超星登錄參數分析

滲透逆向 · 31 天前 · 532 人浏览
超星登錄參數分析

從登陸包可以看到用戶名和密碼的加密方法為同一個
2024-10-06T20:57:20.png
繼續搜尋相關參數,找到如下代碼,即通過 encryptByAES 函數加密。
2024-10-06T20:59:17.png
提取出來以後,可以看到結果和登陸包的請求内容是一樣的
2024-10-06T21:00:50.png

相關js代碼:

function encryptByAES(message, key) {
    let CBCOptions = {
        iv: CryptoJS.enc.Utf8.parse(key),
        mode: CryptoJS.mode.CBC,
        padding: CryptoJS.pad.Pkcs7
    };
    let aeskey = CryptoJS.enc.Utf8.parse(key);
    let secretData = CryptoJS.enc.Utf8.parse(message);
    let encrypted = CryptoJS.AES.encrypt(
        secretData,
        aeskey,
        CBCOptions
    );
    return CryptoJS.enc.Base64.stringify(encrypted.ciphertext);
}


let transferKey = "u2oh6Vu^HWe4_AES";
password = encryptByAES("11012013014", transferKey);
uname = encryptByAES("11012013014", transferKey);
本站立足于美利堅合衆國,請讀者自覺遵守當地法律!如有違規,本站不承擔任何法律責任! This site is based in the United States of America, readers are requested to abide by local laws! If there are any violations, this site does not bear any legal responsibility! Theme Jasmine by Kent Liao