# Ideas for my own exercises

- [ ] Factorizing a weak RSA public key (n=128)
- [ ] Detecting a public RSA key with reused
  primes <http://www.loyalty.org/~schoen/rsa/>
- [ ] Wiener's attack on RSA keys with small d (see HTB's weak RSA
  challenge for example data)
- [ ] Novel attack on textbook RSA <https://arxiv.org/pdf/1802.03367.pdf>
  <https://news.ycombinator.com/item?id=16362537>
- [ ] CBC cut and paste <https://sockpuppet.org/blog/2014/04/30/you-dont-want-xts/>
- [ ] Abusing CBC malleability for partially known plain texts
  <https://efail.de/efail-attack-paper.pdf>
- [ ] Algorithm confusion attacks on JWT
  <https://www.chosenplaintext.ca/2015/03/31/jwt-algorithm-confusion.html>

# Lists with more ideas

- RSA attacks on weak public keys: https://github.com/Ganapati/RsaCtfTool
- https://en.wikipedia.org/wiki/Category:Cryptographic_attacks
- https://research.kudelskisecurity.com/2018/04/05/breaking-rsa-oaep-with-mangers-attack/