Skip to content

Commit 55e9dad

Browse files
author
onepureman
committed
网站登录破解
1 parent 06d30a2 commit 55e9dad

File tree

28 files changed

+248
-5509
lines changed

28 files changed

+248
-5509
lines changed

和讯网_密码加密成功_validate未找到/get_pwd.js

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -50,9 +50,9 @@ Object.assign(window,params);
5050
window.document = document;
5151

5252

53-
function getpwd(pwd) {
53+
function getpwd(pwd, pubkey) {
5454
var encrypt = new JSEncrypt();
55-
encrypt.setPublicKey("MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbG81EEFjLT9rXT/1E2Qd3VwRg8Fe4QNtWHvfZ7od08ldAEPKLMU4oRKqQgAjGAe81IkzeZvr9Inj6bPo3vHS/U8DYq9tyxGHgZ1gcEKtSRPFak2J3ldciR7wsPPNCBq3n6WiDqKaIeiWSoElZH9ofZUIE2/xPISE4t025joM0xwIDAQAB");
55+
encrypt.setPublicKey(pubkey);
5656
return encrypt.encrypt(pwd);
5757
}
5858

和讯网_密码加密成功_validate未找到/login.py

Lines changed: 10 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -17,18 +17,24 @@ def __init__(self, user, pwd):
1717
self.pwd = pwd
1818
self.sess = requests.session()
1919
self.login_url = ""
20+
self.sess.headers = {
21+
"User-Agent": "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
22+
}
2023

21-
def get_pwd(self):
24+
def get_pwd(self, pubkey):
2225
with open('./get_pwd.js', encoding='utf-8') as f:
2326
js_pwd = f.read()
2427

25-
pwd = execjs.compile(js_pwd, cwd=r'E:\node\node_modules\npm\node_modules').call("getpwd", self.pwd)
26-
28+
pwd = execjs.compile(js_pwd, cwd=r'E:\node\node_modules\npm\node_modules').call("getpwd", self.pwd, pubkey)
2729

2830
return pwd
2931

3032
def login_(self):
31-
pwd = self.get_pwd()
33+
self.sess.get("http://www.hexun.com/")
34+
data = {"appid": "9073746913", "act": "get"}
35+
pubkey = self.sess.post("https://reg.hexun.com/wapreg/pubkey.aspx", data=data).json()["data"]["pubkey"]
36+
37+
pwd = self.get_pwd(pubkey)
3238
print(pwd)
3339

3440

@@ -38,5 +44,3 @@ def login_(self):
3844

3945
login = Login(user, pwd) # TODO: 输入账号&密码
4046
login.login_()
41-
42-

唯品会_未能成功登陆/get_pwd.js

Lines changed: 180 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,180 @@
1+
window=this;
2+
(function($) {
3+
function safe_add(x, y) {
4+
var lsw = (x & 65535) + (y & 65535)
5+
, msw = (x >> 16) + (y >> 16) + (lsw >> 16);
6+
return msw << 16 | lsw & 65535
7+
}
8+
function bit_rol(num, cnt) {
9+
return num << cnt | num >>> 32 - cnt
10+
}
11+
function md5_cmn(q, a, b, x, s, t) {
12+
return safe_add(bit_rol(safe_add(safe_add(a, q), safe_add(x, t)), s), b)
13+
}
14+
function md5_ff(a, b, c, d, x, s, t) {
15+
return md5_cmn(b & c | ~b & d, a, b, x, s, t)
16+
}
17+
function md5_gg(a, b, c, d, x, s, t) {
18+
return md5_cmn(b & d | c & ~d, a, b, x, s, t)
19+
}
20+
function md5_hh(a, b, c, d, x, s, t) {
21+
return md5_cmn(b ^ c ^ d, a, b, x, s, t)
22+
}
23+
function md5_ii(a, b, c, d, x, s, t) {
24+
return md5_cmn(c ^ (b | ~d), a, b, x, s, t)
25+
}
26+
function binl_md5(x, len) {
27+
x[len >> 5] |= 128 << len % 32;
28+
x[(len + 64 >>> 9 << 4) + 14] = len;
29+
var i, olda, oldb, oldc, oldd, a = 1732584193, b = -271733879, c = -1732584194, d = 271733878;
30+
for (i = 0; i < x.length; i += 16) {
31+
olda = a;
32+
oldb = b;
33+
oldc = c;
34+
oldd = d;
35+
a = md5_ff(a, b, c, d, x[i], 7, -680876936);
36+
d = md5_ff(d, a, b, c, x[i + 1], 12, -389564586);
37+
c = md5_ff(c, d, a, b, x[i + 2], 17, 606105819);
38+
b = md5_ff(b, c, d, a, x[i + 3], 22, -1044525330);
39+
a = md5_ff(a, b, c, d, x[i + 4], 7, -176418897);
40+
d = md5_ff(d, a, b, c, x[i + 5], 12, 1200080426);
41+
c = md5_ff(c, d, a, b, x[i + 6], 17, -1473231341);
42+
b = md5_ff(b, c, d, a, x[i + 7], 22, -45705983);
43+
a = md5_ff(a, b, c, d, x[i + 8], 7, 1770035416);
44+
d = md5_ff(d, a, b, c, x[i + 9], 12, -1958414417);
45+
c = md5_ff(c, d, a, b, x[i + 10], 17, -42063);
46+
b = md5_ff(b, c, d, a, x[i + 11], 22, -1990404162);
47+
a = md5_ff(a, b, c, d, x[i + 12], 7, 1804603682);
48+
d = md5_ff(d, a, b, c, x[i + 13], 12, -40341101);
49+
c = md5_ff(c, d, a, b, x[i + 14], 17, -1502002290);
50+
b = md5_ff(b, c, d, a, x[i + 15], 22, 1236535329);
51+
a = md5_gg(a, b, c, d, x[i + 1], 5, -165796510);
52+
d = md5_gg(d, a, b, c, x[i + 6], 9, -1069501632);
53+
c = md5_gg(c, d, a, b, x[i + 11], 14, 643717713);
54+
b = md5_gg(b, c, d, a, x[i], 20, -373897302);
55+
a = md5_gg(a, b, c, d, x[i + 5], 5, -701558691);
56+
d = md5_gg(d, a, b, c, x[i + 10], 9, 38016083);
57+
c = md5_gg(c, d, a, b, x[i + 15], 14, -660478335);
58+
b = md5_gg(b, c, d, a, x[i + 4], 20, -405537848);
59+
a = md5_gg(a, b, c, d, x[i + 9], 5, 568446438);
60+
d = md5_gg(d, a, b, c, x[i + 14], 9, -1019803690);
61+
c = md5_gg(c, d, a, b, x[i + 3], 14, -187363961);
62+
b = md5_gg(b, c, d, a, x[i + 8], 20, 1163531501);
63+
a = md5_gg(a, b, c, d, x[i + 13], 5, -1444681467);
64+
d = md5_gg(d, a, b, c, x[i + 2], 9, -51403784);
65+
c = md5_gg(c, d, a, b, x[i + 7], 14, 1735328473);
66+
b = md5_gg(b, c, d, a, x[i + 12], 20, -1926607734);
67+
a = md5_hh(a, b, c, d, x[i + 5], 4, -378558);
68+
d = md5_hh(d, a, b, c, x[i + 8], 11, -2022574463);
69+
c = md5_hh(c, d, a, b, x[i + 11], 16, 1839030562);
70+
b = md5_hh(b, c, d, a, x[i + 14], 23, -35309556);
71+
a = md5_hh(a, b, c, d, x[i + 1], 4, -1530992060);
72+
d = md5_hh(d, a, b, c, x[i + 4], 11, 1272893353);
73+
c = md5_hh(c, d, a, b, x[i + 7], 16, -155497632);
74+
b = md5_hh(b, c, d, a, x[i + 10], 23, -1094730640);
75+
a = md5_hh(a, b, c, d, x[i + 13], 4, 681279174);
76+
d = md5_hh(d, a, b, c, x[i], 11, -358537222);
77+
c = md5_hh(c, d, a, b, x[i + 3], 16, -722521979);
78+
b = md5_hh(b, c, d, a, x[i + 6], 23, 76029189);
79+
a = md5_hh(a, b, c, d, x[i + 9], 4, -640364487);
80+
d = md5_hh(d, a, b, c, x[i + 12], 11, -421815835);
81+
c = md5_hh(c, d, a, b, x[i + 15], 16, 530742520);
82+
b = md5_hh(b, c, d, a, x[i + 2], 23, -995338651);
83+
a = md5_ii(a, b, c, d, x[i], 6, -198630844);
84+
d = md5_ii(d, a, b, c, x[i + 7], 10, 1126891415);
85+
c = md5_ii(c, d, a, b, x[i + 14], 15, -1416354905);
86+
b = md5_ii(b, c, d, a, x[i + 5], 21, -57434055);
87+
a = md5_ii(a, b, c, d, x[i + 12], 6, 1700485571);
88+
d = md5_ii(d, a, b, c, x[i + 3], 10, -1894986606);
89+
c = md5_ii(c, d, a, b, x[i + 10], 15, -1051523);
90+
b = md5_ii(b, c, d, a, x[i + 1], 21, -2054922799);
91+
a = md5_ii(a, b, c, d, x[i + 8], 6, 1873313359);
92+
d = md5_ii(d, a, b, c, x[i + 15], 10, -30611744);
93+
c = md5_ii(c, d, a, b, x[i + 6], 15, -1560198380);
94+
b = md5_ii(b, c, d, a, x[i + 13], 21, 1309151649);
95+
a = md5_ii(a, b, c, d, x[i + 4], 6, -145523070);
96+
d = md5_ii(d, a, b, c, x[i + 11], 10, -1120210379);
97+
c = md5_ii(c, d, a, b, x[i + 2], 15, 718787259);
98+
b = md5_ii(b, c, d, a, x[i + 9], 21, -343485551);
99+
a = safe_add(a, olda);
100+
b = safe_add(b, oldb);
101+
c = safe_add(c, oldc);
102+
d = safe_add(d, oldd)
103+
}
104+
return [a, b, c, d]
105+
}
106+
function binl2rstr(input) {
107+
var i, output = "";
108+
for (i = 0; i < input.length * 32; i += 8)
109+
output += String.fromCharCode(input[i >> 5] >>> i % 32 & 255);
110+
return output
111+
}
112+
function rstr2binl(input) {
113+
var i, output = [];
114+
output[(input.length >> 2) - 1] = undefined;
115+
for (i = 0; i < output.length; i += 1)
116+
output[i] = 0;
117+
for (i = 0; i < input.length * 8; i += 8)
118+
output[i >> 5] |= (input.charCodeAt(i / 8) & 255) << i % 32;
119+
return output
120+
}
121+
function rstr_md5(s) {
122+
return binl2rstr(binl_md5(rstr2binl(s), s.length * 8))
123+
}
124+
function rstr_hmac_md5(key, data) {
125+
var i, bkey = rstr2binl(key), ipad = [], opad = [], hash;
126+
ipad[15] = opad[15] = undefined;
127+
if (bkey.length > 16)
128+
bkey = binl_md5(bkey, key.length * 8);
129+
for (i = 0; i < 16; i += 1) {
130+
ipad[i] = bkey[i] ^ 909522486;
131+
opad[i] = bkey[i] ^ 1549556828
132+
}
133+
hash = binl_md5(ipad.concat(rstr2binl(data)), 512 + data.length * 8);
134+
return binl2rstr(binl_md5(opad.concat(hash), 512 + 128))
135+
}
136+
function rstr2hex(input) {
137+
var hex_tab = "0123456789abcdef", output = "", x, i;
138+
for (i = 0; i < input.length; i += 1) {
139+
x = input.charCodeAt(i);
140+
output += hex_tab.charAt(x >>> 4 & 15) + hex_tab.charAt(x & 15)
141+
}
142+
return output
143+
}
144+
function str2rstr_utf8(input) {
145+
return unescape(encodeURIComponent(input))
146+
}
147+
function raw_md5(s) {
148+
return rstr_md5(str2rstr_utf8(s))
149+
}
150+
function hex_md5(s) {
151+
return rstr2hex(raw_md5(s))
152+
}
153+
function raw_hmac_md5(k, d) {
154+
return rstr_hmac_md5(str2rstr_utf8(k), str2rstr_utf8(d))
155+
}
156+
function hex_hmac_md5(k, d) {
157+
return rstr2hex(raw_hmac_md5(k, d))
158+
}
159+
function md5(string, key, raw) {
160+
if (!key) {
161+
if (!raw)
162+
return hex_md5(string);
163+
return raw_md5(string)
164+
}
165+
if (!raw)
166+
return hex_hmac_md5(key, string);
167+
return raw_hmac_md5(key, string)
168+
}
169+
if (typeof define === "function" && define.amd)
170+
define(function() {
171+
return md5
172+
});
173+
else
174+
$.md5 = md5;
175+
176+
}
177+
)(this);
178+
function getpwd(pwd){
179+
return md5(pwd)
180+
}

0 commit comments

Comments
 (0)