Exetools

Exetools (https://forum.exetools.com/index.php)
-   General Discussion (https://forum.exetools.com/forumdisplay.php?f=2)
-   -   Find out Encryption (https://forum.exetools.com/showthread.php?t=6256)

aldente 01-05-2005 05:37
Find out Encryption
 
Hello!

Is there any little tool, to testout different Encryptions?

I have an encoded string, and I (guess I) know the key.

The only problem is: I don't know the encryption.

I'm just sure its not DES, but it could be 3DES, AES, or whatever,
so a little Tool, where you can enter crypted data,
key, and see output, would be nice.

Does anything like that exist?

Otherwise I would have to implement every encryption into a test-program and compile it :(

TmC 01-05-2005 06:58
and if it is a custom algorythm?

aldente 01-05-2005 08:15
I don't think so.

Let me explain:

There are several programs by one company, which communicate over the web, and use encryption to protect their data.

One (an Applet) uses simple DES-encryption (encrypted by an PHP-Script), and I already found the key. It does not consist of arbitrary hex-values, converted to ASCII-characters, it's a nice word ;)

It's likely, that the other programs (Win32) use the same key, but obviously different encryption. I may be completely wrong, but I think it's worth a try, before I spend hours with disassembling and analyzing the algorithm.

TmC 01-05-2005 08:19
Try the peID plugin.

gigaman 01-06-2005 02:13
Yes, try KANAL plugin for PEiD.
However, it works differently than you expected. It scans the file for known constants, strings etc. - thus identifying the algorithm. No encryption/decryption takes place.

bukkake 01-06-2005 03:32
There is also "Crypto Searcher" by x3chun, you can find it here hxxp://x3chun.wo.to/

willii 01-06-2005 09:50
I think there has no such mothed to find out the encryption.
First. there has so many encryptions include user define encryption that you even cann't know.
Second. encryptions just convert a binary stream to another. It has no feathers in it.

Maybe you can get some clue by the binary stream. But it is very difficult and not exactly.

gigaman 01-07-2005 03:59
True, there's an infinite number of encryptions - but the real applications often use "standard" ones, possibly even using common libraries.

egalerst 01-07-2005 04:17
If u really want to try out some of the common cryptos,
try it with Cristals Crypto Tool or Cryptool (hxxp://www.cryptool.de/)

CrackZ 01-07-2005 05:10
Hiya,

I recommend to everyone Cryptobench v1.0 as a great tool for testing out encryption methods, especially if you are fishing for which algorithm it might be ;-).

Generally I've found its better to either look up any constants (usually found in an initialisation function) or look up the first 4 chars of any lookup tables used in your mystery algorithm to discover if its a known crypto.

Of course you could also just compile a few examples using Crypto++ or Miracl and have a look at what various methods look like in ASM, bignum code is quite easy to identify once you've seen it a few times.

Regards

CrackZ.


All times are GMT +8. The time now is 19:39.

Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2026, vBulletin Solutions, Inc.
Always Your Best Friend: Aaron, JMI, ahmadmansoor, ZeNiX