New Vignere
Another slight twist on a classic, see if you can recover the flag. (Wrap with picoCTF{})epdfglkfnbjbhbpicohidjgkhfnejeecmjfnejddgmhpndmchbmifnepdhdmhbahnew_vignere.py
- 1.
- 2.The hint for this challenge points to The Cryptanalysis section of Vigenère Cipher Wikipedia Page, which explains the "Kasiski examination". We can use an online Kasiski test tool to automatically find the key length to be
9. DCode shows that the key length could be3,9, or6. - 3.The Wikipedia page recommends using Kerckhoffs' method to discover the key letter (Caesar shift) for each column of the vignere cipher. However, that does not work in this case because the Vigenère table has been scrambled by the
b16_encodefunction. - 4.According to Wikipedia: "Once the length of the key is known, the ciphertext can be rewritten into that many columns, with each column corresponding to a single letter of the key. Each column consists of plaintext that has been encrypted by a single Caesar cipher. The Caesar key (shift) is just the letter of the Vigenère key that was used for that column. Using methods similar to those used to break the Caesar cipher, the letters in the ciphertext can be discovered."
- 5.I sort of implement the above method. The problem is the
b16_encodefunction, which splits the letters of the flag in two. Because of this function, we cannot simply bruteforce each column of the Vignere matrix as described above the output is transformed by theb16_decodefunction. The letters are merged together and the output might not fit within the alphabet even if the key is correct. - 6.However, we can still use the above method to make educated guesses about the key since if the
b16_decodefunction produces valid ascii output with a certain caesar key then it is likely to be the correct key. This bruteforce takes place on lines 53-77 of the solve script. - 7.Next, we bruteforce the letters of the key that we could not make educated guesses for using
itertools.permutations. We test every possible key (keeping the guessed letters constant) and display the output when it satisfying the assert statement on line 20 of new_vignere.py. - 8.Vignere Matrix:[['e' 'p' 'd' 'f' 'g' 'l' 'k' 'f' 'n']['b' 'j' 'b' 'h' 'b' 'p' 'i' 'c' 'o']['h' 'i' 'd' 'j' 'g' 'k' 'h' 'f' 'n']['e' 'j' 'e' 'e' 'c' 'm' 'j' 'f' 'n']['e' 'j' 'd' 'd' 'g' 'm' 'h' 'p' 'n']['d' 'm' 'c' 'h' 'b' 'm' 'i' 'f' 'n']['e' 'p' 'd' 'h' 'd' 'm' 'h' 'b' 'a']['h' '0' '0' '0' '0' '0' '0' '0' '0']]Trying column 0... Found key `b`...Trying column 1...Trying column 2... Found key `a`...Trying column 3...Trying column 4... Found key `a`... Found key `f`... Found key `g`...Trying column 5...Trying column 6... Found key `e`...Trying column 7... Found key `p`...Trying column 8... Found key `k`...Key Possibilities: {0: ['b'], 1: -1, 2: ['a'], 3: -1, 4: ['a', 'f', 'g'], 5: -1, 6: ['e'], 7: ['p'], 8: ['k']}Bruteforcing 3 values...1791it [00:00, 8611.44it/s]Flag Possibility: picoCTF{94bf01ad4b8a63425c32c02ba4c9632f}3360it [00:00, 9305.95it/s]Bruteforcing CompleteTotal Guesses: 3504
picoCTF{94bf01ad4b8a63425c32c02ba4c9632f}Last modified 6mo ago