Certificates

Certificates¶

Used to bind names to Public Keys

https://smallstep.com/blog/everything-pki.html

Security¶

Online ROCA Checker
Factoring as a Service with AWS
Factordb
https://yurichev.com/news/20220210_RSA/

Factoring a Public Key

>>> ./RsaCtfTool.py --publickey ../factor.pub --private --verbose    
[*] Performing hastads attack.
[*] Performing prime_n attack.
[*] Performing factordb attack.
[*] Performing pastctfprimes attack.
[*] Loaded 71 primes
[*] Performing mersenne_primes attack.
[*] Performing noveltyprimes attack.
[*] Performing smallq attack.
[*] Performing wiener attack.
[*] Performing comfact_cn attack.
[*] Performing primefac attack.
[*] Performing fermat attack.
[*] Performing siqs attack.
[*] Yafu SIQS is not working.
[*] Performing Pollard_p_1 attack.
[*] Performing londahl attack.
[*] Performing smallfraction attack.
[*] Performing boneh_durfee attack.
[*] Performing qicheng attack.
[*] Performing ecm attack.
[*] ECM Method can run forever and may never succeed. Hit Ctrl-C to bail out.

Getting private/public RSA Info:

./RsaCtfTool.py --key ../factor.pub --dumpkey --ext
[*] n: 12643380274446122704738894267866060871277000888126503997980301090006704956686610631541193235440879844124057207573720260120696127406133715584161739342380643
[*] e: 65537

Known Private keys¶

https://github.com/sec-consult/houseofkeys
https://github.com/rapid7/ssh-badkeys

Encodings¶

https://luca.ntop.org/Teaching/Appunti/asn1.html
https://letsencrypt.org/docs/a-warm-welcome-to-asn1-and-der/