|
Message-ID: <669fd1d6aefe5d3e76df5e97eb3e0ac5@smtp.hushmail.com> Date: Sun, 12 Sep 2021 14:01:09 +0200 From: magnum <john.magnum@...hmail.com> To: john-users@...ts.openwall.com Subject: Re: brute forcing AES key On 2021-09-11 12:36, magnum wrote: > On 2021-09-10 20:55, p+password@...atpro.net wrote: >> Here are the info for the ETH vault: >> >> ETH vault coin name: ETH >> ETH public key: 0x4ac97B48CbBF9D54AE1f07bF72b10F19eBE30BB1 >> ETH private key: >> a5f54b647905db05a82d523fe0027a5da9760c2e97e4124448896f7333cdf96f >> ETH seed: (left blank) >> ETH vault comment: (left blank) > > Decrypted hex: 6b4b12535f595e(...)3934227d5d07070707070707 > > As you can see we got expected padding this time: seven bytes of 07. > > Plaintext: kKS_Y^~Q]U > udH","publicKey":"0x4ac97B48CbBF9D54AE1f07bF72b10F19eBE30BB1","privateKey":"a5f54b647905db05a82d523fe0027a5da9760c2e97e4124448896f7333cdf96f","seed":"","comment":"","id":"1631298033694"}] > > > We could look for that constant string "publicKey" within, say, the > first two blocks of AES. But I sort of think we can trust the padding as > long as the vault isn't completely empty - it's faster than scanning. > >> thanks to 0 padding up to 32 chars, using password foobar in the app >> GUI gives the same result as foobar0000, foobar0000000000, >> foobar000000000000000, etc., this app is so nicely coded… :) > > Yes, I noticed the iv is also 16 x ASCII "0" as opposed to null bytes. I was mistaken, it's null bytes - and that's why my plaintext had the first block garbled. > I now opened https://github.com/openwall/john/issues/4804 for > implementing this format. We now have formats ready to merge: https://github.com/openwall/john/pull/4805. After realizing my mistake with the iv, we now only need to decrypt the very first block and look for the constant plaintext of '[{"coinName"' right at its start. AES isn't very GPU-friendly so the OpenCL version "only" pushes about 380Mp/s on a 2080ti. magnum
Powered by blists - more mailing lists
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.