Files

 master

/

evil_ssrp.go

Copy path

Blame

Blame

Latest commit

 

History

History

54 lines (45 loc) · 891 Bytes

 master

/

evil_ssrp.go

Top

File metadata and controls

• Code
• Blame

54 lines (45 loc) · 891 Bytes

Raw

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

22

23

24

25

26

27

28

29

30

31

32

33

34

35

36

37

38

39

40

41

42

43

44

45

46

47

48

49

50

51

52

53

54

package set5

import (

"math/big"

)

type evilSSRP struct {

salt uint64

N, g *big.Int

A *big.Int

password string

}

func newEvilSSRP() *evilSSRP {

N, g := primes()

var salt uint64 = 0

return &evilSSRP{salt: salt, N: N, g: g}

}

func (s *evilSSRP) ExchangePub(A *big.Int) (uint64, *big.Int, *big.Int) {

s.A = A

b := big.NewInt(1)

B := &big.Int{}

B.Exp(g, b, N) // == g

return s.salt, B, big.NewInt(1)

}

func (s *evilSSRP) CheckAuth(cauth string) bool {

for _, p := range passwords() {

// S = A * (v ** 1)**1 % N

// S = A * v

// v = g**x

x := saltHmac(0, p)

v := &big.Int{}

v.Exp(s.g, x, s.N)

S := &big.Int{}

S.Mod(s.A, s.N)

S.Mul(S, v)

S.Mod(S, s.N)

K := SHA256Int(S)

if HMAC_SHA256(K.Text(16), s.salt) == cauth {

s.password = p

return false

}

}

return false

}

func (s *evilSSRP) GetPassword() string {

return s.password

}