# ARC4 Cipher Experiments

## Decoding Messages

### Step 1: Initialize state

In [97]:
def arc4_init(key: list[int]) -> list[int]:
    # State initialization.
    state = [0] * 256
    for i in range(256):
        state[i] = i
    
    # Key-Scheduling Algorithm (KSA).
    j = 0
    for i in range(256):
        j = (j + state[i] + KEY[i % len(KEY)]) % 256

        # Swap state[i] and state[j].
        tmp = state[i]
        state[i] = state[j]
        state[j] = tmp

    return state


KEY = [0x00, 0x03, 0x3C]  # 0x00033C Big-endian
state = arc4_init(KEY)
print("\n".join([hex(s)[2:].upper() for s in state]))

B4
4
2B
E5
49
A
90
9A
E4
17
F4
10
3A
36
13
77
11
C4
BC
38
4F
6D
98
6
6E
3D
2C
AE
CD
26
40
A2
C2
DA
67
68
5D
3E
2
73
3
AA
94
69
6A
97
6F
33
63
5B
8A
58
D9
61
F5
46
96
55
7D
53
5F
AB
7
9C
A7
72
31
A9
C6
3F
F9
91
F2
F6
7C
C7
B3
1D
20
88
A0
BA
C
85
E1
CF
CB
51
C0
2E
EF
80
76
B2
D6
71
24
AD
6B
DB
FF
FE
ED
84
4E
8C
BB
D3
A5
2F
BE
C8
E
8F
D1
A6
86
E3
62
B0
87
EC
B9
78
81
E0
4D
5A
7A
79
14
29
56
E8
4A
8E
18
C5
CA
B7
25
DE
99
C3
2A
65
30
1A
EA
FB
A1
89
35
A4
9
A3
C1
D8
2D
B8
60
47
39
BD
1F
5
5E
43
B1
DD
E9
1C
AF
9B
FA
1
F7
8
75
B6
82
CE
42
E2
CC
9E
EB
27
22
DF
BF
FC
D
D0
95
23
D2
A8
7E
74
4C
D7
12
7F
FD
83
1E
28
64
54
3C
21
DC
F3
93
59
8B
7B
0
48
E7
6C
D5
C9
70
9F
AC
41
B
F0
19
B5
8D
16
D4
F1
92
9D
66
44
4B
15
45
F8
F
57
34
32
50
52
EE
3B
5C
37
E6
1B


### Step 2: Generate pad and XOR with ciphertext

In [98]:
def arc4_decode(state: list[int], encoded_msg: bytes):
    # Generate bytestream to be XOR'ed with the cipher text.
    i = 0
    j = 0

    decoded_msg = [0] * len(encoded_msg)

    for k in range(len(encoded_msg)):
        i = (i + 1) % 256
        j = (j + state[i]) % 256

        # Swap state[i] and state[j].
        tmp = state[i]
        state[i] = state[j]
        state[j] = tmp

        pad = state[(state[i] + state[j]) % 256]
        print(hex(pad))
        decoded_msg[k] = pad ^ encoded_msg[k]

    print("final state: ", [hex(s) for s in state])
    return bytes(decoded_msg)

Decoding example:

In [99]:
KEY = [0x1E, 0x46, 0x00]  # 0x1E4600 Big-endian
state = arc4_init(KEY)
encoded_msg = [
    0xA7,
    0xFD,
    0x08,
    0x01,
    0x84,
    0x45,
    0x68,
    0x85,
    0x82,
    0x5C,
    0x85,
    0x97,
    0x43,
    0x4D,
    0xE7,
    0x07,
    0x25,
    0x0F,
    0x9A,
    0xEC,
    0xC2,
    0x6A,
    0x4E,
    0xA7,
    0x49,
    0xE0,
    0xEB,
    0x71,
    0xBC,
    0xAC,
    0xC7,
    0xD7,
    0x57,
    0xE9,
    0xE2,
    0xB1,
    0x1B,
    0x09,
    0x52,
    0x33,
    0x92,
    0xC1,
    0xB7,
    0xE8,
    0x4C,
    0xA1,
    0xD8,
    0x57,
    0x2F,
    0xFA,
    0xB8,
    0x72,
    0xB9,
    0x3A,
    0xFC,
    0x01,
    0xC3,
    0xE5,
    0x18,
    0x32,
    0xDF,
    0xBB,
    0x06,
    0x32,
    0x2E,
    0x4A,
    0x01,
    0x63,
    0x10,
    0x10,
    0x16,
    0xB5,
    0xD8,
]
decoded_msg = arc4_decode(state, encoded_msg)
print(decoded_msg)

0xee
0x89
0x28
0x76
0xe5
0x36
0x48
0xe4
0xa2
0x3e
0xf7
0xfe
0x24
0x25
0x93
0x27
0x46
0x60
0xf6
0x88
0xe2
0xe
0x2f
0xde
0x69
0x89
0x85
0x51
0xfd
0xdc
0xb5
0xbe
0x3b
0xc5
0xc2
0xd0
0x75
0x6d
0x72
0x47
0xfa
0xa4
0x97
0x8b
0x20
0xce
0xbb
0x3c
0x5c
0xda
0xcf
0x17
0xcb
0x5f
0xdc
0x72
0xb7
0x97
0x71
0x59
0xb6
0xd5
0x61
0x12
0x5a
0x22
0x68
0x11
0x64
0x75
0x73
0xdb
0xf6
final state:  ['0x1e', '0xd1', '0x5b', '0x77', '0x6c', '0xbb', '0xae', '0x7b', '0xcf', '0x30', '0x6e', '0x10', '0x4d', '0xf4', '0x26', '0x8b', '0x97', '0x8d', '0x4f', '0x3', '0xbf', '0xcc', '0x4e', '0x1f', '0xb0', '0x82', '0xac', '0x63', '0x53', '0x64', '0x2c', '0xf2', '0xb5', '0xa7', '0x5a', '0xd7', '0x85', '0xa0', '0xf3', '0xd2', '0x72', '0x0', '0x28', '0xee', '0x8a', '0x2b', '0x57', '0x60', '0x27', '0x61', '0xd9', '0x5c', '0x71', '0x5e', '0x22', '0xcd', '0xa2', '0xe9', '0xd', '0xf8', '0xa', '0x7d', '0xff', '0x87', '0x7a', '0xfb', '0x41', '0x65', '0xeb', '0x1a', '0xba', '0x37', '0xd3', '0xa4', '0xbc', '0x69', '0xb1', '0xec', '

In [100]:
print("\n".join([hex(b)[2:].upper() for b in decoded_msg]))

49
74
20
77
61
73
20
61
20
62
72
69
67
68
74
20
63
6F
6C
64
20
64
61
79
20
69
6E
20
41
70
72
69
6C
2C
20
61
6E
64
20
74
68
65
20
63
6C
6F
63
6B
73
20
77
65
72
65
20
73
74
72
69
6B
69
6E
67
20
74
68
69
72
74
65
65
6E
2E


In [101]:
print(hex(len(decoded_msg)))

0x49
