Try   HackMD

In RSA, a small e value can be problematic, but what about N? Can you decrypt this?

How RSA works

  1. cd≑m(modn)
  2. me≑c(modn)
  3. d≑eβˆ’1(modΟ•(n))

here

m is message(plaintext), and
c is ciphertext

If

n is small, we can crack it
(tool 1: https://www.dcode.fr/euler-totient tool 2: http://factordb.com/)
and know what
p and
q are.
After acquiring
p and
q, we can calculate
Ο•(n)=(pβˆ’1)(qβˆ’1), then calculate d=pow(e,-1,phin) using Python.

proof of RSA

Image Not Showing Possible Reasons
  • The image was uploaded to a note which you don't have access to
  • The note which the image was originally uploaded to has been deleted
Learn More β†’

(source: https://drive.google.com/file/d/1EURAqSaG2Mn0w0j70rI0Ph100CzXANty/view)

Writeup

  1. Use FactorDB to get the value of
    p     and
    q
    Image Not Showing Possible Reasons
    • The image was uploaded to a note which you don't have access to
    • The note which the image was originally uploaded to has been deleted
    Learn More β†’
  2. Use Python to decode it












from Crypto.Util.number import *
p=1593021310640923782355996681284584012117
q=521911930824021492581321351826927897005221
c=240986837130071017759137533082982207147971245672412893755780400885108149004760496
e=65537

n=p*q
phin=p*q-p-q+1#(p*q-1)-(q-1)-(p-1)
d=pow(e,-1,phin)
m=pow(c,d,n)
print(m)
print(long_to_bytes(m))

Output:

β”Œβ”€β”€(kaliγ‰Ώkali)-[~]
└─$ /bin/python /home/kali/code/rsa.py
13016382529449106065927291425342535437996222135352905256639592405461024281868413
b'picoCTF{sma11_N_n0_g0od_23540368}'

Easier way

Image Not Showing Possible Reasons
  • The image was uploaded to a note which you don't have access to
  • The note which the image was originally uploaded to has been deleted
Learn More β†’

note that βœ” P,Q computed with N (FactorDB database) is mentioned

Last changed by 
 
Natalie Lin
0
155

Read more

50024. Grade

#include<stdio.h> #include<string.h> #include<stdlib.h> #include<ctype.h> #define N 55 #define LEN 8 int max(int a, int b){ return a * (a > b) + b * (a <= b); } int cmp(const void *a, const void *b){

Dec 2, 2023
50177. Lights Out

#include<stdio.h> #define N 4 int counter(int bd[N][N], int n){ int cnt = 0; for(int i = 0; i < n; i++){ for(int j = 0; j < n; j++){ cnt += (bd[i][j]); } } return cnt;

Dec 1, 2023
50282. Bricks

a bit slower but cc = 3 #include<stdio.h> void f(int l, int hx, int hy, int hz, int x, int y, int z, int ty[2][2][2]){ if(l <= 0) return; int xx = (x - hx <= 0), yy = (y - hy <= 0), zz = (z - hz <= 0); int t = ty[xx][yy][zz]; printf("%d %d %d %d\n", t, x, y, z); int dx[8] = {1, -1, 1, -1, 1, -1, 1, -1}; int dy[8] = {1, 1, -1, -1, 1, 1, -1, -1};

Nov 30, 2023
50279. Tiles Again

#include<stdio.h> void f(int l, int hx, int hy, int x, int y){ if(l <= 0) return; #ifdef debug printf("hx, hy = %d, %d, x, y = %d, %d\n", hx, hy, x, y); #endif int xx = (x - hx <= 0), yy = (y - hy <= 0); int ty[2][2] = {{4, 2}, {3, 1}}; #ifdef debug

Nov 29, 2023
Read more from Natalie Lin
Published on HackMD