Update README.md (#2)

le4ker · mpgn · commit c53cdd4f4e33 · 2017-05-31T11:00:10.000+02:00
* fix typo in Readme thx @PanosSakkos
diff --git a/README.md b/README.md
@@ -40,15 +40,15 @@ An attacker will intercept a cipher text and retrieve byte by byte the plaintext
 * intercepted cipher : C<sub>0</sub> | C<sub>...</sub> | C<sub>i-1</sub> | C<sub>i</sub>
 * then build a block like this :
 
-C'<sub>i-1</sub> = C'<sub>i-1</sub> ⊕ 00000001 ⊕ 0000000X || C<sub>i</sub>
+C'<sub>i-1</sub> = C<sub>i-1</sub> ⊕ 00000001 ⊕ 0000000X | C<sub>i</sub>
 
 Where X is a char between `chr(0-256)`. 
 
-* then he sends C'<sub>i-1</sub> || C<sub>i</sub> to the oracle. The oracle will decrypt like this :
+* then he sends C'<sub>i-1</sub> \| C<sub>i</sub> to the oracle. The oracle will decrypt like this :
 
-D<sub>k</sub>(C'<sub>i</sub>) ⊕ C'<sub>i-1</sub>  <br>
-= D<sub>k</sub>(C'<sub>i</sub>) ⊕ C'<sub>i-1</sub> ⊕ 00000001 ⊕ 0000000X <br>
-= P'<sub>i</sub> ⊕ 00000001 ⊕ 0000000X <br>
+D<sub>k</sub>(C<sub>i</sub>) ⊕ C'<sub>i-1</sub>  <br>
+= D<sub>k</sub>(C<sub>i</sub>) ⊕ C<sub>i-1</sub> ⊕ 00000001 ⊕ 0000000X <br>
+= P<sub>i</sub> ⊕ 00000001 ⊕ 0000000X <br>
 
 Now there is two possibilities: a padding error or not :
 
@@ -63,7 +63,7 @@ This is a wrong padding, so we can deduce the byte Y is wrong.
 * The oracle didn't give us a padding error and we know the byte X is good :
 
 ```
-If P'i ⊕ 0000000X == abcdefg0 then:
+If Pi ⊕ 0000000X == abcdefg0 then:
     abcdefg0 ⊕ 00000001 = abcdefg1
 ```
 
@@ -72,18 +72,18 @@ If P'i ⊕ 0000000X == abcdefg0 then:
 **For the second byte :**
 
 
-C'<sub>i-1</sub> = C'<sub>i-1</sub> ⊕ 00000022 ⊕ 000000YX || C<sub>i</sub>
+C'<sub>i-1</sub> = C<sub>i-1</sub> ⊕ 00000022 ⊕ 000000YX \| C<sub>i</sub>
 
 And then : 
 
-D<sub>k</sub>(C'<sub>i</sub>) ⊕ C'<sub>i-1</sub> <br>
-= D<sub>k</sub>(C'<sub>i</sub>) ⊕ C'<sub>i-1</sub> ⊕ 00000022 ⊕ 000000YX <br>
-= P'<sub>i</sub> ⊕ 00000001 ⊕ 00000YX <br>
+D<sub>k</sub>(C<sub>i</sub>) ⊕ C'<sub>i-1</sub> <br>
+= D<sub>k</sub>(C<sub>i</sub>) ⊕ C<sub>i-1</sub> ⊕ 00000022 ⊕ 000000YX <br>
+= P<sub>i</sub> ⊕ 00000001 ⊕ 00000YX <br>
 
 * The oracle didn't give us a padding error and we know the byte X is good :
 
 ```
-If P'i ⊕ 000000YX == abcdef00 then:
+If Pi ⊕ 000000YX == abcdef00 then:
     abcdef00 ⊕ 00000022 = abcdef22
 ```
 
@@ -120,7 +120,7 @@ Details required options:
     example: with HTTP method: 200,400,500
              with DOM HTML   : "<h2>Padding Error</h2>"
 ```
-Optionnal options:
+Optional options:
 ```bash
 --cookie Cookie parameter example: PHPSESSID=9nnvje7p90b507shfmb94d7
 --method Default GET methode but can se POST etc
@@ -136,7 +136,7 @@ python exploit.py -c E3B3D1120F999F4CEF945BA8B9326D7C3C8A8B02178E59AF506666542AB
 
 ## Customisation
 
-> I wan to custom the Oracle !
+> I wan to customize the Oracle !
 
 Example with sockets https://gist.github.com/mpgn/fce3c3f2aaa2eeb8fac5
 
@@ -178,4 +178,4 @@ def call_oracle(host,cookie,url,post,method,up_cipher):
     conn.request(method, url + up_cipher, params, headers)
     response = conn.getresponse()
     return conn, response
-```
+```
