Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Sun, 12 Sep 2021 14:01:09 +0200
From: magnum <>
Subject: Re: brute forcing AES key

On 2021-09-11 12:36, magnum wrote:
> On 2021-09-10 20:55, wrote:
>> Here are the info for the ETH vault:
>> ETH vault coin name: ETH
>> ETH public key: 0x4ac97B48CbBF9D54AE1f07bF72b10F19eBE30BB1
>> ETH private key: 
>> a5f54b647905db05a82d523fe0027a5da9760c2e97e4124448896f7333cdf96f
>> ETH seed: (left blank)
>> ETH vault comment: (left blank)
> Decrypted hex: 6b4b12535f595e(...)3934227d5d07070707070707
> As you can see we got expected padding this time: seven bytes of 07.
> Plaintext: kKS_Y^~Q]U
> udH","publicKey":"0x4ac97B48CbBF9D54AE1f07bF72b10F19eBE30BB1","privateKey":"a5f54b647905db05a82d523fe0027a5da9760c2e97e4124448896f7333cdf96f","seed":"","comment":"","id":"1631298033694"}] 
> We could look for that constant string "publicKey" within, say, the 
> first two blocks of AES. But I sort of think we can trust the padding as 
> long as the vault isn't completely empty - it's faster than scanning.
>> thanks to 0 padding up to 32 chars, using password foobar in the app 
>> GUI gives the same result as foobar0000, foobar0000000000, 
>> foobar000000000000000, etc., this app is so nicely coded… :)
> Yes, I noticed the iv is also 16 x ASCII "0" as opposed to null bytes.

I was mistaken, it's null bytes - and that's why my plaintext had the 
first block garbled.

> I now opened for 
> implementing this format.

We now have formats ready to merge: After realizing my mistake 
with the iv, we now only need to decrypt the very first block and look 
for the constant plaintext of '[{"coinName"' right at its start.

AES isn't very GPU-friendly so the OpenCL version "only" pushes about 
380Mp/s on a 2080ti.


Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.