CTFCrackTools
4.0.7 修复了两处bug
Author: Lin Chen (0chen)
Mister Security official website: http://www.acmesec.cn/
This tool can be imported as a burp plug-in. Warehouse address: DaE
Buy me a cup of coffee☕️
Jump to: https://github.com/0Chencc/CTFCrackTools/wiki/FAQ
Main page
add plugin
Mixed development using kotlin and java
This is probably the first tool framework applied to CTF in China.
Can be applied to Crypto, Misc...
Built-in current mainstream ciphers (including but not limited to Vigilian cipher, Caesar cipher, barrier cipher...)
Users can write plug-ins themselves, but only Python is supported. The writing method is also extremely simple. (Due to Jython's own reasons, it is temporarily unable to support Python3)
When importing the plug-in, be sure to confirm that the jython file has been loaded.
We come with some plugins in ready-made plugins available for users to use
The project has been enhanced. This reset only retains part of the core code, while refactoring the UI and optimization code to enable the framework to support more functions.
Project address: https://github.com/0Chencc/CTFCrackTools
Download the compiled version: releases
#-*- coding:utf-8 -*-
#一个函数调用的demo
def main ( input , a ):
return 'input is %s,key is %s' % ( input , a )
#我们希望能将插件开发者的信息存入程序中,所以需要定义author_info来进行开发者信息的注册
def author_info ():
info = {
"author" : "0chen" ,
"name" : "test_version" ,
"key" :[ "a" ],
"describe" : "plugin describe"
}
return infoNow let’s talk about the usage of these plug-ins in detail. Specifically, we should discuss the calling method of the framework.
Function: main
Description: This is the function called when the program calls the plug-in.
definition:
def main ( input ):
return 'succ'Function: author_info
Description: We hope to store the plug-in developer's information in the program, so we need to define author_info to register the developer information.
author: author information
name: plugin name
Key: Considering that certain passwords require keys, sometimes multiple keys are required. So you can register the key information, and a pop-up box will pop up when the program is called.
describe: This place is the description of the plug-in. Due to python2, it seems that the support for Chinese is not very complete. It is recommended that you use English to describe.
definition:
def author_info ():
info = {
"author" : "0chen" ,
"name" : "test_version" ,
"key" :[ "a" ],
"describe" : "plugin describe"
}
return infoBecause the tool call actually passes in the data through def mian(input) and then obtains the return data.
#!/usr/bin/env python
# -*- coding: utf-8 -*-
def vigenereDecrypto ( ciphertext , key ):
ascii = 'ABCDEFGHIJKLMNOPQRSTUVWXYZ'
keylen = len ( key )
ctlen = len ( ciphertext )
plaintext = ''
i = 0
while i < ctlen :
j = i % keylen
k = ascii . index ( key [ j ])
m = ascii . index ( ciphertext [ i ])
if m < k :
m += 26
plaintext += ascii [ m - k ]
i += 1
return plaintext
def author_info :
info = {
'name' : 'VigenereDecrypto' ,
'author' : 'naiquan' ,
'key' : 'key' ,
'describe' : 'VigenereDecrypto'
}
def main ( input , key ):
return vigenereDecrypto ( input . replace ( " " , "" ). upper (), key . replace ( " " , "" ). upper ())Call the demo with multiple parameters (registering the incoming function only needs to be registered in the form of a string array, as shown in the demo)
#-*- coding:utf-8 -*-
#多参数调用的demo
#abd分别为需要传入参数,基本上没有参数限制(没测过)
def main ( input , a , b , c ):
return 'input is %s,key a is %s,key b is %s,key c is %s' % ( input , a , b , c )
#我们希望能将插件开发者的信息存入程序中,所以需要定义author_info来进行开发者信息的注册
def author_info ():
info = {
"author" : "0chen" ,
"name" : "test_version" ,
"key" :[ "a" , "b" , "c" ],
"describe" : "plugin describe"
}
return info As a tool that has been released since 2016, since the author was in high school when it was released, he did not have the time or ability to update such a tool with a large audience. So far, I have received many CTF initial comments about this tool. Thanks to the scholar. Because I have been busy with my livelihood in the past two years, it is difficult to have time to take into account the development of this tool. However, many friends will still contact me on QQ and WeChat to provide valuable opinions on the development of this tool. This is also my motivation for updating from time to time.
I found that many domestic manufacturers have added this tool to their tool kits as a necessary tool for CTF. I am very grateful to these friends for their support. It is also because of them that my tool can be used by tens of thousands of people. The atmosphere in the ctf circle is growing day by day, and I hope that this tool can be used by everyone.
When I was a sophomore in high school, I participated in the first CTF competition in my life. At that time, I was tortured to pieces. At that time, we noticed that the first place also had a screenshot of this tool when submitting wp, which made me very happy. I hope that this tool can accompany the growth of ctfer. If there is anything that is not good enough, you are welcome to provide valuable opinions on the issue on github. I will definitely adopt it to the best of my ability.
I will always insist on open source, and welcome all manufacturers to continue to use my tools as a must-have tool for novices. Thank you all!
In addition: Mist Security Team has been looking for excellent CTF players. If you have friends who plan to join our team for development, please contact us via email: [email protected]
The difference between the old version and the new version is only the difference in UI. The latest version 4.0 abandoned the UI that was criticized by everyone in 3.0, and beautified the UI based on 2.0, which is the version that was found to be more popular according to the survey. I think the old version There is no need to exist anymore, so I set the project to private. I will reopen it if the demand is too high. Thank you all.
https://github.com/Acmesec/CTFCrackTools-V2
Our company undertakes various security trainings and penetration tests, please contact admin[#]hi-ourlife.com
