Post

HackTheBox Brainy's Chyper Writeup

Posted
By x3ric
2 min read

Explore the basics of cybersecurity in the Brainy’s Chyper Challenge on Hack The Box. This easy-level Challenge introduces encryption reversal and file handling concepts in a clear and accessible way, perfect for beginners.

https://app.hackthebox.com/challenges/43

Description

Brainy likes playing around with esoteric programming. He also likes math and has therefore encrypted his very secure password with a popular encryption algorithm. Claiming that his password cannot be retrieved now, he has sent the ciphertext to some of his friends. Can you prove to Brainy that his password can actually be recovered?

Exploitation

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66

#!/usr/bin/python3
import json

def run_bf(code):
    mem = [0] * 30000
    dp = cp = 0
    output = ""
    brackets = {}
    stack = []
    for i, c in enumerate(code):
        if c == '[': stack.append(i)
        elif c == ']':
            start = stack.pop()
            brackets[start] = i
            brackets[i] = start
    while cp < len(code):
        c = code[cp]
        if c == '>': dp += 1
        elif c == '<': dp -= 1
        elif c == '+': mem[dp] = (mem[dp] + 1) % 256
        elif c == '-': mem[dp] = (mem[dp] - 1) % 256
        elif c == '.': output += chr(mem[dp])
        elif c == '[' and mem[dp] == 0: cp = brackets[cp]
        elif c == ']' and mem[dp] != 0: cp = brackets[cp]
        cp += 1
    return output

def decrypt_rsa_crt(c, p, q, dp, dq):
    def mod_inverse(a, m):
        def egcd(a, b):
            if a == 0: return b, 0, 1
            g, x, y = egcd(b % a, a)
            return g, y - (b // a) * x, x
        _, x, _ = egcd(a, m)
        return x % m
    m1 = pow(c, dp, p)
    m2 = pow(c, dq, q)
    qinv = mod_inverse(q, p)
    h = (qinv * (m1 - m2)) % p
    m = m2 + h * q
    return m

def main():
    with open('brainy.txt', 'r') as f:
        bf_code = f.read().strip()
    output = run_bf(bf_code)
    print("[+] Brainfuck decoded")
    params = {k: int(v) for k, v in 
             (pair.split(':') for pair in 
              output.strip('{}').split(','))}
    print("[+] Extracted RSA parameters")
    m = decrypt_rsa_crt(
        params['c'], params['p'], params['q'],
        params['dp'], params['dq']
    )
    print("[+] Decryption complete")
    try:
        hex_str = hex(m)[2:]
        if len(hex_str) % 2: hex_str = '0' + hex_str
        flag = bytes.fromhex(hex_str).decode()
        print("Flag:", flag)
    except:
        print("[-] Error decoding result")

if __name__ == "__main__":
    main()

Summary

The Brainy’s Chyper Challenge on Hack The Box combines concepts from cryptography and esoteric programming to decrypt a secure password. Participants must execute a Brainfuck program to extract RSA parameters and use the Chinese Remainder Theorem (CRT) to decrypt an RSA-encrypted message. This challenge provides an engaging way to practice working with Brainfuck code, modular arithmetic, and RSA decryption techniques, making it ideal for those seeking to improve their cryptographic problem-solving skills.

challenge
htb challenge writeup linux crypto
This post is licensed under CC BY 4.0 by the author.