Crypto
Secure Server
8/18/2025
by yeknom
scriptCTF
WriteUp
Secure Server
📋 Description
John Doe uses this secure server where plaintext is never shared. Our Forensics Analyst was able to capture this traffic and the source code for the server. Can you recover John Doe's secrets?
🔗 Given Files
- server.py
- capture.pcap
💡 Walkthough
- Solve idea — Server flow:
- Prompt 1: client sends
enc = secret XOR key(hex). - Server computes
enc2 = enc XOR key = secret XOR key XOR key = secretand prints it as “Double encrypted”. - Prompt 2: client returns
dec = enc2 XOR key = secret XOR key. - Server reconstructs
secret = dec XOR key.
- In the PCAP we see: