Tags: re
Rating:
#!/usr/bin/python3
import os
from z3 import *
from pwn import *
from subprocess import Popen, PIPE, STDOUT
def bin_solving(data1, data2):
s = Solver()
a1 = [BitVec('a1_%d'%i, 8) for i in range(14)]
s.add( (a1[4] ^ a1[0] ^ a1[2]) == data1[0] )
s.add( (a1[4] ^ a1[2] ^ a1[6]) == data1[1] )
s.add( (a1[6] ^ a1[4] ^ a1[8]) == data1[2] )
s.add( (a1[8] ^ a1[6] ^ a1[10]) == data1[3] )
s.add( (a1[10] ^ a1[8] ^ a1[12]) == data1[4] )
s.add( (a1[12] ^ a1[10] ^ a1[1]) == data1[5] )
s.add( (a1[1] ^ a1[12] ^ a1[3]) == data1[6] )
s.add( (a1[3] ^ a1[1] ^ a1[5]) == data1[7] )
s.add( (a1[5] ^ a1[3] ^ a1[7]) == data1[8] )
s.add( (a1[7] ^ a1[5] ^ a1[9]) == data1[9] )
s.add( (a1[9] ^ a1[7] ^ a1[11]) == data1[10] )
s.add( (a1[11] ^ a1[9] ^ a1[13]) == data1[11] )
s.add( (a1[13] ^ a1[11] ^ a1[0]) == data1[12] )
s.add( (a1[0] ^ a1[13] ^ a1[2]) == data1[13] )
s.add( (a1[1] ^ a1[0] ^ a1[2]) == data2[0] )
s.add( (a1[2] ^ a1[1] ^ a1[3]) == data2[1] )
s.add( (a1[3] ^ a1[2] ^ a1[4]) == data2[2] )
s.add( (a1[4] ^ a1[3] ^ a1[5]) == data2[3] )
s.add( (a1[5] ^ a1[4] ^ a1[6]) == data2[4] )
s.add( (a1[6] ^ a1[5] ^ a1[7]) == data2[5] )
s.add( (a1[7] ^ a1[6] ^ a1[8]) == data2[6] )
s.add( (a1[8] ^ a1[7] ^ a1[9]) == data2[7] )
s.add( (a1[9] ^ a1[8] ^ a1[10]) == data2[8] )
s.add( (a1[10] ^ a1[9] ^ a1[11]) == data2[9] )
s.add( (a1[11] ^ a1[10] ^ a1[12]) == data2[10] )
s.add( (a1[12] ^ a1[11] ^ a1[13]) == data2[11] )
s.add( (a1[13] ^ a1[12] ^ a1[0]) == data2[12] )
s.add( (a1[0] ^ a1[13] ^ a1[1]) == data2[13] )
if (s.check() == sat):
model = s.model()
res = ''.join(chr(int(str(model[a1[i]]))) for i in range(14))
return res
else:
exit(print('nosat'))
def arm_solving(data1, data2):
s = Solver()
a1 = [BitVec('a1_%d'%i, 8) for i in range(14)]
s.add( (a1[2] ^ a1[4] ^ a1[0]) == data1[0] )
s.add( (a1[6] ^ a1[4] ^ a1[2]) == data1[1] )
s.add( (a1[8] ^ a1[6] ^ a1[4]) == data1[2] )
s.add( (a1[10] ^ a1[8] ^ a1[6]) == data1[3] )
s.add( (a1[12] ^ a1[10] ^ a1[8]) == data1[4] )
s.add( (a1[1] ^ a1[12] ^ a1[10]) == data1[5] )
s.add( (a1[3] ^ a1[1] ^ a1[12]) == data1[6] )
s.add( (a1[5] ^ a1[3] ^ a1[1]) == data1[7] )
s.add( (a1[7] ^ a1[5] ^ a1[3]) == data1[8] )
s.add( (a1[9] ^ a1[7] ^ a1[5]) == data1[9] )
s.add( (a1[11] ^ a1[9] ^ a1[7]) == data1[10] )
s.add( (a1[13] ^ a1[11] ^ a1[9]) == data1[11] )
s.add( (a1[0] ^ a1[13] ^ a1[11]) == data1[12] )
s.add( (a1[2] ^ a1[0] ^ a1[13]) == data1[13] )
s.add( (a1[2] ^ a1[1] ^ a1[0]) == data2[0] )
s.add( (a1[3] ^ a1[2] ^ a1[1]) == data2[1] )
s.add( (a1[4] ^ a1[3] ^ a1[2]) == data2[2] )
s.add( (a1[5] ^ a1[4] ^ a1[3]) == data2[3] )
s.add( (a1[6] ^ a1[5] ^ a1[4]) == data2[4] )
s.add( (a1[7] ^ a1[6] ^ a1[5]) == data2[5] )
s.add( (a1[8] ^ a1[7] ^ a1[6]) == data2[6] )
s.add( (a1[9] ^ a1[8] ^ a1[7]) == data2[7] )
s.add( (a1[10] ^ a1[9] ^ a1[8]) == data2[8] )
s.add( (a1[11] ^ a1[10] ^ a1[9]) == data2[9] )
s.add( (a1[12] ^ a1[11] ^ a1[10]) == data2[10] )
s.add( (a1[13] ^ a1[12] ^ a1[11]) == data2[11] )
s.add( (a1[0] ^ a1[13] ^ a1[12]) == data2[12] )
s.add( (a1[1] ^ a1[0] ^ a1[13]) == data2[13] )
if (s.check() == sat):
model = s.model()
res = ''.join(chr(int(str(model[a1[i]]))) for i in range(14))
return res
else:
exit(print('nosat'))
def aarch64_solving(data1, data2):
s = Solver()
a1 = [BitVec('a1_%d'%i, 8) for i in range(14)]
s.add( (((a1[0] ^ a1[4]) & 0xFF ^ a1[2]) & 0xFF) == data1[0] )
s.add( (((a1[2] ^ a1[4]) & 0xFF ^ a1[6]) & 0xFF) == data1[1] )
s.add( (((a1[4] ^ a1[6]) & 0xFF ^ a1[8]) & 0xFF) == data1[2] )
s.add( (((a1[6] ^ a1[8]) & 0xFF ^ a1[10]) & 0xFF) == data1[3] )
s.add( (((a1[8] ^ a1[10]) & 0xFF ^ a1[12]) & 0xFF) == data1[4] )
s.add( (((a1[10] ^ a1[12]) & 0xFF ^ a1[1]) & 0xFF) == data1[5] )
s.add( (((a1[12] ^ a1[1]) & 0xFF ^ a1[3]) & 0xFF) == data1[6] )
s.add( (((a1[1] ^ a1[3]) & 0xFF ^ a1[5]) & 0xFF) == data1[7] )
s.add( (((a1[3] ^ a1[5]) & 0xFF ^ a1[7]) & 0xFF) == data1[8] )
s.add( (((a1[5] ^ a1[7]) & 0xFF ^ a1[9]) & 0xFF) == data1[9] )
s.add( (((a1[7] ^ a1[9]) & 0xFF ^ a1[11]) & 0xFF) == data1[10] )
s.add( (((a1[9] ^ a1[11]) & 0xFF ^ a1[13]) & 0xFF) == data1[11] )
s.add( (((a1[11] ^ a1[13]) & 0xFF ^ a1[0]) & 0xFF) == data1[12] )
s.add( (((a1[13] ^ a1[0]) & 0xFF ^ a1[2]) & 0xFF) == data1[13] )
s.add( (((a1[0] ^ a1[1]) & 0xFF ^ a1[2]) & 0xFF) == data2[0] )
s.add( (((a1[1] ^ a1[2]) & 0xFF ^ a1[3]) & 0xFF) == data2[1] )
s.add( (((a1[2] ^ a1[3]) & 0xFF ^ a1[4]) & 0xFF) == data2[2] )
s.add( (((a1[3] ^ a1[4]) & 0xFF ^ a1[5]) & 0xFF) == data2[3] )
s.add( (((a1[4] ^ a1[5]) & 0xFF ^ a1[6]) & 0xFF) == data2[4] )
s.add( (((a1[5] ^ a1[6]) & 0xFF ^ a1[7]) & 0xFF) == data2[5] )
s.add( (((a1[6] ^ a1[7]) & 0xFF ^ a1[8]) & 0xFF) == data2[6] )
s.add( (((a1[7] ^ a1[8]) & 0xFF ^ a1[9]) & 0xFF) == data2[7] )
s.add( (((a1[8] ^ a1[9]) & 0xFF ^ a1[10]) & 0xFF) == data2[8] )
s.add( (((a1[9] ^ a1[10]) & 0xFF ^ a1[11]) & 0xFF) == data2[9] )
s.add( (((a1[10] ^ a1[11]) & 0xFF ^ a1[12]) & 0xFF) == data2[10] )
s.add( (((a1[11] ^ a1[12]) & 0xFF ^ a1[13]) & 0xFF) == data2[11] )
s.add( (((a1[12] ^ a1[13]) & 0xFF ^ a1[0]) & 0xFF) == data2[12] )
s.add( (((a1[13] ^ a1[0]) & 0xFF ^ a1[1]) & 0xFF) == data2[13] )
if (s.check() == sat):
model = s.model()
res = ''.join(chr(int(str(model[a1[i]]))) for i in range(14))
return res
else:
exit(print('nosat'))
def powerpc64_solving(data1, data2):
s = Solver()
a1 = [BitVec('a1_%d'%i, 8) for i in range(14)]
s.add((a1[0] ^ a1[4] ^ a1[2]) == data1[0])
s.add((a1[2] ^ a1[4] ^ a1[6]) == data1[1])
s.add((a1[4] ^ a1[6] ^ a1[8]) == data1[2])
s.add((a1[6] ^ a1[8] ^ a1[10]) == data1[3])
s.add((a1[8] ^ a1[10] ^ a1[0xc]) == data1[4])
s.add((a1[10] ^ a1[0xc] ^ a1[1]) == data1[5])
s.add((a1[0xc] ^ a1[1] ^ a1[3]) == data1[6])
s.add((a1[1] ^ a1[3] ^ a1[5]) == data1[7])
s.add((a1[3] ^ a1[5] ^ a1[7]) == data1[8])
s.add((a1[5] ^ a1[7] ^ a1[9]) == data1[9])
s.add((a1[7] ^ a1[9] ^ a1[0xb]) == data1[10])
s.add((a1[9] ^ a1[0xb] ^ a1[0xd]) == data1[11])
s.add((a1[0xb] ^ a1[0xd] ^ a1[0]) == data1[12])
s.add((a1[0xd] ^ a1[0] ^ a1[2]) == data1[13])
s.add((a1[0] ^ a1[1] ^ a1[2]) == data2[0])
s.add((a1[1] ^ a1[2] ^ a1[3]) == data2[1])
s.add((a1[2] ^ a1[3] ^ a1[4]) == data2[2])
s.add((a1[3] ^ a1[4] ^ a1[5]) == data2[3])
s.add((a1[4] ^ a1[5] ^ a1[6]) == data2[4])
s.add((a1[5] ^ a1[6] ^ a1[7]) == data2[5])
s.add((a1[6] ^ a1[7] ^ a1[8]) == data2[6])
s.add((a1[7] ^ a1[8] ^ a1[9]) == data2[7])
s.add((a1[8] ^ a1[9] ^ a1[10]) == data2[8])
s.add((a1[9] ^ a1[10] ^ a1[0xb]) == data2[9])
s.add((a1[10] ^ a1[0xb] ^ a1[0xc]) == data2[10])
s.add((a1[0xb] ^ a1[0xc] ^ a1[0xd]) == data2[11])
s.add((a1[0xc] ^ a1[0xd] ^ a1[0]) == data2[12])
s.add((a1[0xd] ^ a1[0] ^ a1[1]) == data2[13])
if (s.check() == sat):
model = s.model()
res = ''.join(chr(int(str(model[a1[i]]))) for i in range(14))
return res
else:
exit(print('nosat'))
def array2xor(exe, a1, a2, ln=1):
data1 = [int(exe.read(a1+i*4,ln).hex(),16) for i in range(14)]
data2 = [int(exe.read(a2+i*4,ln).hex(), 16) for i in range(14)]
return data1, data2
def compile(a1, a2):
args1 = 'bzip2 -vfd '
args2 = 'chmod +x '
command1 = args1 + a1
command2 = args2 + a2
if os.path.isfile(a1):
return os.system(command1+';'+command2)
return os.system(command2)
def execute(fname, key=''):
p = Popen(['./'+fname], stdout=PIPE, stdin=PIPE, stderr=PIPE)
stdout_data = p.communicate(input=key.encode())[0]
print(stdout_data)
zipfile = 'surprise'
binfile = 'surprise.out'
arc = ['amd64', 'i386', 'aarch64', 'arm', 'powerpc64']
try:
while True:
context.log_level = 'CRITICAL'
compile(zipfile, binfile)
exe = ELF(binfile)
typ = exe.arch
if typ in arc:
log.info(f'Arch : {typ} Found')
if typ == arc[0]:
arr1, arr2 = array2xor(exe, 0x0202020, 0x0202060)
key = bin_solving(arr1, arr2)
elif typ == arc[1]:
arr1, arr2 = array2xor(exe, 0x03020, 0x03060)
key = bin_solving(arr1, arr2)
elif typ == arc[2]:
arr1, arr2 = array2xor(exe, 0x012010, 0x012048)
key = aarch64_solving(arr1, arr2)
elif typ == arc[3]:
arr1, arr2 = array2xor(exe, 0x011008, 0x011040)
key = arm_solving(arr1, arr2)
elif typ == arc[4]:
arr1, arr2 = array2xor(exe, 0x010020130, 0x010020168, 4)
key = powerpc64_solving(arr1, arr2)
execute(binfile, key)
else:
log.info(f'Arch : {typ} not found')
except pwnlib.exception.PwnlibException:
execute(binfile)
except KeyboardInterrupt as err:
print(err)
except Exception as err:
print(err)
