Sunday, December 23, 2018

basic encruption example

<!DOCTYPE html>
<html>
<title>basic encruption example</title>


<head>


<?php
// DEFINE our cipher
define('AES_256_CBC', 'aes-256-cbc');

// Generate a 256-bit encryption key
// This should be stored somewhere instead of recreating it each time

$encryption_key = openssl_random_pseudo_bytes(32);

// Generate an initialization vector
// This *MUST* be available for decryption as well

$iv = openssl_random_pseudo_bytes(openssl_cipher_iv_length(AES_256_CBC));

// Create some data to encrypt

$data =  $_POST['key'];;
echo "Before encryption: $data\n";
echo "<br>";

// Encrypt $data using aes-256-cbc cipher with the given encryption key and
// our initialization vector. The 0 gives us the default options, but can
// be changed to OPENSSL_RAW_DATA or OPENSSL_ZERO_PADDING

$encrypted = openssl_encrypt($data, AES_256_CBC, $encryption_key, 0, $iv);

echo "Encrypted: $encrypted\n"; echo "<br>";

// If we lose the $iv variable, we can't decrypt this, so:
// - $encrypted is already base64-encoded from openssl_encrypt
// - Append a separator that we know won't exist in base64, ":"

// - And then append a base64-encoded $iv

$encrypted = $encrypted . ':' . base64_encode($iv);

// To decrypt, separate the encrypted data from the initialization vector ($iv).

$parts = explode(':', $encrypted);

// $parts[0] = encrypted data
// $parts[1] = base-64 encoded initialization vector
// Don't forget to base64-decode the $iv before feeding it back to
//openssl_decrypt

$decrypted = openssl_decrypt($parts[0], AES_256_CBC, $encryption_key, 0, base64_decode($parts[1]));

echo "Decrypted: $decrypted\n";
?>


<?php
/*
print("-- Start --<br />");

$z = $_POST['key'];
$data = $_POST['plaintext'];
$mode = $_POST['mode'];
$iv = $_POST['iv'];

include("AES.class.php");

$aes = new AES($z, $mode, $iv);
$starte = microtime(true);
$encrypted = $aes->encrypt($data);
$ende = microtime(true);
print "Execution time to encrypt: " . ($ende - $starte) . " seconds<br />";
print "Cipher-Text: " . $encrypted . "<br />";
print "Hex: " . bin2hex($encrypted) . "<br />";
print "Base 64: " . base64_encode($encrypted) . "<br /><br />";
$startd = microtime(true);
$decrypted = $aes->decrypt($encrypted);
$endd = microtime(true);
print "Execution time to decrypt: " . ($endd - $startd) . " seconds<br />";
print "Decrypted-Text: " . stripslashes($decrypted);
print "<br />-- End --<br />";

*/
?>
</head>





<body>

<form method="POST" action="">
  <table>
    <tr><td align="right">Key:</td><td><input type="text" name="key" value="" size="34">
</td></tr>
    <tr><td align="right">Mode:</td><td>
<select name="mode" style="width: 120px">
<option value="ECB">ECB</option><option value="CBC" selected>CBC</option>
<option value="CFB">CFB</option>
<option value="OFB">OFB</option>
</select></td></tr>
    <tr><td align="right">Initialization Vector:</td><td>



<input type="text" name="iv" value="" size="16"> (used in all modes except ECB)</td></tr>
    <tr><td align="right" valign="top">Plain-Text:</td><td>
<textarea name="plaintext" cols="40" rows="5"></textarea></td></tr>
    <tr><td></td><td><input type="submit" name="submit" value="Encrypt!"></td></tr></p>
  </table>
  </form>




</body>
</html>





<?php
$data "hello";

foreach (hash_algos() as $v) {
        $r hash($v$datafalse);
        printf("%-12s %3d %s\n"$vstrlen($r), $r);
?> 

<?php
  echo "Building data...";
  $data "";
  for($i 0$i 1500$i++)
    $data .= sha1("H:k - $i - k:H");

  echo "OK! (".strlen($data)." bytes)".PHP_EOL;

  $res = [];

  echo "Testing hashes.....".PHP_EOL;

  foreach (hash_algos() as $algo) {
    $time microtime(1);
    $hash hash($algo$data);
    $time = (microtime(1) - $time) * 1000;
    $length strlen($hash);

    $res["$time"][] = [
      "algo"   => "HEX-$algo",
      "length" => "$length",
      "time"   => sprintf("%.8f"$time)
    ];

    $time microtime(1);
    hash($algo$data1);
    $time = (microtime(1) - $time) * 1000;

    $res["$time"][] = [
      "algo"   => "RAW-$algo",
      "length" => "$length",
      "time"   => sprintf("%.8f"$time)
    ];
  }

  ksort($res);
  $i 0;

  echo "Results:".PHP_EOL;
  echo "Posit.      Time in ms   Type-Hash algo        Hash length".PHP_EOL;

  foreach($res as $sres){
    foreach($sres as $result){
      echo sprintf("%5d. %12s ms    %-20s %-2d bytes"$i++, $result['time'], $result['algo'], $result['length']).PHP_EOL;
    }
  }?>



<?php
$val 'hello';var_dump(crc32($val) == ( '0x' hash('crc32b'$val) ) ); // bool(true)var_dump(crc32($val) == ( '0x' hash('crc32'$val) ) ); // bool(false)?>


<?php
$val 'hello';$crc64 = ( '0x' hash('crc32'$val) . hash('crc32b'$val) ) );var_dump($crc64); // string(18) "0x3d6531193610a686"var_dump($crc64 0); // int(4423996193312384646)?>
at
Labels: ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

form validation

function formsubmit ( ) { var empname = document .getElementById ( 'emp_name' ). value ; var email = document .getElem...

  • basic encruption example
    <!DOCTYPE html> <html> <title>basic encruption example</title> <head> <?php // DEFINE our cipher ...
  • PHP - Sacar XSS
    PHP - Sacar XSS function RemoveXSS($val) { $val = preg_replace('/([\x00-\x08,\x0b-\x0c,\x0e-\x19])/', '', $val); // ...