# The motivation behind Rainbow tables

* What it means to "brute force" a hash is going to be different depending on what the hash is being used for.
* If you're trying to modify an executable file so that when hashed the same hash digest is returned as on the unmodified file, "brute forcing" in this case would be apending random data to an executable, trying to find a combination that hashed to the original executable.
* Brute forcing a hashed password will involve trying all possible inputs, looking for a hash digest output that matches the hash you're trying to reverse.

* For a well-designed cryptographic hash function with no known flaws, the easiest way to reverse a hash is through brute force.
* And brute force should be "computationally infeasible" because of how many hashes are possible.
* The complexity of a brute force attack is proportional to the size of the input space.
* For instance, SHA256 produces hashes consisting of 256 bits (bits being '1' or '0'). If we wanted to find plain text input that matched a particular 256 hash, you've got a 1/2^(256/2) chance.


## Brute force?

, reversing the hash Reversing a cryptographic hash is never *impossible*, but ideally it should be "computationally infeasible."
* There are some things that make reversing a cryptographic hash slightly more "computationally feasible"
* Brute force is an option we'll come back to, but another method is to find a flaw in the cryptographic hash used to hash passwords.

## Cryptographic security level
* A measure of the strength that a cryptographic primitive achieves, usually expressed as a number of "bits of security", where n-bit security means that the attacker would have to perform 2^n operations to break it. (https://en.wikipedia.org/wiki/Security_level)
* A *security claim* is the security level that a primitive was initially designed to acheive.

Looking at this: https://en.wikipedia.org/wiki/Hash_function_security_summary

* 

***Cryptographic hash flaws***
* A flaw in a cryptographic hash would be anything that weakens one of the fundemental requirements of a cryptographic hash;
* *Collision resistance* - It should be difficult to find two different messages that create the same hash output. Called a hash collision.
    * *(Chosen-)Prefix collision* - Two distinct inputs that share a common prefix, and produce the same hash value.
        * A problem for digital signatures
    * *Classic collision attack* - Two different messages that hash to the same output.
* *Preimage attack* - Trying to find a message that has a specific hash value
    * Preimage resistance - it is computationally infeasible to find any input that hashes to that output
    * Second-preimage resistance - for a specified input, it is computationally infeasible to find another input which produces the same output
* If the hash in the bad guy's posession was generated from a weak password, then with some smart brute forcing it's likely the originally password can be found quickly.

*Screenshots of breaches*

* The news is filled with stories of companies losing control of their user databases to hackers, and if you've ever had an account with one of these companies, you've probably recieved the advice that you should reset your password.
* But why, if these databases didn't actually contain your password, and the hashes that they did contain were generated by a secure cryptographic hash?...

*Clip art with a hash being turned into plain text*

* This is because it is possible to reverse hashes - that is, discover the plain text that generated a particular cryptographic hash...
* One less plausible way of doing this is by discovering a flaw in the cryptographic hashing algorithm.
* *Preimage attack* - Trying to find a message that has a specific hash value
    * Preimage resistance - it is computationally infeasible to find any input that hashes to that output
    * Second-preimage resistance - for a specified input, it is computationally infeasible to find another input which produces the same output
* *Collision resistance* - 

In [2]:
import sys

dct = {'a': 5, 'b': 7}

print(sys.getsizeof(dct))

232


A ->

B

C ->

D

In [6]:
len("f88ac9b5b33dce1b9f27f974041ed4a4")

32

F

## Preparation of Jupyter widgets code 

In [140]:
exact_key_length_widget = widgets.BoundedIntText(
    value=3,
    min=1,
    max=5)

allowable_characters_widget = widgets.SelectMultiple(
    options=['0-9', 'a-z', 'A-Z', 'Special characters'])

key_to_find_widget = widgets.Text(
    placeholder='Enter key',
    layout={'width': 'max-content'})

### Used in the section "Define the key space to search"

In [2]:
import ipywidgets as widgets

# Create a pair of vertical boxes to display the following...

# Ask what key length to search for
exact_key_length_box = widgets.VBox([
    widgets.Label(value='What length of key would you like to search?'),
    exact_key_length_widget
])

# Ask the user to choose which characters are allowed in the key space
allowable_characters_box = widgets.VBox([
    widgets.Label(value='Choose allowable characters for key space'),
    allowable_characters_widget
])

## Define the key space to search

In [143]:
# Display the two VBoxes just constructed above right next to one another
widgets.HBox([exact_key_length_box, allowable_characters_box])

HBox(children=(VBox(children=(Label(value='What length of key would you like to search?'), BoundedIntText(valu…

In [75]:
keylength = 6
allowable_characters = ['0','1','2','3','4','5','6','7','8','9',
                       'a','b','c','d','e','f','g','h','i','j','k',
                        'l','m','n','o','p','q','r','s','t','u','v',
                        'w','x','y','z']
key_to_find = 'money1'

In [76]:
iteration_print = 100000
iteration_count = 0
def key_generate(key, allowable, position):
    global iteration_count
    position = position - 1
    for c in allowable:
        if position > 0:
            if key_generate(key+c, allowable, position) == True:
                return True
        elif position == 0:
            iteration_count = iteration_count+1
            if iteration_count % iteration_print == 0:
                print(key+c, " iteration", iteration_count)
            if key_to_find == key+c:
                print("Found your key,", key+c, "at iteration", iteration_count)
                return True

key_generate(str(), allowable_characters, keylength)

00255r  iteration 100000
004abj  iteration 200000
006fhb  iteration 300000
008kn3  iteration 400000
00apsv  iteration 500000
00cuyn  iteration 600000
00f04f  iteration 700000
00h5a7  iteration 800000
00jafz  iteration 900000
00lflr  iteration 1000000
00nkrj  iteration 1100000
00ppxb  iteration 1200000
00rv33  iteration 1300000
00u08v  iteration 1400000
00w5en  iteration 1500000
00yakf  iteration 1600000
010fq7  iteration 1700000
012kvz  iteration 1800000
014q1r  iteration 1900000
016v7j  iteration 2000000
0190db  iteration 2100000
01b5j3  iteration 2200000
01daov  iteration 2300000
01ffun  iteration 2400000
01hl0f  iteration 2500000
01jq67  iteration 2600000
01lvbz  iteration 2700000
01o0hr  iteration 2800000
01q5nj  iteration 2900000
01satb  iteration 3000000
01ufz3  iteration 3100000
01wl4v  iteration 3200000
01yqan  iteration 3300000
020vgf  iteration 3400000
0230m7  iteration 3500000
0255rz  iteration 3600000
027axr  iteration 3700000
029g3j  iteration 3800000
02bl9b  iteration 390

True

In [7]:
unp
out = widgets.Output(layout={'border': '1px solid black'})
out


In [147]:
from IPython.display import YouTubeVideo
with out:
    display(YouTubeVideo('eWzY2nGfkXk'))

In [6]:
out = widgets.Output(layout={'border': '1px solid black'})
out

In [3]:
out = widgets.Output(layout={'border': '1px solid black'})
out.append_stdout('Output appended with append_stdout')
out.append_display_data(YouTubeVideo('eWzY2nGfkXk'))
out

In [5]:
with out:
    for i in range(10):
        print(i, 'Hello world!')