docs: add http example

Author: imyelo

bin/padoracle.js

@@ -32,8 +32,9 @@ const MODE = {
       --plain, -p          Target plain text.
 
     Examples
-      $ padoracle ./examples/crackme-challenge.js --iv-cipher UGFkT3JhY2xlOml2L2NiYyiFmLTj7lhu4mAJHakEqcIIoYU0lIUXKx+PmTaUHLV0 --size 16
-      $ padoracle ./examples/crackme-challenge.js --size 16 --plain "{\\"id\\":1,\\"roleAdmin\\":true,\\"name\\":\\"yelo\\",\\"url\\":\\"https://yelo.cc\\"}"
+      $ padoracle ./examples/0.node/challenge.js --iv-cipher UGFkT3JhY2xlOml2L2NiYyiFmLTj7lhu4mAJHakEqcIIoYU0lIUXKx+PmTaUHLV0 --size 16
+      $ padoracle ./examples/0.node/challenge.js --size 16 --plain "{\\"id\\":1,\\"roleAdmin\\":true,\\"name\\":\\"yelo\\",\\"url\\":\\"https://yelo.cc\\"}"
+      $ padoracle ./examples/0.node/challenge.js --size 16 --plain "{\\"roleAdmin\\":1}"
   `, {
     flags: {
       ivCipher: {

examples/crackme-challenge.js renamed to examples/0.node/challenge.js

@@ -1,7 +1,7 @@
-const { Crypto } = require('../../test/helpers/crypto')
+const { Crypto } = require('../../common/crypto')
 const delay = require('delay')
 
-const SPEED = 1
+const DELAY = process.env.DELAY || 1
 
 const crackme = (() => {
   const KEY = Buffer.from('abcdefghijklmnopqrstuvwxyz123456')
@@ -30,8 +30,8 @@ const crackme = (() => {
         return createToken()
       },
       async auth (token) {
-        if (SPEED) {
-          await delay(SPEED)
+        if (DELAY) {
+          await delay(DELAY)
         }
         return getSession(token)
       },

examples/crackme/index.js renamed to examples/0.node/crackme/index.js

@@ -0,0 +1,11 @@
+## Get started
+
+### Crack Plain Text
+```bash
+padoracle ./challenge.js --iv-cipher UGFkT3JhY2xlOml2L2NiYyiFmLTj7lhu4mAJHakEqcIIoYU0lIUXKx+PmTaUHLV0 --size 16
+```
+
+### Modify Plain Text
+```bash
+padoracle ./challenge.js --size 16 --plain "{\"id\":1,\"roleAdmin\":true,\"name\":\"yelo\",\"url\":\"https://yelo.cc\"}"
+```

examples/0.node/readme.md

@@ -0,0 +1,18 @@
+const got = require('got')
+
+const PORT = process.env.PORT || 3000
+const ENDPOINT = `http://localhost:${PORT}`
+
+const DECRYPTION_ERROR = 'Unable to decrypt'
+
+const challenge = async (iv, cipher) => {
+  let response = await got.post(`${ENDPOINT}/flag`, {
+    body: Buffer.concat([iv, cipher]).toString('base64'),
+  }).catch((error) => error.response)
+  if (response.body === DECRYPTION_ERROR) {
+    return false
+  }
+  return true
+}
+
+export default challenge

examples/1.http/challenge.js

@@ -0,0 +1,68 @@
+const micro = require('micro')
+const { Crypto } = require('../../common/crypto')
+
+const PORT = process.env.PORT || 3000
+
+const KEY = Buffer.from('abcdefghijklmnopqrstuvwxyz123456')
+const DEFAULT_IV = Buffer.from('PadOracle:iv/cbc')
+const BLOCK_SIZE = DEFAULT_IV.length
+
+const DEFAULT_SESSION = '{"id":100,"roleAdmin":false}'
+
+const crypto = new Crypto(KEY)
+
+function createToken (session = DEFAULT_SESSION, iv = DEFAULT_IV) {
+  const cipher = crypto.encrypt(iv, session)
+  return `${Buffer.concat([iv, cipher]).toString('base64')}`
+}
+
+function getSession (token) {
+  let buf = Buffer.from(token, 'base64')
+  let iv = buf.slice(0, BLOCK_SIZE)
+  let cipher = buf.slice(BLOCK_SIZE)
+  return crypto.decrypt(iv, cipher).toString('utf8')
+}
+
+const handleErrors = fn => async (req, res) => {
+  try {
+    return await fn(req, res)
+  } catch (err) {
+    micro.send(res, err.statusCode, err.message)
+  }
+}
+
+const app = async (req) => {
+  if (req.url === '/token') {
+    return createToken()
+  }
+  if (req.url === '/flag' && req.method === 'POST') {
+    let body = await micro.text(req)
+    let session
+    try {
+      session = getSession(body)
+    } catch (error) {
+      throw micro.createError(400, 'Unable to decrypt')
+    }
+    try {
+      session = JSON.parse(session)
+    } catch (error) {
+      throw micro.createError(400, 'Unable to parse JSON')
+    }
+    if (!session.roleAdmin) {
+      throw micro.createError(401, 'Unauthorized')
+    }
+    return '{FLAG}'
+  }
+  throw micro.createError(404, 'Not found')
+}
+
+const server = micro(handleErrors(app))
+
+server.listen(PORT, () => {
+  console.log(`\nServer is running on ${PORT}`)
+  console.log('\nApi:')
+  console.log(`1. Get token: \`curl http://localhost:${PORT}/token\``)
+  console.log(`2. Get flag: \`curl -X POST http://localhost:${PORT}/flag -d {token}`)
+  console.log('\nExample:')
+  console.log(`curl -X POST http://localhost:${PORT}/flag -d $(curl http://localhost:${PORT}/token -s)`)
+})

examples/1.http/crackme/index.js

@@ -0,0 +1,29 @@
+## Get started
+### Prepair crackme server
+```bash
+node ./crackme
+```
+
+### Crack Plain Text
+```bash
+padoracle ./challenge.js --iv-cipher $(curl http://localhost:3000/token -s) --size 16
+```
+
+### Modify Plain Text
+```bash
+padoracle ./challenge.js --size 16 --plain "{\"id\":1,\"roleAdmin\":true,\"name\":\"yelo\",\"url\":\"https://yelo.cc\"}"
+```
+
+Or just:
+```bash
+padoracle ./challenge.js --size 16 --plain "{\"roleAdmin\":1}"
+# IV (hex): f2f3b43a1a14d81de52c59d3c132201b
+# Cipher (hex): ffffffffffffffffffffffffffffffff
+# IV-Cipher (base64): 8vO0OhoU2B3lLFnTwTIgG/////////////////////8=
+```
+
+### Verify Result
+```bash
+curl -X POST http://localhost:3000/flag -d "8vO0OhoU2B3lLFnTwTIgG/////////////////////8="
+# {FLAG}
+```

examples/1.http/readme.md

@@ -0,0 +1,20 @@
+const crypto = require('crypto')
+
+class Crypto {
+  constructor (key, algorithm = `aes-${key.length * 8}-cbc`) {
+    this.key = key
+    this.algorithm = algorithm
+  }
+
+  encrypt (iv, plain) {
+    let cipher = crypto.createCipheriv(this.algorithm, this.key, iv)
+    return Buffer.concat([cipher.update(plain), cipher.final()])
+  }
+
+  decrypt (iv, cipher) {
+    let decipher = crypto.createDecipheriv(this.algorithm, this.key, iv)
+    return Buffer.concat([decipher.update(cipher), decipher.final()])
+  }
+}
+
+exports.Crypto = Crypto

examples/common/crypto.js

@@ -31,7 +31,8 @@
   "homepage": "https://github.com/imyelo/padoracle#readme",
   "devDependencies": {
     "ava": "^1.4.1",
-    "delay": "^4.2.0"
+    "delay": "^4.2.0",
+    "micro": "^9.3.4"
   },
   "dependencies": {
     "esm": "^3.2.25",