Skip to content
/ XorShift128Plus Public
forked from TACIXAT/XorShift128Plus

Symbolic execution for the XorShift128+ algorithm.

0 stars 23 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

DamnVulnerableCryptoApp/XorShift128Plus

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
README
README
 
 
xs128p.py
xs128p.py
 
 

Repository files navigation

For usage on the LA Time's powerball simulator. Careful about clicking the page.

Blog post: https://blog.securityevaluators.com/hacking-the-javascript-lottery-80cc437e3b7f

Run the following snippet in your browser's console.

    _ = []; for(var i=0; i<5; ++i) { _.push(Math.random()) } ; console.log(_)

Paste at least 3 of those (5 for Chrome) values into the dubs array in main().

It will warn you if the model is too "loose" and has multiple solutions.

Set the browser in main() to Chrome or Firefox. (Safari hasn't updated yet.)

    python xs128p.py

The winning numbers should have an arrow. Click once on the number inputs and tab between them to enter your "pick".

Click once on the play button.

Enjoy your lotto winnings :)



Hey, while you're here, I teach some security stuff on YouTube. https://cybering.cc

Follow me on Twitter! @cyberingcc

About

Symbolic execution for the XorShift128+ algorithm.

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Python 100.0%