myitinos
/
rsa-token-generator
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1 Commit
1 Branch
32 KiB
Branch: master
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'master'
${ noResults }
rsa-token-generator/RSATG.py

148 lines
4.9 KiB
Raw Permalink Normal View History

first commit
5 years ago
 
  1. #!/usr/bin/env python
  2. import socket
  3. from thread import start_new_thread
  4. from datetime import datetime
  5. from os import urandom
  6. from random import randrange as random
  7. import RSAvulnerableKeyGenerator as keygen
  8. 

  9. FLAG = 'SlashRootCTF{W13nn3r_w1nn3r_RSA_d1nn3r}'
  10. HOST = '0.0.0.0'
  11. PORT = 6070
  12. BUFF = 1024
  13. BIT = 256
  14. MAX = 10
  15. 

  16. def banner():
  17.     return '''\

  18. _______________________________________________
  19. |  ____ ____ ____    ___ ____ _  _ ____ _  _  |
  20. |  |__/ [__  |__|     |  |  | |_/  |___ |\ |  |
  21. |  |  \ ___] |  |     |  |__| | \_ |___ | \|  |
  22. | ____ ____ _  _ ____ ____ ____ ___ ____ ____ |
  23. | | __ |___ |\ | |___ |__/ |__|  |  |  | |__/ |
  24. | |__] |___ | \| |___ |  \ |  |  |  |__| |  \ |
  25. |_____________________________________________|                                          
  26. | [1] Generate RSA                            |
  27. | [2] Generate Token                          |
  28. | [3] Generate Flag                           |
  29. |_____________________________________________|
  30. >>> '''

  31. 

  32. def log(message, address, filename='RSATG.log'):
  33.     with open(filename, 'a') as log:
  34.         timestamp = datetime.now().strftime('%d/%m/%Y %H:%M:%S')
  35.         log.write('[%s][%s:%d] %s\n' % (timestamp, address[0], address[1], str(message)))
  36. 

  37. def serve_client(client, address, receive=''):
  38.     try:
  39.         client.send(banner())
  40.         token = []
  41. 

  42.         while True:
  43.             data = ''
  44.             receive = client.recv(BUFF).strip()
  45. 

  46.             if receive == '1':
  47.                 log('<<< Generating RSA', address)
  48.                 data = genRSA(client, address)
  49.             elif receive == '2':
  50.                 log('<<< Generating Token', address)
  51.                 data, token = genToken(client, address)
  52.                 log('>>> Sending Token: %s' % format(token), address)
  53.             elif receive == '3':
  54.                 log('<<< Generating flag', address)
  55.                 
  56.                 if token:
  57.                     client.send('Token : ')
  58. 

  59.                     if format(token) == client.recv(BUFF).strip():
  60.                         ID = urandom(16).encode('hex')
  61.                         log('<-> RSA ID: %s[%s]' % (ID, format(token)), address)
  62.                         log('>>> Sending Flag: %s[%s]' % (ID, format(token)), address)
  63.                         client.send('''\

  64. RSA ID\t : %s
  65. FLAG\t : %s
  66. *Sertakan TOKEN dan RSA ID pada writeup agar poin dihitung!\n''' % (ID, FLAG))

  67.                         break
  68.                     else:
  69.                         log('>-< Wrong Token: %s|%s' % (receive, format(token)), address)
  70.                         data = 'Try Again!\nYour token is %s\n' % format(token)
  71.                 else:
  72.                     log('>-< Empty Token!', address)
  73.                     data = 'Generate your token!\n'
  74. 

  75.                 token = []
  76. 

  77.             client.send(data + '[1|2|3]>>> ')
  78. 

  79.         log('Disconnected', address)
  80.     except Exception as message:
  81.         log(message, address, 'error.log')
  82.         log('>-< Disconnected because error: %s' % message, address)
  83.     finally:
  84.         client.close()
  85.         log('--- Disconnected', address)
  86. 

  87. def format(token):
  88.     return '-'.join(token)
  89. 

  90. def RSA(bit):
  91.     e, n, d = keygen.generateKeys(bit)
  92.     p = random(1000, 9999)
  93.     c = pow(p, e, n)
  94.     return e, n, d, p, c
  95. 

  96. def genRSA(client, address):
  97.     e, n ,d, p, c = RSA(BIT)
  98.     client.send('e = %s \nn = %s \nc = %s \np = ' % (e, n, c))
  99.     r = client.recv(BUFF).strip()
  100. 

  101.     if r == str(p):
  102.         log('<-> Correct %s{e:%s,n:%s,d:%s,p:%s,c:%s)' % (r, e, n, d, p, c), address)
  103.         return '\n\m/ Correct \m/\n'
  104.     else:
  105.         log('>-< Wrong %s{e:%s,n:%s,d:%s,p:%s,c:%s)' % (r, e, n, d, p, c), address)
  106.         return '\nWrong :P is %s\n' % p
  107. 

  108. def genToken(client, address):
  109.     token = []
  110.     data = 'Token has been generated!\n'
  111. 

  112.     for i in range(1, 6):
  113.         e, n ,d, p, c = RSA(BIT)
  114.         client.send('Token #%i\ne = %s \nn = %s \nc = %s \np = ' % (i, e, n, c))
  115.         r = client.recv(BUFF).strip()
  116. 

  117.         if r == str(p):
  118.             log('<-> Correct #%d: %s{e:%s,n:%s,d:%s,p:%s,c:%s)' % (i, r, e, n, d, p, c), address)
  119.             token.append(str(p))
  120.         else:
  121.             token = []
  122.             data = '\nWrong :P is %s\n' % p
  123.             log('>-< Wrong #%d: %s{e:%s,n:%s,d:%s,p:%s,c:%s)' % (i, r, e, n, d, p, c), address)
  124.             break
  125. 

  126.     return data, token
  127. 

  128. def main():
  129.     server = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
  130.     server.setsockopt(socket.SOL_SOCKET, socket.SO_REUSEADDR, 1)
  131.     server.bind((HOST, PORT))
  132.     server.listen(MAX)
  133.     log('(+) Power On Server', [HOST, PORT])
  134. 

  135.     while True:
  136.         try:
  137.             client, address = server.accept()
  138.             log('<<< Client connected from IP %s with PORT %d' % (address), address)
  139.             start_new_thread(serve_client, (client, address))
  140.         except Exception as message:
  141.             log(message, [HOST, PORT], 'error.log')
  142.         except KeyboardInterrupt:
  143.             log('(-) Power Off Server', [HOST, PORT])
  144.             break
  145. 

  146.     server.close()
  147. 

  148. if __name__ == '__main__':
  149.     main()