create account

Zombie: Collection of tools to explore Blockchains security from Cryptography standpoint by cryptohazard

View this thread on: hive.blogpeakd.comecency.com
· @cryptohazard ·
$12.32
Zombie: Collection of tools to explore Blockchains security from Cryptography standpoint
#### Repository
https://github.com/cryptohazard/zombie

Zombie
=============

This is a collection of tools to explore security on Blockchains. We focus specifically on cryptography, notably random number generation, private key, wallet cracking, brainwallet etc.

Disclaimer
---------------
Just because you can steal someone else money does not mean you should do it.

Inspiration(great and funny talk at Defcon): https://github.com/ryancdotorg/brainflayer

## Installation
You need to have a working go(lang) environment in version >=1.9 and clone this repository. I can provide executable if there are requests.

You first need to get the dependency:
```
$ go get github.com/btcsuite/btcutil/base58
```

Now you can go in the ```exec``` folder and build the executable:
```
$ cd exec/
$ go build zombie.go
$ ./zombie
```
##  Usage
```
$ ./zombie -h
Usage of ./zombie:
  -f string
    	format file (default "guesses")
  -print
    	Print the generated candidates to standard output
  -wif
    	WIF cracker. Generate valid wif from the format or wordlist file
```

## Wordlist generation

### Goal
The goal is to generate password/keys when you know part of the target. This is not suitable if you have a high number of candidates for some parts.
Hopefully next versions will support candidates from file generated with the tools like [crunch](https://tools.kali.org/password-attacks/crunch) or [john the ripper](https://tools.kali.org/password-attacks/john).

### Format
First you need to fill the format file(see ```exec/format_example``` for an example):
```
// read the format line and put it in an array of candidates
// one time symbol between parts candidates
// first symbol is a delimiter follow by a part
// repeat the delimiter before each part
// ex: aEa3  	=> [E 3]
// ex: !g!d!e!p => [g d e p]
// ex: %OUI%NON%YES%NO => [OUI NON YES NO]
```
A useful feature that is missing is being able to set all the characters of the alphabet you are consider, using ```?```. The alphabets considered for addition are [base58](https://en.bitcoin.it/wiki/Base58Check_encoding) and [BIP39 wordlists](https://github.com/bitcoin/bips/blob/master/bip-0039/bip-0039-wordlists.md) mainly, and maybe hexadecimal/binary in case we want to play directly on bytes/bits level.

### Usage
The philosophy of this function is to use it with the cracking functions available (not much for now) or to print the resulting candidates, with the option ```-print```.
### Example: Monero Wallet Cracker
Let us assume you forgot *exactly* your Monero wallet password but you know the parts in it. You can use ```zombie``` to generate the password candidates and then pipe it to the wallet. I made a Bash script to use where your wallet and the Monero cli are located:
```
./monero_cracker.sh format_file brute_forcing_a_monero_wallet
```

## Wif Cracker: guess a private keys
This function is useful to take on  [contest like this one](http://jangodfrey.com/illustration/guess-my-bitcoin/guess-my-bitcoin.php):
![img](http://jangodfrey.com/illustration/guess-my-bitcoin/GUESS_MY_BITCOIN_tiled.png)
It will generate the candidates from the format, check if they are valid [wif](http://learnmeabitcoin.com/glossary/wif) and print the valid wif. You need to then derive them and see if they hit your target. Unfortunately, we did not get the 1/2 BTC :-( because we had a wrong assumption and did not consider the case color.

*Remember*:You need to have partial knowledge of the key, somehow, and hope that you can brute-force the remaining space.

The solution to the contest: [5JKPapJwgyEij3sxYRAEnixyiFgxqkVhgZXv9bWWknBexegx6tM](https://twitter.com/guessmybitcoin/status/781887409394974720)
You can test it with the provided ```guesses``` file.

## Next features
* Number of candidates generated and size
* Accept data generated from crunch/John
* Add Public key derivation for BTC, ETH, ...
* Brainwallet cracker
* Mnemonic phrases support(BIP39,...)
* Try very crappy random number generator: date, hour, low/high Hamming weight (00..00, 11..11)
* Advance ECC Discrete logarithm attacks


#### GitHub Account
https://github.com/cryptohazard
πŸ‘  , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , and 40 others
properties (23)
authorcryptohazard
permlinkzombie-collection-of-tools-to-explore-blockchains-security-from-cryptography-standpoint
categoryutopian-io
json_metadata{"community":"busy","app":"busy/2.5.5","format":"markdown","tags":["utopian-io","development","security","cryptocurrency","cryptography"],"users":[],"links":["https://github.com/cryptohazard/zombie","https://github.com/ryancdotorg/brainflayer","https://tools.kali.org/password-attacks/crunch","https://tools.kali.org/password-attacks/john","https://en.bitcoin.it/wiki/Base58Check_encoding","https://github.com/bitcoin/bips/blob/master/bip-0039/bip-0039-wordlists.md","http://jangodfrey.com/illustration/guess-my-bitcoin/guess-my-bitcoin.php","http://learnmeabitcoin.com/glossary/wif","https://twitter.com/guessmybitcoin/status/781887409394974720","https://github.com/cryptohazard"],"image":["http://jangodfrey.com/illustration/guess-my-bitcoin/GUESS_MY_BITCOIN_tiled.png"]}
created2018-08-16 22:27:33
last_update2018-08-16 22:27:33
depth0
children6
last_payout2018-08-23 22:27:33
cashout_time1969-12-31 23:59:59
total_payout_value9.357 HBD
curator_payout_value2.959 HBD
pending_payout_value0.000 HBD
promoted0.000 HBD
body_length4,122
author_reputation17,111,780,434,071
root_title"Zombie: Collection of tools to explore Blockchains security from Cryptography standpoint "
beneficiaries[]
max_accepted_payout1,000,000.000 HBD
percent_hbd10,000
post_id68,434,122
net_rshares9,492,750,151,033
author_curate_reward""
vote details (104)
@codingdefined ·
$9.95
Thank you for your contribution. Its a great start of a project. Few points, since cryptography is new for most of the people it would be better to give some examples and explain that bit more. Little bit of descriptive commit messages would be great. 

Would love to see about the the features which is on the pipeline.

Your contribution has been evaluated according to [Utopian policies and guidelines](https://join.utopian.io/guidelines), as well as a predefined set of questions pertaining to the category.

To view those questions and the relevant answers related to your post, [click here](https://review.utopian.io/result/3/2432232).

---- 
Need help? Write a ticket on https://support.utopian.io/. 
Chat with us on [Discord](https://discord.gg/uTyJkNm). 
[[utopian-moderator]](https://join.utopian.io/)
πŸ‘  , , , , , , , ,
properties (23)
authorcodingdefined
permlinkre-cryptohazard-zombie-collection-of-tools-to-explore-blockchains-security-from-cryptography-standpoint-20180817t040048647z
categoryutopian-io
json_metadata{"tags":["utopian-io"],"links":["https://join.utopian.io/guidelines","https://review.utopian.io/result/3/2432232","https://support.utopian.io/","https://discord.gg/uTyJkNm","https://join.utopian.io/"],"app":"steemit/0.1"}
created2018-08-17 04:00:48
last_update2018-08-17 04:00:48
depth1
children2
last_payout2018-08-24 04:00:48
cashout_time1969-12-31 23:59:59
total_payout_value7.464 HBD
curator_payout_value2.481 HBD
pending_payout_value0.000 HBD
promoted0.000 HBD
body_length811
author_reputation532,929,792,362,974
root_title"Zombie: Collection of tools to explore Blockchains security from Cryptography standpoint "
beneficiaries[]
max_accepted_payout1,000,000.000 HBD
percent_hbd10,000
post_id68,456,583
net_rshares7,634,457,678,925
author_curate_reward""
vote details (9)
@cryptohazard ·
This may have been my quickest review.

Sorry for the comments on my commits. I tend to make most of the code before I initiate a github repo. As such they are always concise in the beginning. 

For the level of details good question. Maybe I should do a separate copywriting post digging into the cryptography. I am afraid, if not, that the code will be lost in the middle of the maths details.

Thanks for the review, I will keep that in mind for the next updates. 
properties (22)
authorcryptohazard
permlinkre-codingdefined-re-cryptohazard-zombie-collection-of-tools-to-explore-blockchains-security-from-cryptography-standpoint-20180817t081459652z
categoryutopian-io
json_metadata{"community":"busy","app":"busy/2.5.5","format":"markdown","tags":["utopian-io"],"users":[],"links":[],"image":[]}
created2018-08-17 08:15:00
last_update2018-08-17 08:15:00
depth2
children0
last_payout2018-08-24 08:15:00
cashout_time1969-12-31 23:59:59
total_payout_value0.000 HBD
curator_payout_value0.000 HBD
pending_payout_value0.000 HBD
promoted0.000 HBD
body_length467
author_reputation17,111,780,434,071
root_title"Zombie: Collection of tools to explore Blockchains security from Cryptography standpoint "
beneficiaries[]
max_accepted_payout1,000,000.000 HBD
percent_hbd10,000
post_id68,475,225
net_rshares0
@utopian-io ·
$0.02
Thank you for your review, @codingdefined!

So far this week you've reviewed 10 contributions. Keep up the good work!
πŸ‘  ,
properties (23)
authorutopian-io
permlinkre-re-cryptohazard-zombie-collection-of-tools-to-explore-blockchains-security-from-cryptography-standpoint-20180817t040048647z-20180819t044008z
categoryutopian-io
json_metadata"{"app": "beem/0.19.42"}"
created2018-08-19 04:40:09
last_update2018-08-19 04:40:09
depth2
children0
last_payout2018-08-26 04:40:09
cashout_time1969-12-31 23:59:59
total_payout_value0.018 HBD
curator_payout_value0.004 HBD
pending_payout_value0.000 HBD
promoted0.000 HBD
body_length117
author_reputation152,955,367,999,756
root_title"Zombie: Collection of tools to explore Blockchains security from Cryptography standpoint "
beneficiaries[]
max_accepted_payout1,000,000.000 HBD
percent_hbd10,000
post_id68,663,597
net_rshares17,436,820,645
author_curate_reward""
vote details (2)
@coin.info ·
**Coins mentioned in post:**

Coin | | Price (USD) | πŸ“ˆ 24h | πŸ“‰ 7d
- | - | - | - | -
**BTC** | Bitcoin | 6346.786$ | _0.84%_ | _-2.9%_
**ECC** | ECC | 0.000$ | _-1.82%_ | _-22.06%_
**ETH** | Ethereum | 290.144$ | _2.81%_ | _-20.49%_
**XMR** | Monero | 91.858$ | _2.69%_ | _-8.03%_
properties (22)
authorcoin.info
permlinkre-cryptohazard-zombie-collection-of-tools-to-explore-blockchains-security-from-cryptography-standpoint-20180817t010940912z
categoryutopian-io
json_metadata{"app":"coininfo/1.0.0","format":"markdown"}
created2018-08-17 01:09:42
last_update2018-08-17 01:09:42
depth1
children0
last_payout2018-08-24 01:09:42
cashout_time1969-12-31 23:59:59
total_payout_value0.000 HBD
curator_payout_value0.000 HBD
pending_payout_value0.000 HBD
promoted0.000 HBD
body_length279
author_reputation133,144,230,969
root_title"Zombie: Collection of tools to explore Blockchains security from Cryptography standpoint "
beneficiaries[]
max_accepted_payout1,000,000.000 HBD
percent_hbd10,000
post_id68,444,698
net_rshares0
@steem-ua ·
Hi @cryptohazard! We are @steem-ua, a new Steem dApp, computing UserAuthority for all accounts on Steem. We are currently in test modus upvoting quality Utopian-io contributions! Nice work!
properties (22)
authorsteem-ua
permlinkre-zombie-collection-of-tools-to-explore-blockchains-security-from-cryptography-standpoint-20180817t041554z
categoryutopian-io
json_metadata"{"app": "beem/0.19.54"}"
created2018-08-17 04:15:54
last_update2018-08-17 04:15:54
depth1
children0
last_payout2018-08-24 04:15:54
cashout_time1969-12-31 23:59:59
total_payout_value0.000 HBD
curator_payout_value0.000 HBD
pending_payout_value0.000 HBD
promoted0.000 HBD
body_length189
author_reputation23,214,230,978,060
root_title"Zombie: Collection of tools to explore Blockchains security from Cryptography standpoint "
beneficiaries[]
max_accepted_payout1,000,000.000 HBD
percent_hbd10,000
post_id68,457,716
net_rshares0
@utopian-io ·
$0.02
Hey @cryptohazard
 **Thanks for contributing on Utopian**.
We’re already looking forward to your next contribution!

**Want to chat? Join us on Discord https://discord.gg/h52nFrV.**

<a href='https://v2.steemconnect.com/sign/account-witness-vote?witness=utopian-io&approve=1'>Vote for Utopian Witness!</a>
πŸ‘  ,
properties (23)
authorutopian-io
permlinkre-zombie-collection-of-tools-to-explore-blockchains-security-from-cryptography-standpoint-20180819t161532z
categoryutopian-io
json_metadata"{"app": "beem/0.19.42"}"
created2018-08-19 16:15:33
last_update2018-08-19 16:15:33
depth1
children0
last_payout2018-08-26 16:15:33
cashout_time1969-12-31 23:59:59
total_payout_value0.016 HBD
curator_payout_value0.004 HBD
pending_payout_value0.000 HBD
promoted0.000 HBD
body_length305
author_reputation152,955,367,999,756
root_title"Zombie: Collection of tools to explore Blockchains security from Cryptography standpoint "
beneficiaries[]
max_accepted_payout1,000,000.000 HBD
percent_hbd10,000
post_id68,713,113
net_rshares16,326,505,322
author_curate_reward""
vote details (2)