Skip to content
unXOR will search a XORed file and try to guess the key using known-plaintext attacks.
Branch: master
Clone or download
Latest commit 1326b8c Jul 18, 2019
Type Name Latest commit message Commit time
Failed to load latest commit information.
.gitignore Edited .gitignore Jun 6, 2013
LICENSE Create LICENSE Jul 18, 2019 remove license from here Jul 18, 2019 Importable as a module Mar 4, 2013 Display fixes & code cleanup Nov 19, 2014


This tool will search through an XOR-encoded file (binary, text-file, whatever) and use known-plaintext attacks to deduce the original keystream. Works on keys half as long as the known-plaintext, in linear complexity.

The code is pretty straightforward

For more details and a short explanation of the theory behind this, please refer to:

Related Work

unXOR is included in Lenny Zeltser's REMnux, along with other great tools such as XORStrings, ex_pe_xor, XORSearch, brutexor/iheartxor, xortool, NoMoreXOR, XORBruteForcer, Balbuzard

You can’t perform that action at this time.