search

Good Authentication

hashtag
Description

After your first strike, the development team has increased the power of there login function. Are you strong enough to break it again?

Link: SecurityValley/PublicCTFChallenges/coding/good_authenticationarrow-up-right

hashtag
Analysis

  1. Password length must be 12

  2. Password is split into 3 chucks (blocks)

  3. Each blocks gets XORarrow-up-right-ed with some constant number

  4. Final password is sontTbxTjffe

hashtag
Solution

XOR operation is a little special because it can be used to encrypt data and decrypted with the same key. For us the keys are already known. To make this even simpler we can reverse the logic of the code, pass the password to loop and get the password.

password  =  "sontTbxTjffe";

const  block  = [
	Array.from(password).slice(0, 4),
	Array.from(password).slice(4, 8),
	Array.from(password).slice(8, 12)
]

let  crafted  =  "";

for (let  i  =  0; i  <  block.length; i++) {
  for (let  a  =  0; a  <  block[i].length; a++) {
    if (i  ==  0) {
      crafted  +=  String.fromCharCode(String(block[i][a]).charCodeAt(0) ^  7)
    } else  if (i  ==  1) {
      crafted  +=  String.fromCharCode(String(block[i][a]).charCodeAt(0) ^  11)
    } else {
      crafted  +=  String.fromCharCode(String(block[i][a]).charCodeAt(0) ^  9)
    }
  }
}

console.log(crafted)

>>> this_is_cool

Finally we submit answer to the API

hashtag
Flag

{"Value":"SecVal{REDACTED}"}

PreviousFrenchNextMalicious Traffic

Last updated