API tools faq
paste
Advertisement
trmr

Ghost in the Shell code 2013 subme

trmr
Feb 13th, 2016
158
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
Python 7.43 KB | None | 0 0
raw download clone embed print report
  1. #Decrypt 'G\x01{V\xb7\x16\x0f\x98\xf3\x8d\xdbK\xf4x\xdf\xd1j\xf5t+U\xa4\xc3\r'
  2. #with the proper key for the answer, g'luck
  3. s = [ 0x63, 0x7C, 0x77, 0x7B, 0xF2, 0x6B, 0x6F, 0xC5, 0x30, 0x01, 0x67, 0x2B, 0xFE, 0xD7, 0xAB, 0x76, 0xCA, 0x82, 0xC9, 0x7D, 0xFA, 0x59, 0x47, 0xF0, 0xAD, 0xD4, 0xA2, 0xAF, 0x9C, 0xA4, 0x72, 0xC0, 0xB7, 0xFD, 0x93, 0x26, 0x36, 0x3F, 0xF7, 0xCC, 0x34, 0xA5, 0xE5, 0xF1, 0x71, 0xD8, 0x31, 0x15, 0x04, 0xC7, 0x23, 0xC3, 0x18, 0x96, 0x05, 0x9A, 0x07, 0x12, 0x80, 0xE2, 0xEB, 0x27, 0xB2, 0x75, 0x09, 0x83, 0x2C, 0x1A, 0x1B, 0x6E, 0x5A, 0xA0, 0x52, 0x3B, 0xD6, 0xB3, 0x29, 0xE3, 0x2F, 0x84, 0x53, 0xD1, 0x00, 0xED, 0x20, 0xFC, 0xB1, 0x5B, 0x6A, 0xCB, 0xBE, 0x39, 0x4A, 0x4C, 0x58, 0xCF, 0xD0, 0xEF, 0xAA, 0xFB, 0x43, 0x4D, 0x33, 0x85, 0x45, 0xF9, 0x02, 0x7F, 0x50, 0x3C, 0x9F, 0xA8, 0x51, 0xA3, 0x40, 0x8F, 0x92, 0x9D, 0x38, 0xF5, 0xBC, 0xB6, 0xDA, 0x21, 0x10, 0xFF, 0xF3, 0xD2, 0xCD, 0x0C, 0x13, 0xEC, 0x5F, 0x97, 0x44, 0x17, 0xC4, 0xA7, 0x7E, 0x3D, 0x64, 0x5D, 0x19, 0x73, 0x60, 0x81, 0x4F, 0xDC, 0x22, 0x2A, 0x90, 0x88, 0x46, 0xEE, 0xB8, 0x14, 0xDE, 0x5E, 0x0B, 0xDB, 0xE0, 0x32, 0x3A, 0x0A, 0x49, 0x06, 0x24, 0x5C, 0xC2, 0xD3, 0xAC, 0x62, 0x91, 0x95, 0xE4, 0x79, 0xE7, 0xC8, 0x37, 0x6D, 0x8D, 0xD5, 0x4E, 0xA9, 0x6C, 0x56, 0xF4, 0xEA, 0x65, 0x7A, 0xAE, 0x08, 0xBA, 0x78, 0x25, 0x2E, 0x1C, 0xA6, 0xB4, 0xC6, 0xE8, 0xDD, 0x74, 0x1F, 0x4B, 0xBD, 0x8B, 0x8A, 0x70, 0x3E, 0xB5, 0x66, 0x48, 0x03, 0xF6, 0x0E, 0x61, 0x35, 0x57, 0xB9, 0x86, 0xC1, 0x1D, 0x9E, 0xE1, 0xF8, 0x98, 0x11, 0x69, 0xD9, 0x8E, 0x94, 0x9B, 0x1E, 0x87, 0xE9, 0xCE, 0x55, 0x28, 0xDF, 0x8C, 0xA1, 0x89, 0x0D, 0xBF, 0xE6, 0x42, 0x68, 0x41, 0x99, 0x2D, 0x0F, 0xB0, 0x54, 0xBB, 0x16]
  4. sinv = [ 0x52, 0x09, 0x6A, 0xD5, 0x30, 0x36, 0xA5, 0x38, 0xBF, 0x40, 0xA3, 0x9E, 0x81, 0xF3, 0xD7, 0xFB, 0x7C, 0xE3, 0x39, 0x82, 0x9B, 0x2F, 0xFF, 0x87, 0x34, 0x8E, 0x43, 0x44, 0xC4, 0xDE, 0xE9, 0xCB, 0x54, 0x7B, 0x94, 0x32, 0xA6, 0xC2, 0x23, 0x3D, 0xEE, 0x4C, 0x95, 0x0B, 0x42, 0xFA, 0xC3, 0x4E, 0x08, 0x2E, 0xA1, 0x66, 0x28, 0xD9, 0x24, 0xB2, 0x76, 0x5B, 0xA2, 0x49, 0x6D, 0x8B, 0xD1, 0x25, 0x72, 0xF8, 0xF6, 0x64, 0x86, 0x68, 0x98, 0x16, 0xD4, 0xA4, 0x5C, 0xCC, 0x5D, 0x65, 0xB6, 0x92, 0x6C, 0x70, 0x48, 0x50, 0xFD, 0xED, 0xB9, 0xDA, 0x5E, 0x15, 0x46, 0x57, 0xA7, 0x8D, 0x9D, 0x84, 0x90, 0xD8, 0xAB, 0x00, 0x8C, 0xBC, 0xD3, 0x0A, 0xF7, 0xE4, 0x58, 0x05, 0xB8, 0xB3, 0x45, 0x06, 0xD0, 0x2C, 0x1E, 0x8F, 0xCA, 0x3F, 0x0F, 0x02, 0xC1, 0xAF, 0xBD, 0x03, 0x01, 0x13, 0x8A, 0x6B, 0x3A, 0x91, 0x11, 0x41, 0x4F, 0x67, 0xDC, 0xEA, 0x97, 0xF2, 0xCF, 0xCE, 0xF0, 0xB4, 0xE6, 0x73, 0x96, 0xAC, 0x74, 0x22, 0xE7, 0xAD, 0x35, 0x85, 0xE2, 0xF9, 0x37, 0xE8, 0x1C, 0x75, 0xDF, 0x6E, 0x47, 0xF1, 0x1A, 0x71, 0x1D, 0x29, 0xC5, 0x89, 0x6F, 0xB7, 0x62, 0x0E, 0xAA, 0x18, 0xBE, 0x1B, 0xFC, 0x56, 0x3E, 0x4B, 0xC6, 0xD2, 0x79, 0x20, 0x9A, 0xDB, 0xC0, 0xFE, 0x78, 0xCD, 0x5A, 0xF4, 0x1F, 0xDD, 0xA8, 0x33, 0x88, 0x07, 0xC7, 0x31, 0xB1, 0x12, 0x10, 0x59, 0x27, 0x80, 0xEC, 0x5F, 0x60, 0x51, 0x7F, 0xA9, 0x19, 0xB5, 0x4A, 0x0D, 0x2D, 0xE5, 0x7A, 0x9F, 0x93, 0xC9, 0x9C, 0xEF, 0xA0, 0xE0, 0x3B, 0x4D, 0xAE, 0x2A, 0xF5, 0xB0, 0xC8, 0xEB, 0xBB, 0x3C, 0x83, 0x53, 0x99, 0x61, 0x17, 0x2B, 0x04, 0x7E, 0xBA, 0x77, 0xD6, 0x26, 0xE1, 0x69, 0x14, 0x63, 0x55, 0x21, 0x0C, 0x7D ]
  5.  
  6. import array
  7. import hashlib,struct
  8. from itertools import *
  9. import os,SocketServer
  10. import base64 as b64
  11. key="SORRY!_THIS_KEY_IS_FAKE!"
  12. k1,k2,k3=array.array("B",key[0:8]),array.array("B",key[8:16]),array.array("B",key[16:24])[::-1]
  13.  
  14. def subStr(toSub):
  15.    sub= lambda x: s[x]
  16.    toSub=map(sub,toSub)
  17.    return toSub
  18.  
  19. lper,luper=([51, 43, 42, 47, 19, 49, 10, 23, 18, 11, 1, 60, 24, 31, 40, 54, 12, 56, 38, 59, 52, 6, 50, 13, 53, 34, 27, 17, 2, 3, 29, 26, 21, 30, 62, 20, 45, 16, 39, 28, 48, 35, 15, 22, 63, 58, 32, 57, 25, 33, 14, 36, 44, 37, 0, 8, 41, 5, 7, 9, 55, 46, 4, 61], [54, 10, 28, 29, 62, 57, 21, 58, 55, 59, 6, 9, 16, 23, 50, 42, 37, 27, 8, 4, 35, 32, 43, 7, 12, 48, 31, 26, 39, 30, 33, 13, 46, 49, 25, 41, 51, 53, 18, 38, 14, 56, 2, 1, 52, 36, 61, 3, 40, 5, 22, 0, 20, 24, 15, 60, 17, 47, 45, 19, 11, 63, 34, 44])
  20. for el in xrange(len(luper)):
  21.    assert(luper[lper[el]]==el)
  22.  
  23. def permute(strry):
  24.    p1=struct.unpack("Q",strry)[0]
  25.    rP1=0L
  26.    for el,el2 in zip(xrange(len(luper)),lper):
  27.       isSet1=(p1&(1L<<el))>>el
  28.       rP1|=(isSet1<<el2)
  29.    return struct.pack("Q",rP1)
  30. def unPermute(strry):
  31.    try:
  32.       p1=struct.unpack("Q",strry)[0]
  33.    except:
  34.       print "#"*200
  35.       print "%r %d" %(strry,len(strry))
  36.       print "#"*200
  37.       p1=1
  38.    rP1=0L
  39.    for el,el2 in zip(xrange(len(luper)),luper):
  40.       isSet1=(p1&(1<<el))>>el
  41.       rP1|=(isSet1<<el2)
  42.    return struct.pack("Q",rP1)
  43.  
  44.  
  45.  
  46.  
  47. def unSubStr(toSub):
  48.    sub= lambda x: sinv[x]
  49.    toSub=map(sub,toSub)
  50.    return toSub
  51.  
  52.  
  53. from collections import deque
  54. def encrypt(strry):
  55.    toEnc= array.array("B",strry)
  56.    global k1,k2,k3
  57.    for el in xrange(len(k1)):
  58.       toEnc[el]=toEnc[el]^k1[el]
  59.  
  60.    toEnc=subStr(toEnc)
  61.    toEnc=map(ord,permute("".join(map(chr,toEnc))))
  62.  
  63.    for el in xrange(len(k2)):
  64.       toEnc[el]=toEnc[el]^k2[el]
  65.    toEnc=subStr(toEnc)
  66.    toEnc=map(ord,permute("".join(map(chr,toEnc))))
  67.  
  68.    ints=0
  69.    kadd=0
  70.    toEnc.reverse()
  71.    #defeat linearity to beat off the sat solvers
  72.    for el in xrange(len(toEnc)):
  73.       ints+=((toEnc[el])<<(8*el))
  74.       kadd+=((k3[el])<<(8*el))
  75.    ints+=kadd
  76.    ints=ints%18446744073709551615
  77.    ret=struct.pack("Q",ints)
  78.    return ret
  79.  
  80.  
  81. def decrypt(strry):
  82.    toDec=struct.unpack("Q",strry)[0]
  83.    global k1,k2,k3
  84.    kadd=0
  85.  
  86.    for el in xrange(8):
  87.       kadd+=((k3[el])<<(8*el))
  88.    toDec-=kadd
  89.    ints=toDec%18446744073709551615
  90.    toDec=[]
  91.    while ints>0:
  92.       toDec.append(int(ints&0xff))
  93.       ints=ints>>8
  94.    while len(toDec)<8:
  95.       toDec.append(0)
  96.    toDec.reverse()
  97.  
  98.    toDec=map(ord,unPermute("".join(map(chr,toDec))))
  99.    toDec=unSubStr(toDec)
  100.  
  101.    for el in xrange(len(k1)):
  102.       toDec[el]=toDec[el]^k2[el]
  103.  
  104.    toDec=map(ord,unPermute("".join(map(chr,toDec))))
  105.    toDec=unSubStr(toDec)
  106.  
  107.    for el in xrange(len(k1)):
  108.       toDec[el]=toDec[el]^k1[el]
  109.    ret=toDec
  110.    return "".join(map(chr,ret))
  111.  
  112. class  SignHandler(SocketServer.BaseRequestHandler):
  113.    def handle(self):
  114.       req=self.request
  115.       proof=b64.b64encode(os.urandom(12))
  116.       req.sendall("You must first solve a puzzle, a sha1 sum ending in 16 bit's set to 1, it must be of length %s bytes, starting with %s"%(len(proof)+5,proof))
  117.       test=req.recv(21)
  118.       ha=hashlib.sha1()
  119.       ha.update(test)
  120.       if test[0:16]!=proof or ord(ha.digest()[-1])!=0xff or ord(ha.digest()[-2])!=0xff:
  121.          req.sendall("NOPE")
  122.          req.close()
  123.          return
  124.  
  125.       leng=struct.unpack("H",req.recv(2))[0]
  126.       if leng%8!=0:
  127.          req.sendall("Must be a full block size aka mod 8")
  128.          req.close()
  129.          return
  130.       s=""
  131.       while len(s)<leng:
  132.          s+=req.recv(leng-len(s))
  133.       if len(s)> leng:
  134.          req.sendall("Nice try asshole")
  135.          req.close()
  136.          return
  137.       rets=""
  138.       for x in xrange(0,leng,8):
  139.          rets+=encrypt(s[x:x+8])
  140.       req.sendall("HERE IS YOUR STRING %r"%rets)
  141.       req.close()
  142.  
  143.  
  144.  
  145.  
  146.  
  147. class ThreadedServer(SocketServer.ThreadingMixIn, SocketServer.TCPServer):
  148.    pass
  149.  
  150. def sanityCheck():
  151.    for x in xrange(500000):
  152.       toCheck=os.urandom(8)
  153.       blah=encrypt(toCheck)
  154.       assert(toCheck==decrypt(blah))
  155. #sanityCheck()
  156.  
  157. if __name__ == "__main__":
  158.    HOST, PORT = "", 9999
  159.    server = ThreadedServer((HOST, PORT), SignHandler)
  160.    server.allow_reuse_address = True
  161.    server.serve_forever()
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!