Search code examples
pythonnode.jsencryptioncryptojs

How to Decrypt Cryptojs RC4Drop encrypted data in python

Below is the code in my nodejs project to encrypt and decrypt the data which is working perfectly.. I need to decrypt this nodejs encrypted data using python.

    encryptData(data) {
        try {
        var encryptionKey = CryptoJS.enc.Utf8.parse("SecretKey");
        return CryptoJS.RC4Drop.encrypt(JSON.stringify(data), encryptionKey, {
            drop: 3072 / 4
        }).toString();
        } catch (error) {
            console.error(error);
        }
    },
    decryptData(encrypted) {
        try {
            var encryptionKey = CryptoJS.enc.Utf8.parse("SecretKey");
            const plainPass = CryptoJS.RC4Drop.decrypt(encrypted, encryptionKey, {
                drop: 3072 / 4
            }).toString(CryptoJS.enc.Utf8);
            return plainPass;

        } catch (error) {
            console.error(error);
        }

    },

How do I implement this similar decryption functionality in python?

I tried below code but its not working.

def rc4_drop(key, data, drop_bytes):
    # RC4 Encryption/Decryption
    cipher = ARC4.new(key)
    decrypted = cipher.decrypt(data)
    
    # Apply drop functionality
    if drop_bytes < len(decrypted):
        return decrypted[drop_bytes:]
    else:
        return b''

def decrypt_data(encrypted_base64, key, drop_bytes):
    try:
        # Convert Base64-encoded encrypted data to bytes
        encrypted_bytes = base64.b64decode(encrypted_base64)
        print("Encrypted bytes:", encrypted_bytes)

        # Convert the key to bytes
        key_bytes = key.encode('utf-8')
        print("Key bytes:", key_bytes)

        # Decrypt data with RC4 and apply drop bytes
        plaintext_bytes = rc4_drop(key_bytes, encrypted_bytes, drop_bytes)
        print("Plaintext bytes after dropping:", plaintext_bytes)
        
        # Convert bytes to string
        return plaintext_bytes.decode('utf-8') if plaintext_bytes else ''
    
    except Exception as e:
        print(f"An error occurred: {e}")
        return None

Sample input and output from the Javascript code: Encryption of "Hello" results in base64 output RlxFVdR/FA==.

Solution

  • The way you are applying the drop functionality in Python doesn't make sense as you must drop the first drop_bytes bytes from the stream cipher's output before decrypting the data, whereas you are doing it afterwards. Although I haven't tested this, one simple way is to prepend the cipher with drop_bytes number of dummy bytes and throw away that many initial bytes of the decrypted result, i.e.

    dummy = b' ' * drop_bytes
decrypted = cipher.decrypt(dummy + data)[drop_bytes:]
return decrypted

    but as pointed out in a comment by Oliver in the Staging Ground, the cryptodome implementation of RC4 directly supports dropping bytes with the keyword argument drop, i.e.

    cipher = ARC4.new(key, drop=drop_bytes)
return cipher.decrypt(data)