You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Discovered while reversing some stuff encrypted with WinCrypt API, that MS's actual implementation of CryptDeriveKey for RC4 (and at least MD5) just takes the first 5 bytes of the input md5 hash, and pads the remaining 11 bytes with zeros (rather than the entire md5 hash).
Discovered while reversing some stuff encrypted with WinCrypt API, that MS's actual implementation of
CryptDeriveKey
for RC4 (and at least MD5) just takes the first 5 bytes of the input md5 hash, and pads the remaining 11 bytes with zeros (rather than the entire md5 hash).https://github.com/crappycrypto/wincrypto/blob/master/wincrypto/api.py#L92-L105
The text was updated successfully, but these errors were encountered: