如何使用PHP工具解密字符串(由MetaTrader Terminal 4 AES256的固定版本加密)?
我有一个字符串,比如“如何使用PHP工具解密字符串(由MetaTrader Terminal 4 AES256的固定版本加密)?,php,encryption,mql4,mt4,Php,Encryption,Mql4,Mt4,我有一个字符串,比如“我的密文”” 它已使用加密(使用的方法是加密AES256) 密钥(32字节)是,比如说,“1234567890ABCDEFGHIJKLMNOPQRSTUV” MQL4函数不提供输入IV的可能性,我也不知道是否使用了CBC-模式或其他模式 如何使用PHP获取“我的秘密文本” (我不得不告诉你,我试过了
我的密文”1234567890ABCDEFGHIJKLMNOPQRSTUVIVCBC和
但没有成功。
)
更新: 我从MQ得到了答案:
使用的模式为ECB
确实没有使用IV
。
所以,我的代码是:
<?php
$hexMessage = $_POST["enc_data"]; //this is in hex form, I used ArrayToHex before sending
$encryptedMessage = hex2bin($hexMessage);
$encryptionMethod = "AES-256-ECB";
$secretKey = "1234567890ABCDEFGHIJKLMNOPQRSTUV";
$decryptedMessage = openssl_decrypt($encryptedMessage, $encryptionMethod, $secretKey);
echo "Decrypted: $decryptedMessage";
?>
没有结果(即使我使用了OPENSSL\u RAW\u DATA
作为选项)
更新2:
使用mcrypt\u解密(…)
它可以工作。但是,我很好奇为什么openssl_decrypt(…)
不起作用(结果它什么也没给)
对于热衷于投票的人:
请首先注意给定的O/p使用环境,这里几乎没有选择AES256配置选项的选项,但O/p仍然需要破译php
端产生的“黑匣子”。感谢您的重新考虑。
请随时改进解决方案,或在此处以书面形式提供任何适用于O/P-given-use-case的更好的解决方案,这将始终受到热烈欢迎,不是吗
下面是实用解决方案的一部分:
MQL4端代码:
学术/理论方法:
使用aKnown-[Test]-SecretKEY
返回到匹配字符串,反向扫描php
CRYPT_BASE64
CRYPT_AES128
CRYPT_AES256
CRYPT_DES
CRYPT_HASH_SHA1
CRYPT_HASH_SHA256
CRYPT_HASH_MD5
php{OPENSSL_原始数据}OPENSSL_零填充}x{下面选择的每个方法}:
(
[0] => AES-128-CBC
[1] => AES-128-CFB
[2] => AES-128-CFB1
[3] => AES-128-CFB8
[4] => AES-128-ECB
[5] => AES-128-OFB
[6] => AES-192-CBC
[7] => AES-192-CFB
[8] => AES-192-CFB1
[9] => AES-192-CFB8
[10] => AES-192-ECB
[11] => AES-192-OFB
[12] => AES-256-CBC
[13] => AES-256-CFB
[14] => AES-256-CFB1
[15] => AES-256-CFB8
[16] => AES-256-ECB
[17] => AES-256-OFB
[18] => BF-CBC
[19] => BF-CFB
[20] => BF-ECB
[21] => BF-OFB
[22] => CAST5-CBC
[23] => CAST5-CFB
[24] => CAST5-ECB
[25] => CAST5-OFB
[26] => DES-CBC
[27] => DES-CFB
[28] => DES-CFB1
[29] => DES-CFB8
[30] => DES-ECB
[31] => DES-EDE
[32] => DES-EDE-CBC
[33] => DES-EDE-CFB
[34] => DES-EDE-OFB
[35] => DES-EDE3
[36] => DES-EDE3-CBC
[37] => DES-EDE3-CFB
[38] => DES-EDE3-OFB
[39] => DES-OFB
[40] => DESX-CBC
[41] => IDEA-CBC
[42] => IDEA-CFB
[43] => IDEA-ECB
[44] => IDEA-OFB
[45] => RC2-40-CBC
[46] => RC2-64-CBC
[47] => RC2-CBC
[48] => RC2-CFB
[49] => RC2-ECB
[50] => RC2-OFB
[51] => RC4
[52] => RC4-40
[53] => aes-128-cbc
[54] => aes-128-cfb
[55] => aes-128-cfb1
[56] => aes-128-cfb8
[57] => aes-128-ecb
[58] => aes-128-ofb
[59] => aes-192-cbc
[60] => aes-192-cfb
[61] => aes-192-cfb1
[62] => aes-192-cfb8
[63] => aes-192-ecb
[64] => aes-192-ofb
[65] => aes-256-cbc
[66] => aes-256-cfb
[67] => aes-256-cfb1
[68] => aes-256-cfb8
[69] => aes-256-ecb
[70] => aes-256-ofb
[71] => bf-cbc
[72] => bf-cfb
[73] => bf-ecb
[74] => bf-ofb
[75] => cast5-cbc
[76] => cast5-cfb
[77] => cast5-ecb
[78] => cast5-ofb
[79] => des-cbc
[80] => des-cfb
[81] => des-cfb1
[82] => des-cfb8
[83] => des-ecb
[84] => des-ede
[85] => des-ede-cbc
[86] => des-ede-cfb
[87] => des-ede-ofb
[88] => des-ede3
[89] => des-ede3-cbc
[90] => des-ede3-cfb
[91] => des-ede3-ofb
[92] => des-ofb
[93] => desx-cbc
[94] => idea-cbc
[95] => idea-cfb
[96] => idea-ecb
[97] => idea-ofb
[98] => rc2-40-cbc
[99] => rc2-64-cbc
[100] => rc2-cbc
[101] => rc2-cfb
[102] => rc2-ecb
[103] => rc2-ofb
[104] => rc4
[105] => rc4-40
)
实际做法: 去分发 使用
phpphp一个MT4EncryptedBlobnBytes=CryptDecode(相同的ENUM\u CRYPT\u方法、BLOBarray、KEYarray、RESarray)RESarrayphp(请不要混淆,MQL4
字符串和类似的惊喜,如果进入DLL/API集成细节,人们会在MT4端相遇,所以要小心。将这种快速而智能的MVP转换为快速原型MVP仍然是一件非常有趣的事。)
一个MCVE
-段:
MQL4端代码:
以下是两种不同的解密方法:
$decryptedMessage = mcrypt_decrypt(MCRYPT_RIJNDAEL_128, $secretKey, $encryptedMessage, MCRYPT_MODE_ECB);
$decryptedMessage = openssl_decrypt($encryptedMessage, "AES-256-ECB", $secretKey, OPENSSL_ZERO_PADDING|OPENSSL_RAW_DATA);
当您尝试某项操作时,您会发布带有错误的代码,包括精确的输入和精确的输出。否则,您对问题的唯一答案是:$decrypted=openssl\u decrypt($data,$method,$key)
这与我在php.net中编写的内容几乎相同。我有一个AES256加密字符串和一个密钥。我没有静脉注射(也不知道注射方式)。如何在PHP中恢复原始字符串?(我认为我完全笨拙的尝试是非常不相关的。我没有需要一点纠正的坏解决方案。我根本没有解决方案。)正如我所写的,如果你能发布准确的加密字符串、准确的密钥和准确的预期输出,这将更容易解决。那么至少我们可以尝试解密字符串。这边你所能做的就是我写的,这显然没有帮助。您可以尝试使用AES-256-*
进行解密,其中*
是模式,因此循环使用所有可用的模式。@N.B.您对这样的实验感兴趣吗?我可以为您提供一个测试用例(MT4端加密)。我所看到的问题是,任何一个真正关心(或必须关心)密码保护的人都不会轻易让任何类型的攻击者进入搜索空间,进行幼稚的暴力攻击。那么,我们怎么知道使用了什么加密端细节呢?@zaph:正如user3666197所提到的,我不能使用给定模式以外的任何其他模式(IV作为前缀似乎可以)。我应该在MQL4中为它编写一个自己的加密函数
(
[0] => AES-128-CBC
[1] => AES-128-CFB
[2] => AES-128-CFB1
[3] => AES-128-CFB8
[4] => AES-128-ECB
[5] => AES-128-OFB
[6] => AES-192-CBC
[7] => AES-192-CFB
[8] => AES-192-CFB1
[9] => AES-192-CFB8
[10] => AES-192-ECB
[11] => AES-192-OFB
[12] => AES-256-CBC
[13] => AES-256-CFB
[14] => AES-256-CFB1
[15] => AES-256-CFB8
[16] => AES-256-ECB
[17] => AES-256-OFB
[18] => BF-CBC
[19] => BF-CFB
[20] => BF-ECB
[21] => BF-OFB
[22] => CAST5-CBC
[23] => CAST5-CFB
[24] => CAST5-ECB
[25] => CAST5-OFB
[26] => DES-CBC
[27] => DES-CFB
[28] => DES-CFB1
[29] => DES-CFB8
[30] => DES-ECB
[31] => DES-EDE
[32] => DES-EDE-CBC
[33] => DES-EDE-CFB
[34] => DES-EDE-OFB
[35] => DES-EDE3
[36] => DES-EDE3-CBC
[37] => DES-EDE3-CFB
[38] => DES-EDE3-OFB
[39] => DES-OFB
[40] => DESX-CBC
[41] => IDEA-CBC
[42] => IDEA-CFB
[43] => IDEA-ECB
[44] => IDEA-OFB
[45] => RC2-40-CBC
[46] => RC2-64-CBC
[47] => RC2-CBC
[48] => RC2-CFB
[49] => RC2-ECB
[50] => RC2-OFB
[51] => RC4
[52] => RC4-40
[53] => aes-128-cbc
[54] => aes-128-cfb
[55] => aes-128-cfb1
[56] => aes-128-cfb8
[57] => aes-128-ecb
[58] => aes-128-ofb
[59] => aes-192-cbc
[60] => aes-192-cfb
[61] => aes-192-cfb1
[62] => aes-192-cfb8
[63] => aes-192-ecb
[64] => aes-192-ofb
[65] => aes-256-cbc
[66] => aes-256-cfb
[67] => aes-256-cfb1
[68] => aes-256-cfb8
[69] => aes-256-ecb
[70] => aes-256-ofb
[71] => bf-cbc
[72] => bf-cfb
[73] => bf-ecb
[74] => bf-ofb
[75] => cast5-cbc
[76] => cast5-cfb
[77] => cast5-ecb
[78] => cast5-ofb
[79] => des-cbc
[80] => des-cfb
[81] => des-cfb1
[82] => des-cfb8
[83] => des-ecb
[84] => des-ede
[85] => des-ede-cbc
[86] => des-ede-cfb
[87] => des-ede-ofb
[88] => des-ede3
[89] => des-ede3-cbc
[90] => des-ede3-cfb
[91] => des-ede3-ofb
[92] => des-ofb
[93] => desx-cbc
[94] => idea-cbc
[95] => idea-cfb
[96] => idea-ecb
[97] => idea-ofb
[98] => rc2-40-cbc
[99] => rc2-64-cbc
[100] => rc2-cbc
[101] => rc2-cfb
[102] => rc2-ecb
[103] => rc2-ofb
[104] => rc4
[105] => rc4-40
)
//+------------------------------------------------------------------+
//| __StackOverflow_CryptENCODE.mq4 |
//| msMODs (1987-2016) |
//| nowhere.no |
//+------------------------------------------------------------------+
#property copyright "msMODs (1987-2016)"
#property link "nowhere.no"
#property version "1.00"
#property strict
#property script_show_inputs
extern string aKnown_OriginalSTRING_asMql4STRING = "How to decrypt an MT4 / AES256 encrypted string with PHP tools?";
uchar aKnown_OriginalSTRING_ucharCONTAINER[];
extern string aKnown_SecretKEY_asMql4STRING = "123456789o123456789o12";
uchar aKnown_SecretKEY_ucharCONTAINER[32];
uchar aCryptoBLOB_ucharCONTAINER[];
//+------------------------------------------------------------------+
//| Script program start function |
//+------------------------------------------------------------------+
void OnStart(){
StringToCharArray( aKnown_OriginalSTRING_asMql4STRING,
aKnown_OriginalSTRING_ucharCONTAINER,
0,
StringLen( aKnown_OriginalSTRING_asMql4STRING )
);
StringToCharArray( aKnown_SecretKEY_asMql4STRING,
aKnown_SecretKEY_ucharCONTAINER,
0,
32
);
int aFH = FileOpen( "DEMO_OUTPUT.txt", FILE_WRITE | FILE_TXT );
FileWrite( aFH, "START: GetLastError() == ", GetLastError(), "\n" );
FileFlush( aFH );
ResetLastError();
int nBYTEs = CryptEncode( CRYPT_AES256, // a principally unsure ENUM_ ( ref. above )
aKnown_OriginalSTRING_ucharCONTAINER,
aKnown_SecretKEY_ucharCONTAINER,
aCryptoBLOB_ucharCONTAINER
);
if ( nBYTEs > 0 ){
FileWrite( aFH, StringFormat( "OK.\nMQL4 CryptEncode() has produced [nBYTEs == %d ] bytes.\nMQL4 aCryptoBLOB_asHEX\n== [%s]",
nBYTEs,
show_asHEX( aCryptoBLOB_ucharCONTAINER )
)
);
Comment( "INF:",StringFormat( "OK.\nMQL4 CryptEncode() has produced [nBYTEs == %d ] bytes.\nMQL4 aCryptoBLOB_asHEX\n== [%s]\n\nSTORED IN GlobalVariable()...",
nBYTEs,
show_asHEX( aCryptoBLOB_ucharCONTAINER )
)
);
}
else
FileWrite( aFH, StringFormat( "ERR: in MQL4 CryptEncode()[ Err == %d ].",
GetLastError()
)
);
FileFlush( aFH );
FileClose( aFH );
}
//+------------------------------------------------------------------+
string show_asHEX( uchar &_ucharCONTAINER_arr[], int count = -1 ){
string HEX_asPrintableSTRING = "";
if ( count < 0
|| count > ArraySize( _ucharCONTAINER_arr )
) count = ArraySize( _ucharCONTAINER_arr );
for ( int ii = 0; ii < count; ii++ )
HEX_asPrintableSTRING += StringFormat( "%.2X", _ucharCONTAINER_arr[ii] );
return( HEX_asPrintableSTRING );
}
//+------------------------------------------------------------------+
START: GetLastError() == 0
OK.
MQL4 CryptEncode() has produced [nBYTEs == 64 ] bytes.
MQL4 aCryptoBLOB_asHEX
== [1979FE46DB64652067C136F57F0971F20FB5C407CE043AAF972C8AED3DEB6D4260181448FE2FDF69AEA7DD8B33B1484A21935AAFBB649FB95DBB05BBA88E4A31]
$decryptedMessage = mcrypt_decrypt(MCRYPT_RIJNDAEL_128, $secretKey, $encryptedMessage, MCRYPT_MODE_ECB);
$decryptedMessage = openssl_decrypt($encryptedMessage, "AES-256-ECB", $secretKey, OPENSSL_ZERO_PADDING|OPENSSL_RAW_DATA);