user_input)

Enter a string to hash:  viswanath chirravuri


Salt in clear text: a7fad07c593556ef8e27350c738cf0f62f4b63aea18a48a7bc9c03cce510638d
Salt encoded: p/rQfFk1Vu+OJzUMc4zw9i9LY66hikinvJwDzOUQY40=
SHA-256 Hash when salted: 33bDT+I05iE+slutSxx3bdjOcv9iq9h8NOanEP5qWhE=
SHA-256 Hash without salt: 9OhgCNf6DJGZK8HfdqyX+YxpyR7qaFh+Mhb6PmuX63w=


<span style="color: blue;">
    
# **TASK-1B:**

Discuss why a salted hash is important when storing sensitive data such as passwords.  Explore a python library for Zero Knowledge Proofs and propose how this might improve authentication.  (Cite sources)
</span>

## Why Use a Salted Hash for Storing Sensitive Data

When storing sensitive data like passwords, it is crucial to implement proper security measures to protect user information. One such measure is the use of a **salted hash**. Below, we discuss the importance of this practice:

### 1. **Prevents Rainbow Table Attacks**
A rainbow table is a precomputed database of hashes for commonly used passwords. Attackers use these tables to reverse-engineer hashed passwords. By adding a unique, random salt to each password before hashing, even if two users have the same password, their hashes will differ. This renders rainbow tables ineffective.
- Reference: http://project-rainbowcrack.com/table.htm

### 2. **Mitigates Hash Collision Risks**
If the same password generates the same hash (without a salt), an attacker only needs to compromise one user to gain insights into others with the same password. Salting ensures that identical passwords result in unique hashes, significantly reducing this risk.

### 3. **Defends Against Dictionary Attacks**
Attackers often use dictionary attacks to guess passwords by hashing words from a dictionary and comparing them to stored hashes. A salt increases the complexity of the hash and makes this process computationally expensive and time-consuming.

### 4. **Adds Randomness**
Salts introduce randomness into the hashing process. Even if an attacker knows the hash function used (e.g., SHA-256), they cannot predict or precompute hashes due to the unknown and random salt.

### 5. **Secures Data Even in Case of Database Breach**
If a database is breached and contains unsalted hashes, attackers can exploit it easily by applying precomputed methods. With salted hashes, each entry requires a separate brute-force attempt, significantly slowing down the attack.

### Example:
- Without salt: `SHA 256 hash('viswanath chirravuri')` → `9OhgCNf6DJGZK8HfdqyX+YxpyR7qaFh+Mhb6PmuX63w=`
- With salt: `hash(salt + 'viswanath chirravuri')` → (a completely different hash for each unique salt)

<span style="color: blue;">

# TASK-1C:

Explore and describe a python library for Zero Knowledge Proofs and propose how this might improve authentication.  (Cite sources)

</span>

## Exploring a Python Library for Zero Knowledge Proofs (ZKP)

### What is Zero Knowledge Proof (ZKP)?
Zero Knowledge Proofs (ZKP) allow one party (the prover) to prove to another party (the verifier) that a certain statement is true without revealing any additional information beyond the validity of the statement. ZKP is widely used in cryptography to enhance privacy and security in systems.

### Python Library for ZKP: `pyzpk` [Reference: https://github.com/OpenMined/PyZPK]
`pyzpk` is a Python library that provides tools for constructing and verifying Zero Knowledge Proofs. It is based on zk-SNARKs (Zero-Knowledge Succinct Non-Interactive Argument of Knowledge), a popular ZKP technique.

#### Features of `pyzpk`:
1. **zk-SNARK Implementation**:
   - Supports generating zk-SNARK proofs efficiently.
   - Provides bindings to underlying C++ libraries like `libsnark`.

2. **Circuit Design**:
   - Allows defining arithmetic circuits for zk-SNARKs, which represent the computations for the proof.

3. **Verifier and Prover Tools**:
   - Includes functions for generating proofs (prover) and verifying proofs (verifier).

4. **Customizability**:
   - Enables users to define specific constraints and proofs tailored to their use case.

### Example Usage of `pyzpk`:
```python
from pyzpk import Prover, Verifier, Circuit

# Define a simple arithmetic circuit
circuit = Circuit()
circuit.add_gate("add", [1, 2])  # Adds inputs 1 and 2

# Initialize the prover and verifier
prover = Prover(circuit)
verifier = Verifier(circuit)

# Prover generates a proof for a computation
proof = prover.generate_proof([3, 5])  # Inputs to the circuit

# Verifier checks the proof
is_valid = verifier.verify_proof(proof)
print("Proof is valid:", is_valid)


## How ZKP Can Improve Authentication

1. **Enhanced Privacy**:  
   Traditional authentication systems often rely on sharing sensitive data (e.g., passwords). With ZKP, a user can prove their identity without revealing the actual password or sensitive credentials.

2. **Resistance to Credential Leaks**:  
   Since no sensitive data is transmitted or stored, ZKP-based systems are inherently resistant to data breaches and credential leaks.

3. **Secure Multi-Factor Authentication**:  
   ZKP can be used to securely verify multiple factors (e.g., biometric data) without exposing the underlying information.

4. **Decentralized Authentication**:  
   ZKP can enable decentralized authentication systems, where no central authority needs to hold user credentials. This is particularly useful in blockchain and distributed ledger technologies.


## References

1. https://codethechange.stanford.edu/guides/guide_zk.html
2. https://en.wikipedia.org/wiki/Zero-knowledge_proof
3. https://github.com/OpenMined/PyZPK

<span style="color: blue;">
    
# Task-2A:

Name one AES encryption mode that requires an Initial Vector (IV) and explain why it is considered more secure than other modes.
</span>

## AES Encryption Mode with IV: Cipher Block Chaining (CBC)

### Overview
One commonly used AES encryption mode that requires an **Initial Vector (IV)** is **Cipher Block Chaining (CBC)**. In CBC mode, each plaintext block is XORed with the previous ciphertext block before being encrypted. The process requires an IV for the first block since there is no previous ciphertext block to use.

### Why CBC is Considered Secure
1. **Randomization with IV**:
   - The IV ensures that even if the same plaintext is encrypted multiple times, the resulting ciphertext will be different. This adds randomness and prevents patterns from emerging in the encrypted data.

2. **Resistance to Replay Attacks**:
   - By changing the IV for each encryption session, CBC mode mitigates replay attacks, ensuring the same plaintext cannot be reused in the same encryption context.

3. **Dependency Between Blocks**:
   - In CBC, each block of ciphertext depends on all preceding blocks. This makes it harder for an attacker to manipulate individual blocks without affecting the rest of the data.

### Key Considerations for Security
- **IV Generation**:
  The IV must be unique and random for every encryption session. A reused or predictable IV compromises the security of CBC mode.

- **Padding Requirements**:
  CBC requires the plaintext length to be a multiple of the block size, often necessitating padding schemes such as PKCS#7.

### Conclusion
The use of an IV in CBC mode significantly improves security by introducing randomness, ensuring unique ciphertext for identical plaintexts, and reducing vulnerability to certain types of cryptanalysis. However, proper IV management is critical to maintain the integrity of the encryption process.


### Reference
**NIST Special Publication 800-38A**: Recommendation for Block Cipher Modes of Operation. Describes the CBC mode and its use cases.  
   [NIST SP 800-38A](https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38a.pdf)

<span style="color: blue;">
    
# Task-2B:

Name one AES encryption mode that does not require an IV. Answer in a markdown cell.  Use proper citations.
</span>

## AES Encryption Mode Without IV: Electronic Codebook (ECB)

### Overview
One AES encryption mode that does not require an Initial Vector (IV) is **Electronic Codebook (ECB)**. In ECB mode, each block of plaintext is encrypted independently using the same key, resulting in a straightforward and deterministic encryption process.

### Key Characteristics
1. **No IV Requirement**:  
   - ECB mode does not utilize an IV, as each plaintext block is processed individually without reference to other blocks.

2. **Simplicity**:  
   - Its simplicity makes ECB mode faster and easier to implement compared to modes that require IVs, such as CBC.

### Security Concerns
Although ECB does not require an IV, it is generally considered **less secure** due to its deterministic nature:
- **Lack of Randomization**: Identical plaintext blocks produce identical ciphertext blocks, making it vulnerable to pattern recognition.
- **Not Suitable for Sensitive Data**: ECB's deterministic encryption makes it inappropriate for encrypting data where privacy and confidentiality are critical.

### Reference
**NIST Special Publication 800-38A**: Recommendation for Block Cipher Modes of Operation. Details the ECB mode and its limitations.  
   [NIST SP 800-38A](https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38a.pdf)

<span style="color: blue;">

# TASK-3A:

Using Scapy, write a Python script that forges a custom TCP SYN packet with the following specifications:
- Source IP: 192.168.1.100
- Destination IP: 10.0.0.1
- Source Port: 4444
- Destination Port: 80
- Additional Flags: Urgent
- Include a custom RAW payload: "Hello, this is a forged packet!"

The script should:
- Display the forged packet details before sending.
- Send the packet to the destination.
- Use Scapy's sr1() method to capture and print the response if one is received.
</span>

In [3]:
from scapy.all import IP, TCP, Raw, sr1

def forge_packet():
    # Define the source IP address (make sure this is allowed and authorized)
    source_ip = "192.168.1.100"  # Replace with the correct IP address for authorized testing

    # Define the destination IP address (ensure proper permissions)
    destination_ip = "10.0.0.1"  # Target IP address for testing

    # Specify the source port (use an unprivileged port number if testing)
    source_port = 4444  # Arbitrary source port for the packet

    # Specify the destination port (ensure compliance with target's allowed services)
    destination_port = 80  # HTTP port for testing

    # Define the raw payload to be included in the packet (ensure no sensitive information is included)
    raw_payload = "Hello, this is a forged packet!"  # Custom payload for testing purposes

    # Create the IP layer with the source and destination IP addresses
    ip_layer = IP(src=source_ip, dst=destination_ip)

    # Create the TCP layer with source and destination ports, and set the URGENT flag as per the HW assignment requirement
    tcp_layer = TCP(sport=source_port, dport=destination_port, flags="U")

    # Add a raw data layer containing the custom payload
    raw_layer = Raw(load=raw_payload)

    # Combine the IP, TCP, and raw layers to form the complete packet
    packet = ip_layer / tcp_layer / raw_layer

    # Display the details of the forged packet to verify its structure
    print("Forged Packet Details:")
    packet.show()  # Scapy's show() method displays packet details

    # Send the forged packet and wait for a response (use timeout to avoid indefinite waiting)
    print("\nSending the packet...")
    response = sr1(packet, timeout=2, verbose=0)  # sr1 sends and waits for one response

    # Check if a response was received and display it
    if response:
        print("\nResponse Received:")
        response.show()  # Display the response details
    else:
        print("\nNo response received.")  # Notify if no response is received

# Run the function only when the script is executed directly
if __name__ == "__main__":
    # Ensure the script is run with appropriate permissions (root/administrator)
    try:
        forge_packet()  # Call the main function to forge and send the packet
    except PermissionError:
        print("Error: Please run the script with elevated permissions.")  # Handle insufficient permissions
    except Exception as e:
        print(f"An error occurred: {e}")  # Handle any unexpected errors securely

Forged Packet Details:
###[ IP ]### 
  version   = 4
  ihl       = None
  tos       = 0x0
  len       = None
  id        = 1
  flags     = 
  frag      = 0
  ttl       = 64
  proto     = tcp
  chksum    = None
  src       = 192.168.1.100
  dst       = 10.0.0.1
  \options   \
###[ TCP ]### 
     sport     = 4444
     dport     = http
     seq       = 0
     ack       = 0
     dataofs   = None
     reserved  = 0
     flags     = U
     window    = 8192
     chksum    = None
     urgptr    = 0
     options   = []
###[ Raw ]### 
        load      = 'Hello, this is a forged packet!'


Sending the packet...

No response received.


<span style="color: blue;">

# TASK-3B:
Explain how this kind of packet could be used in security testing.
</span>

Crafting and sending custom packets with Scapy, as demonstrated in the above code, is a powerful technique for conducting various types of security tests. Below are some common use cases:

### 1. **Penetration Testing**
   - **Purpose**: Simulate potential attacks on a target system to identify vulnerabilities.
   - **Example**: Sending custom TCP SYN packets to test how the target handles malformed or unexpected connection requests, potentially revealing misconfigurations or weaknesses in firewalls and intrusion detection systems.

### 2. **Firewall and IDS/IPS Testing**
   - **Purpose**: Assess the effectiveness of security appliances like firewalls and intrusion detection/prevention systems (IDS/IPS).
   - **Example**: Forge packets with unexpected flags (e.g., URGENT) or payloads to see if the security device correctly blocks or logs these anomalies.

### 3. **Protocol Testing**
   - **Purpose**: Evaluate the robustness and compliance of network services with protocol standards.
   - **Example**: Send packets with non-standard or corrupted headers to identify potential buffer overflows or crashes in the service.

### 4. **Network Forensics**
   - **Purpose**: Simulate attacks or traffic patterns to study how the network behaves under certain conditions.
   - **Example**: Generate traffic to observe how network monitoring tools log and analyze the activity.

### 5. **Stress Testing**
   - **Purpose**: Determine how well a target system performs under heavy or unusual network traffic.
   - **Example**: Send a high volume of crafted packets to evaluate the system’s resilience and capacity to handle load.

### 6. **Testing Application-Level Security**
   - **Purpose**: Test how applications handle malicious or unexpected input in network payloads.
   - **Example**: Include custom payloads in TCP packets to verify if the application appropriately sanitizes and validates input.

### Conclusion
The ability to craft and send custom packets using Scapy is invaluable for security professionals. When used responsibly, it provides deep insights into the security posture of systems and helps identify areas for improvement.


<span style="color: blue;">

# TASK-3C:
What are the ethical considerations of forging and sending custom packets?
</span>

Forging and sending custom packets is a powerful capability, but it must be used responsibly and ethically to avoid legal, technical, and reputational issues. Below are the key ethical considerations:

## 1. **Authorization**
   - Always obtain explicit permission from the system or network owner before conducting any tests.
   - Unauthorized activity can be classified as illegal hacking and may lead to severe legal consequences.

## 2. **Legal Compliance**
   - Ensure compliance with all relevant laws and regulations in your jurisdiction, such as the **Computer Fraud and Abuse Act (CFAA)** in the U.S. or the **General Data Protection Regulation (GDPR)** in the EU.
   - Forging packets without authorization can violate cybersecurity laws, even if done with good intentions.

## 3. **Define the Scope**
   - Work within a clearly defined and agreed-upon scope for testing.
   - Avoid testing outside the target system or network to prevent unintended disruptions to unrelated systems.

## 4. **Minimize Impact**
   - Design tests to avoid causing harm, such as service disruptions, data corruption, or denial of service.
   - Use test environments, simulations, or isolated networks whenever possible to ensure safety.

## 5. **Transparency**
   - Inform stakeholders, including network administrators and security teams, about the purpose and methods of the test.
   - Provide clear documentation and reports on the findings.

## 6. **Confidentiality**
   - Protect any sensitive information encountered during testing.
   - Avoid exposing vulnerabilities publicly without first coordinating with the affected parties.

## 7. **Intent and Purpose**
   - Use custom packet forging strictly for legitimate purposes, such as security research, penetration testing, or educational learning.
   - Avoid using such capabilities for malicious purposes, such as stealing data or causing damage.

## 8. **Avoid Collateral Damage**
   - Ensure that tests do not unintentionally affect third-party systems or networks.
   - Use tools like Scapy responsibly to control the scope and impact of your activities.

## Conclusion
Forging and sending custom packets is a double-edged sword. While it is a valuable tool for security testing and research, it carries significant ethical responsibilities. Following these guidelines ensures that your actions are both effective and aligned with ethical standards.

<span style="color: blue;">

# TASK-4:
Using Beautiful Soup – scrape text from https://quotes.toscrape.com/.  Print the text to the screen.  This is good practice for building text datasets but be sure to check the web site's acceptable use policy before scraping a site.
</span>

In [4]:
!pip install requests beautifulsoup4



## Check the web site's acceptable use policy before scraping a site

I have reviewed the [Terms of Service](https://quotes.toscrape.com/) and verified that this website is designed explicitly for educational purposes and allows scraping for learning. The site seems like a sandbox environment for practicing web scraping.

## Python code

In [5]:
import requests
from bs4 import BeautifulSoup

# URL of the website to scrape
url = "https://quotes.toscrape.com/"

# Send an HTTP GET request to the website
response = requests.get(url)

# Check if the request was successful
if response.status_code == 200:
    # Parse the HTML content using BeautifulSoup
    soup = BeautifulSoup(response.content, "html.parser")

    # Find all quote elements
    quotes = soup.find_all("span", class_="text")

    # Print each quote to the screen
    print("Quotes from https://quotes.toscrape.com/:")
    for quote in quotes:
        print(quote.get_text())
else:
    print(f"Failed to fetch the website. Status code: {response.status_code}")

Quotes from https://quotes.toscrape.com/:
“The world as we have created it is a process of our thinking. It cannot be changed without changing our thinking.”
“It is our choices, Harry, that show what we truly are, far more than our abilities.”
“There are only two ways to live your life. One is as though nothing is a miracle. The other is as though everything is a miracle.”
“The person, be it gentleman or lady, who has not pleasure in a good novel, must be intolerably stupid.”
“Imperfection is beauty, madness is genius and it's better to be absolutely ridiculous than absolutely boring.”
“Try not to become a man of success. Rather become a man of value.”
“It is better to be hated for what you are than to be loved for what you are not.”
“I have not failed. I've just found 10,000 ways that won't work.”
“A woman is like a tea bag; you never know how strong it is until it's in hot water.”
“A day without sunshine is like, you know, night.”
