UMass Pentest Club
A list of CTF problems, techniques and guides mean to be a lookup table to possible solutions of CTF problems
-
Caesar Cipher
The most well known subsitution cipher. It is a type of substitution cipher in which each letter in the plaintext is 'shifted' a certain number of places down the alphabet. For example, with a shift of 1, A would be replaced by B, B would become C, and so on.
Beware! Sometimes the alphabet used is more than just the 26 characters and can use custom character sets like all 255 ASCII characters.
-
Subsitution Cipher
General subsitution ciphers are often hard to crack by hand. If your cipher text is letters only, you can use the tool quipqiup to try and solve them. If this can't solve it, it may not be a subsitution cipher.
-
Symmetric encryption
For a stream cipher (ChaCha20 or AES-CTR), the keystream can be obtained by XORing the plaintext and the ciphertext. If nonces are reused, then this keystream can be used for message forgery. AES-GCM is also extremely fragile in this way. // TODO describe ECB-oracle attack
-
RSA
Classic RSA
//TODO Add factoring websites to help solve for p and q
RSA (Rivest–Shamir–Adleman) is one of the first public-key cryptosystems and is widely used for secure data transmission.
N is a modulus used in the private and public key, and is calculated by the product of two large primes, p and q. The security of RSA is dependent on the fact that N is often hard to.
N = p * qCompute λ(n), where λ(n) is the Totient Function. In classical RSA, this equals the product of one less of the primes p and q.
phi(n) = (p-1) * (q-1)Choose a value e, between 1 and λ(n), such that e and λ(n) are coprime.
Often the plain text will be changed into it's ascii values, and then transformed into one decimal integer for the equation.
Encrypt the plaintext by raising it's decimal value, m to the power e, then apply mod N to the result.
c = (m^e) % NTo decrypt the ciphertext, you must first calculate d. d is the modular multiplicative inverse of e mod λ(n).
d = e mod^-1 λ(n)After obtaining d, raise c to the power of d mod N to get the original message.
m = (c^d) mod NSmall E Attack
If e is a small number, usually 3 but it can be more, the cryptosystem may be vunerable to a small e attack. This is where c to the power e is less than N, allowing you to simply inverse the exponent for the plaintext.
m = log(c, e) #First argument is the number, second is the baseßChinese Reainder Theorm
//TODO
MultiPrime RSA
//TODO
LSB Oracle Attack
//TODO
-
General Tatics
Web exploits are usually able to be classified into three categories
-
Authentication
-
Session Management
-
Access Control
-
-
Robots.txt
When given a website, always check for a /robots.txt file at the root link. You may never know what will be hidden there.
-
Classic Tools
-
- Python library used to create http requests, very useful for challenges
-
- Terminal based tool to transfer data with URLs
-
- Modern tool for analyzing web applications.
-
- Open-source web browser extension for editing cookies.
-
- Multi-threaded java application that can use wordlists/brute force to find directories and files on web servers.
-
-
SQL Injections
Classic SQL Injection
Often when parsing user input in SQL, the request formed will be something along the lines of:
SELECT author,title,year FROM books WHERE publisher = ‘O’Reilly’ and published=1If the parsing of input is done incorrectly, you can use a
'in a input field and break out of the statement to inject your own code.Often an injection will be something along the lines of
admin' OR 1=1-- OR 1=1--
Ghidra is an open-source reverse engineering tool developed by the NSA.