# 1. Accept input from a user, and with the input as an argument, create a function that:
- Creates a random 32-byte salt value (remember to use a cryptographically secure random number generator.
- Hash the input from the user with the salted value with SHA-256.
- Store the value and the salt in a file.
- Print both values.


#### Discuss why a salted hash is important when storing sensitive data such as passwords.  Explore a python library for Zero Knowledge Proofs and propose how this might improve authentication.  (Cite sources)
- Ans: A salted hash is a critical component for storing sensitive data like passwords. It involves adding a unique random string ("salt") to each password before hashing. The exceptional salt plays a pivotal role in preventing precomputed tables (like rainbow tables), making it significantly harder for attackers to crack passwords, even if they have access to a database of hashed passwords. The unique salt ensures that malicious actors cannot quickly identify the original password by comparing hashes with a known list of password combinations, thereby enhancing the robustness of the security measure (Hughes, 2022).

- Zero-Knowledge Swiss Knife (zksk-fork 0.0.31): Python library for prototyping composable zero-knowledge proofs in the discrete-log setting.
- Traditional password systems send passwords or hashed passwords to the server for verification, which can be vulnerable to interception or brute-force attacks. ZKPs, a reliable method, enable password verification without exposing the password to potential interception (Makhene, 2024).
- ZKPs are used in cryptographic protocols to ensure secure communication and data integrity, such as in blockchain technologies and secure multiparty computations, a method that allows multiple parties to jointly compute a function over their inputs while keeping those inputs private (Makhene, 2024).

- Reference:
Hughes, A. (2022, March 1). Encryption vs. Hashing vs. salting - what's the difference? Encryption vs. Hashing vs. Salting - What's the Difference? | Ping Identity. https://www.pingidentity.com/en/resources/blog/post/encryption-vs-hashing-vs-salting.html#:~:text=revealing%20the%20original.-,What%20is%20Salting?,tables)%20to%20crack%20the%20hashes.

  Makhene, T. (2024, June 18). How zero-knowledge authentication works. Paubox. https://www.paubox.com/blog/how-zero-knowledge-authentication-works#:~:text=For%20a%20proof%20to%20be,except%20with%20some%20small%20probability

In [1]:
!pip install scapy



In [2]:
import os
import hashlib

def hash_and_store(user_input):
  # Generate a random 32-byte salt
  salt = os.urandom(32)

  # Hash the input with the salt using SHA-256
  hash_object = hashlib.sha256(user_input.encode() + salt)
  hashed_value = hash_object.hexdigest()

  # Store the value and the salt in a file
  with open("hashed_data.txt", "w") as f:
      f.write(f"Hashed Value: {hashed_value}\n")
      f.write(f"Salt: {salt.hex()}\n")
  return hashed_value, salt.hex()

if __name__ == "__main__":
  user_input = str(input("Enter the value to hash: "))
  print(hash_and_store(user_input))


Enter the value to hash: kjfhhlkjholuikyjghkljkj
('f311943c2103957e7727f8375f5a73ee13aab42297b36eca874718ad57bd09ad', '13c2b9b9b05e4846365f605de79cb2b57bab2fcf7419f697e256f579556af16e')


# 2. Name one AES encryption mode that requires an Initial Vector (IV) and explain why it is considered more secure than other modes.  Name one AES encryption mode that does not require an IV.  Answer in a markdown cell.  Use proper citations.

- The AES encryption mode that requires an Initialization Vector (IV) and is considered more secure than others is Cipher Block Chaining (CBC); this is because the IV introduces randomness to the encryption process, preventing patterns from appearing in the ciphertext, making it harder for attackers to decrypt the data even if they know the encryption key (Awati, 2022). If an attacker knows a portion of the plaintext, they cannot easily use that information to decrypt the rest of the message because the IV disrupts any predictable patterns (Awati, 2022).
- The AES encryption mode that does not require an Initialization Vector (IV) is the Electronic Codebook (ECB) (Awati, 2022).

- Reference: Awati, R. (2022, October 4). What is Initialization Vector?. WhatIs. https://www.techtarget.com/whatis/definition/initialization-vector-IV#:~:text=IVs%20are%20implemented%20differently%20in,increases%20data%20security%20and%20integrity.

# 3. Using Scapy, write a Python script that forges a custom TCP SYN packet with the following specifications:
- Source IP: 192.168.1.100
- Destination IP: 10.0.0.1
- Source Port: 4444
- Destination Port: 80
- Additional Flags: Urgent
- Include a custom RAW payload: "Hello, this is a forged packet!"
# The script should:
- Display the forged packet details before sending.
- Send the packet to the destination.
- Use Scapy's sr1() method to capture and print the response if one is received.


##### Explain how this kind of packet could be used in security testing. What are the ethical considerations of forging and sending custom packets?
- A packet like this, is a tool in security testing that helps in, capturing network traffic to analyze its content, identifying potential vulnerabilities, and simulate malicious attacks. Its most crucial role, however, is in assessing a system's resilience against various threats, such as unauthorized access, data exfiltration, or malware injection. It acts as a 'window' into the network, enabling us to observe how data flows and pinpoint potential security weaknesses.
- Using Scapy for forging and sending custom packet requires a strong code of ethics. Ensure you have proper authorization to conduct network reconnaissance activities and exercise caution when using techniques like ARP cache poisoning. Unauthorized scanning or attacks can be illegal and unethical, and can lead to serious consequences.

In [3]:
from scapy.all import *

sport = 4444
dport = 80

# SYN
ip = IP(src='192.168.1.100', dst='10.0.0.1')
SYN = TCP(sport=sport, dport=dport, flags= "U", seq=1000)
packet = ip/SYN/"Hello, this is a forged packet!"
packet.show()
send(packet)

# Send the packet and get the response
response = sr1(packet, timeout=2)

# Check if a response was received
if response:
    print(f"Response received from {response.dst}:")
    response.show()
else:
    print("No response received.")

###[ IP ]###
  version   = 4
  ihl       = None
  tos       = 0x0
  len       = None
  id        = 1
  flags     = 
  frag      = 0
  ttl       = 64
  proto     = 6
  chksum    = None
  src       = 192.168.1.100
  dst       = 10.0.0.1
  \options   \
###[ TCP ]###
     sport     = 4444
     dport     = 80
     seq       = 1000
     ack       = 0
     dataofs   = None
     reserved  = 0
     flags     = U
     window    = 8192
     chksum    = None
     urgptr    = 0
     options   = []
###[ Raw ]###
        load      = b'Hello, this is a forged packet!'


Sent 1 packets.

Received 6 packets, got 0 answers, remaining 1 packets
No response received.


# 4. Using Beautiful Soup – scrape text from https://quotes.toscrape.com/.  Print the text to the screen.  This is good practice for building text datasets but be sure to check the web site's acceptable use policy before scraping a site.

In [4]:
import pandas as pd
import requests
from bs4 import BeautifulSoup
from urllib.parse import urljoin, urlparse


# Function to scrape a webpage and extract all links
def scrape_page(url, level=1, max_depth=2):
  if level > max_depth:
      return

  # Send an HTTP GET request to the URL
  response = requests.get(url)

  if response.status_code == 200:
      # Parse the HTML content of the page
      soup = BeautifulSoup(response.text, "html.parser")

      #print(f"Scraping {url} (Level {level})")

      # Find all <a> tags (hyperlinks) in the page
      links = soup.find_all("a")

      all_links = []

      # Extract and process each link
      for link in links:
          href = link.get("href")
          if href:
              # Resolve relative URLs to absolute URLs
              full_url = urljoin(url, href)

              # Only follow links that are part of the same domain (to avoid external links)
              if is_same_domain(url, full_url):
                  all_links.append(full_url)
                  #print(f"  Found link: {full_url}")

                  # Recursively scrape the next level
                  scrape_page(full_url, level + 1, max_depth)
  else:
      print(f"Failed to retrieve {url} (Status code: {response.status_code})")
  return all_links


# Function to check if two URLs belong to the same domain
def is_same_domain(base_url, target_url):
    base_domain = urlparse(base_url).netloc
    target_domain = urlparse(target_url).netloc
    return base_domain == target_domain


# Get data from links
def get_data(links):
  txt = []
  auth = []

  for url in links:
    # Send an HTTP GET request to the URL
    response = requests.get(url)

    if response.status_code == 200:
        # Parse the HTML content of the page
        soup = BeautifulSoup(response.text, "html.parser")

        # Find all <span> and <small> tags (hyperlinks) in the page
        texts = soup.find_all("span", "text")
        authors = soup.find_all("small", "author")

        # Extract and process each link
        for author in authors:
          #data["author"]= author.get_text()
          auth.append(author.get_text())
          #print(author.get_text())
        for text in texts:
          #data["text"]= text.get_text()
          txt.append(text.get_text().strip('“”'))
          #print(text.get_text().strip('“”'))

  return auth, txt


# Get the dataframe
def get_dataframes(auth, txt):
  data = {"author": auth, "text": txt}
  df = pd.DataFrame(data)
  return df


if __name__ == "__main__":
  # Starting URL to begin scraping from
  start_url = "https://quotes.toscrape.com/"  # Replace with the URL you want to start scraping from

  # Start the scraping process
  links = scrape_page(start_url, level=1, max_depth=2)

  # Get the data from the links
  author = get_data(links)[0]
  text = get_data(links)[1]

  # Get the dataframe
  df = get_dataframes(author, text)
  print(df.head(10))
  print("-----------------------------------------------------------------------")
  print(df.tail(10))

              author                                               text
0    Albert Einstein  The world as we have created it is a process o...
1       J.K. Rowling  It is our choices, Harry, that show what we tr...
2    Albert Einstein  There are only two ways to live your life. One...
3        Jane Austen  The person, be it gentleman or lady, who has n...
4     Marilyn Monroe  Imperfection is beauty, madness is genius and ...
5    Albert Einstein  Try not to become a man of success. Rather bec...
6         André Gide  It is better to be hated for what you are than...
7   Thomas A. Edison  I have not failed. I've just found 10,000 ways...
8  Eleanor Roosevelt  A woman is like a tea bag; you never know how ...
9       Steve Martin   A day without sunshine is like, you know, night.
-----------------------------------------------------------------------
               author                                               text
199      J.K. Rowling  It takes a great deal of bravery to stan