Book Image

Hands-On Cryptography with Python

By : Samuel Bowne
Book Image

Hands-On Cryptography with Python

By: Samuel Bowne

Overview of this book

Cryptography is essential for protecting sensitive information, but it is often performed inadequately or incorrectly. Hands-On Cryptography with Python starts by showing you how to encrypt and evaluate your data. The book will then walk you through various data encryption methods,such as obfuscation, hashing, and strong encryption, and will show how you can attack cryptographic systems. You will learn how to create hashes, crack them, and will understand why they are so different from each other. In the concluding chapters, you will use three NIST-recommended systems: the Advanced Encryption Standard (AES), the Secure Hash Algorithm (SHA), and the Rivest-Shamir-Adleman (RSA). By the end of this book, you will be able to deal with common errors in encryption.

Related Content you might be interested in

Current Title:

Small book image
Hands-On Cryptography with Python
Samuel Bowne
Jun, 2018 | 100 pages
Small book image
Essential Cryptography for JavaScript Developers.
Alessandro Segala
Feb, 2022 | 220 pages
Small book image
Cryptography Algorithms
Massimo Bertaccini
Mar, 2022 | 358 pages
Small book image
Password Cracking with Kali Linux
Daniel W Dieterle
Feb, 2024 | 213 pages
Table of Contents (9 chapters)
Title Page
Title Page
Packt Upsell
Packt Upsell
Contributor
Contributor
Preface
Preface
Free Chapter
1
Obfuscation
Obfuscation
About cryptography
Installing and setting up Python
Caesar cipher and ROT13
base64 encoding
XOR
Challenge 1 – the Caesar cipher
Challenge 2 – base64
Challenge 3 – XOR
Summary
2
Hashing
Hashing
MD5 and SHA hashes
Windows password hashes
Linux password hashes
Challenge 1 – cracking Windows hashes
Challenge 2 – cracking many-round hashes
Challenge 3 – cracking Linux hashes
Summary
3
Strong Encryption
Strong Encryption
Strong encryption with AES
ECB and CBC modes
Padding oracle attack
Strong encryption with RSA
Challenge – cracking RSA with similar factors
What's next?
Summary
Other Books You May Enjoy
Other Books You May Enjoy
Leave a review - let other readers know what you think
Index
Index

Padding oracle attack

In this section, we will see how padding works in the PKCS # 7 system and then show you a system with the PADDING ERROR message. Plus, we'll also deal with the padding oracle attack, which makes it possible to craft ciphertext that will decode 20 plaintext we want.

Here is the encryption routine:

We'll have three blocks of data, each 16-bytes long. We'll encrypt the data with AES in CBC mode, so in comes the initialization vector and the key. You produce three blocks of ciphertext, and each one of the blocks after the first uses the output of the previous encryption routine as an initialization vector to XOR with the plaintext.

Here's how PKCS#7 padding works:

  • If one byte of padding is needed, use 01
  • If two bytes of padding are needed, use 0202
  • If three bytes of padding are needed, use 030303
  • And so on...

If we have a message here that is only 47-bytes long, then we can't fill the last block, so we have to add a byte of padding. You could use a variety of numbers as the padding...

Previous Section
End of Section 4
Next Section