# Python Exercises on CyberSecurity

# Base64 Encoding

In [None]:
import base64

# Original string
original_string = "Hello, World!"

# Encoding the string to bytes, then to Base64
encoded_bytes = base64.b64encode(original_string.encode("utf-8"))
encoded_string = encoded_bytes.decode("utf-8")

print(f"Encoded string: {encoded_string}")

In [None]:
# Decoding the Base64 encoded string back to the original string
decoded_bytes = base64.b64decode(encoded_string.encode("utf-8"))
decoded_string = decoded_bytes.decode("utf-8")

print(f"Decoded string: {decoded_string}")


In [None]:
import base64

image_path = "banana1.jpg"

# Read the image file in binary mode
with open(image_path, "rb") as image_file:
    # Encode the image to Base64
    encoded_string = base64.b64encode(image_file.read()).decode("utf-8")

# Print the Base64 string (this can be long for large images)
print(encoded_string)

In [None]:
# Decode the Base64 string to binary data
decoded_image = base64.b64decode(encoded_string)

# Save the decoded image to a file
output_path = "banana2.jpg"
with open(output_path, "wb") as image_file:
    image_file.write(decoded_image)

print("Image saved successfully!")

# Symmetric Encryption Example

In [None]:
from cryptography.fernet import Fernet

# Generate a key
key = Fernet.generate_key()
cipher_suite = Fernet(key)

print(key)


# Encrypt data
text = b"Hello, World!"
cipher_text = cipher_suite.encrypt(text)
print(f"Encrypted: {cipher_text}")

# Decrypt data
plain_text = cipher_suite.decrypt(cipher_text)
print(f"Decrypted: {plain_text}")


# Asymmetric Encryption Example

In [None]:
!pip install cryptography

In [None]:
from cryptography.hazmat.primitives.asymmetric import rsa
from cryptography.hazmat.primitives import serialization, hashes
from cryptography.hazmat.primitives.asymmetric import padding

# Generate RSA keys
private_key = rsa.generate_private_key(
    public_exponent=65537,
    key_size=2048,
)

public_key = private_key.public_key()

# Serialize keys to PEM format (optional, for storage or transmission)
private_pem = private_key.private_bytes(
    encoding=serialization.Encoding.PEM,
    format=serialization.PrivateFormat.TraditionalOpenSSL,
    encryption_algorithm=serialization.NoEncryption()
)

public_pem = public_key.public_bytes(
    encoding=serialization.Encoding.PEM,
    format=serialization.PublicFormat.SubjectPublicKeyInfo
)

# Print PEM keys (optional)
print(private_pem.decode('utf-8'))
print(public_pem.decode('utf-8'))

# Encrypt data using the public key
message = b"Hello, World!"
ciphertext = public_key.encrypt(
    message,
    padding.OAEP(
        mgf=padding.MGF1(algorithm=hashes.SHA256()),
        algorithm=hashes.SHA256(),
        label=None
    )
)
print(f"Encrypted: {ciphertext}")

# Decrypt data using the private key
plaintext = private_key.decrypt(
    ciphertext,
    padding.OAEP(
        mgf=padding.MGF1(algorithm=hashes.SHA256()),
        algorithm=hashes.SHA256(),
        label=None
    )
)
print(f"Decrypted: {plaintext}")


# Hashing

In [None]:
!pip install hashlib

In [None]:
import hashlib

# The message to be hashed
message = "Hello, World!"

# Create a SHA-256 hash object
sha256 = hashlib.sha256()

# Update the hash object with the bytes of the message
sha256.update(message.encode('utf-8'))

# Retrieve the hexadecimal representation of the hash
hash_value = sha256.hexdigest()

print(f"Message: {message}")
print(f"SHA-256 Hash: {hash_value}")


## Exercises

Here are some hashes of some common passwords:

1. 5e884898da28047151d0e56f8dc6292773603d0d6aabbdd62a11ef721d1542d8
2. ef92b778bafe771e89245b89ecbc08a44a4e166c06659911881f383d4473e94f
3. ef797c8118f02dfb649607dd5d3f8c7623048c9c063d532cc95c5ed7a898a64f
4. 03ac674216f3e15c761ee1a5e255f067953623c8b388b4459e13f978d7c846f4
5. 5994471abb01112afcc18159f6cc74b4f511b99806da59b3caf5a9c173cacfc5

Guess their original password!

# Brute Force Password Cracking

In [None]:
import hashlib
import itertools
import string

def brute_force_sha256(target_hash):
    charset = string.ascii_lowercase + string.digits
    for length in range(1, 9):  # Limiting length for simplicity
        for guess in itertools.product(charset, repeat=length):
            password = ''.join(guess)
            if hashlib.sha256(password.encode()).hexdigest() == target_hash:
                return password
    return None

hashed_password = "a665a45920422f9d417e4867efdc4fb8a04a1f3fff1fa07e998e86f7f7a27ae3"
cracked_password = brute_force_sha256(hashed_password)
if cracked_password:
    print(f"Password cracked: {cracked_password}")
else:
    print("Password not found.")


# Hashing a Password with Salt

In [None]:
import hashlib
import os

def hash_password(password, salt=None):
    if not salt:
        # Generate a new salt
        salt = os.urandom(16)
    
    # Combine the salt and password
    salted_password = salt + password.encode('utf-8')

    # Create a SHA-256 hash object
    sha256 = hashlib.sha256()

    # Update the hash object with the salted password
    sha256.update(salted_password)

    # Retrieve the hexadecimal representation of the hash
    hash_value = sha256.hexdigest()

    return salt, hash_value

# Example usage
password = "super_secure_password"
salt, hashed_password = hash_password(password)

print(f"Password: {password}")
print(f"Salt: {salt.hex()}")
print(f"Hashed Password: {hashed_password}")


## Storing the password salt

In [None]:
users_list = []

salt, hashed_password = hash_password('topsecret')
user1 = {
    "username": "user1",
    "password": hashed_password,
    "salt": salt
}

salt, hashed_password = hash_password('nosecret')
user2 = {
    "username": "user2",
    "password": hashed_password,
    "salt": salt
}

users_list.append(user1)
users_list.append(user2)

## Authenticating the user

In [None]:
username = input('Please enter username: ')
userfound = False
for user in users_list:
    if user['username'] == username:
        password = input('Please enter password: ')
        userfound = True
        _, hashed_password = hash_password(password, user['salt'])
        if hashed_password == user['password']:
            print('Welcome')
        else:
            print('Incorrect password')
        break
    
if not userfound:
    print('User not found!')

In [None]:
users_list

# File Integrity using Hashing

In [None]:
import hashlib

def hash_file(filename):
    """Generate SHA-256 hash of a file."""
    sha256 = hashlib.sha256()
    with open(filename, "rb") as file:
        while chunk := file.read(4096):
            sha256.update(chunk)
    return sha256.hexdigest()

# Generate and compare file hash
original_file_hash = hash_file("banana1.jpg")
print(f"Original File Hash: {original_file_hash}")

# After some changes or transmission, verify integrity
new_file_hash = hash_file("banana1.jpg")
if original_file_hash == new_file_hash:
    print("File integrity verified!")
else:
    print("File has been tampered with or corrupted.")


# SQL Injection

In [None]:
import sqlite3

# Create an in-memory SQLite database
conn = sqlite3.connect(':memory:')
cursor = conn.cursor()

cursor.execute("CREATE TABLE users (username TEXT, password TEXT)")
cursor.execute("INSERT INTO users (username, password) VALUES (?, ?)", ('admin', 'password123'))


In [None]:
# Insecure query (vulnerable to SQL injection)
username_input = "' OR '1'='1"
# username_input = "'; DROP TABLE users; --"

query = f"SELECT * FROM users WHERE username = '{username_input}'"

try:
    cursor.execute(query)
    print(cursor.fetchall())
except Exception as e:
    print(f"Error: {e}")

In [None]:
# Secure query using parameterized statements
username_input = "admin"
query = "SELECT * FROM users WHERE username = ?"

cursor.execute(query, (username_input,))
print(cursor.fetchall())

In [None]:
import sqlite3

# Create an in-memory SQLite database
conn = sqlite3.connect(':memory:')
cursor = conn.cursor()

# Create a sample users table
cursor.execute("CREATE TABLE users (username TEXT, password TEXT)")
cursor.execute("INSERT INTO users (username, password) VALUES ('admin', 'securepassword')")
cursor.execute("INSERT INTO users (username, password) VALUES ('user1', 'password123')")

# Function to simulate a login (vulnerable to SQL injection)
def login(username, password):
    # Insecure query vulnerable to SQL injection
    query = f"SELECT * FROM users WHERE username = '{username}' AND password = '{password}'"
    try:
        cursor.execute(query)
        user = cursor.fetchone()
        if user:
            print("Login successful!")
        else:
            print("Login failed.")
    except Exception as e:
        print(f"Error: {e}")

# SQL Injection attempt: bypassing authentication
username_input = "admin"
password_input = "' OR '1'='1"

# Attempting to login with the injected input
login(username_input, password_input)


In [None]:
def secure_login(username, password):
    # Secure query using parameterized statements
    query = "SELECT * FROM users WHERE username = ? AND password = ?"
    cursor.execute(query, (username, password))
    user = cursor.fetchone()
    if user:
        print("Secure login successful!")
    else:
        print("Login failed.")

# Attempting the same SQL injection on the secure implementation
secure_login(username_input, password_input)


# Time-based One-Time Password (TOTP)

In [None]:
pip install pyotp

In [None]:
import pyotp
import time

# Generate a secret key (you can store this securely and reuse it)
secret = pyotp.random_base32()
print(f"Your secret key: {secret}")

In [None]:
# Create a TOTP object using the secret key
totp = pyotp.TOTP(secret)

#===Set a custom interval (e.g., 60 seconds)===
# totp = pyotp.TOTP(secret, interval=60)

#===Set a custom number of digits (e.g., 8 digits)===
# totp = pyotp.TOTP(secret, digits=8)

# Generate the OTP
otp = totp.now()
print(f"Your OTP: {otp}")

In [None]:
# You must verify within 30 seconds
if totp.verify(otp):
    print("OTP is valid!")
else:
    print("OTP is invalid or expired.")

# Using Google Authenticator

In [None]:
pip install qrcode

In [None]:
import pyotp
import qrcode

# Step 1: Generate a secret key for each user - Store the secret key securely, as it is the foundation for OTP generation.
secret = pyotp.random_base32()
print(f"Secret Key: {secret}")

# Step 2: Generate a URI for the QR code (for Google Authenticator)
# Replace 'YourAppName' and 'YourUserName' with your app's name and user's name
totp = pyotp.TOTP(secret)
uri = totp.provisioning_uri(name = "YourUserName", 
                            issuer_name = "YourAppName")

# Step 3: Generate and display the QR code
qr = qrcode.make(uri)
qr.show()  # This will display the QR code

In [None]:
totp = pyotp.TOTP(secret)

# Step 4: OTP Generation (Simulating user input)
print("Enter the code from Google Authenticator:")
user_otp = input().strip()

# Step 5: Verify the OTP
if totp.verify(user_otp):
    print("The OTP is valid!")
else:
    print("Invalid OTP!")

# Answers to common passwords

The passwords are:

1. password
2. password123
3. 12345678
4. 1234
5. 12345