CRC-32 collision finder
CRC-32 collision finder
CRC-32 algorithm outputs a 32-bit unsigned value and therefore can be easily bruteforced to find hash collisions.
This code uses the IEEE polynomial, however can be easily modified to other polynomials.
Written because I was looking for a tool to generate CRC-32 collisions during a CTF but couldn’t find any at the time…
After learning more about CRC-32, I’ve come to realise that there are faster ways to find collisions and reverse the output value. Since CRC-32 is not a cryptographic hash function, there are mathematical ways to reverse the hash value to a valid input. For more information, see the following tool: crc32.
To use this tool, simply modify the crc-32 target value and run:
go run collide.go
Looking to find a collision for CRC-32 value: -432570933
Note: old python versions generated signed integers and therefore allowed negative CRC-32 values
// target CRC-32// & 0xffffffff is to convert to uint// required since old python versions allowed negative values to be produced// hence its needed if you want to find a collision for a "negative" crc hash valueconst target = -432570933 & 0xffffffff// max string lengthmaxLen := 5
Running it produces the following output:
$ go run collide.goCollision found: 4iSg@
Which can be verified using ipython:
In [1]: import binasciiIn [2]: print(binascii.crc32("4iSg@"))-432570933