manawenuz/btest-rs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 7 Wiki Activity
Files
afe389ce7ea616abe7e86fc101d264ad2e348c11
btest-rs/proto-test
History
Siavash Sameni afe389ce7e Research: EC-SRP5 authentication fully reverse-engineered 
Key findings:
- btest EC-SRP5 uses [len][payload] framing (NO 0x06 handler byte)
- Winbox uses [len][0x06][payload] — that one byte was the difference
- Crypto is identical: Curve25519 Weierstrass, SHA256, SRP-like key exchange
- Python prototype successfully authenticates against MikroTik RouterOS 7.x

Files:
- docs/ecsrp5-research.md: complete protocol spec, captured exchange, impl plan
- proto-test/btest_ecsrp5_client.py: working Python EC-SRP5 btest client
- proto-test/btest_mitm.py: MITM proxy used to discover the framing
- proto-test/elliptic_curves.py: Curve25519 Weierstrass (from MarginResearch)

Based on MarginResearch/mikrotik_authentication (MIT License).

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-03-31 16:33:07 +04:00
..
btest_ecsrp5_client.py
Research: EC-SRP5 authentication fully reverse-engineered
2026-03-31 16:33:07 +04:00
btest_mitm.py
Research: EC-SRP5 authentication fully reverse-engineered
2026-03-31 16:33:07 +04:00
elliptic_curves.py
Research: EC-SRP5 authentication fully reverse-engineered
2026-03-31 16:33:07 +04:00