lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
Date: Sun, 01 Apr 2012 12:59:20 +1000
From: Jonathan Brossard <endrazine@...il.com>
To: full-disclosure@...ts.grok.org.uk
Subject: Hackito 2012 Crypto Challenge

Dear crypto-hackers,

I crashed my laptop and lost my access to the database where the
encryption key of my backups is stored, can you help me to get it back ?
I know some checks are regularly done on the DB by a bot, maybe it can help…

Here is some code I got / start to code
http://2012.hackitoergosum.org/blog/wp-content/uploads/2012/04/HESCryptoChall1.tar.gz
:
- attacker.py : a MITM script, you should modify it to get my key.
- crypto.py and challenge1.py : sources of the database and the bot,
they are configured to run locally.
- keys.py : example keys I’ve built, server ones are different.

Address of both the database and the bot is games.labs.overthewire.org
(ports are the same than the ones in challenge1.py)
Please try your attack locally before flooding the server or your IP may
be banned.

If you have any question or problem don’t hesitate to contact me :
on weekdays : eloi.vanderbeken [{a}] oppida [{.}] fr
on weekend  : eloi.vanderbeken [{a}] gmail  [{.}] fr

If you succeed, send your solution (recovered key and how you got it) to
hes-cfp [{a}] lists.hackitoergosum [{.}] org


Thanks and regards,

-- 
Eloi & the Hackito team




Download attachment "signature.asc" of type "application/pgp-signature" (263 bytes)

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux - Powered by OpenVZ