diff --git a/img/117.png b/img/117.png new file mode 100644 index 0000000..96111bf Binary files /dev/null and b/img/117.png differ diff --git a/夜幕-第12课练习题AES还能这么玩/readme1.md b/夜幕-第12课练习题AES还能这么玩/readme1.md new file mode 100644 index 0000000..d194c3d --- /dev/null +++ b/夜幕-第12课练习题AES还能这么玩/readme1.md @@ -0,0 +1,67 @@ +在JS逆向系列课的第12课《一叶障目 服务端返回的神秘字符串》中,我们见到了两种看起来很奇怪的“神秘字符串”,也学会了如何轻松干掉它们。 那么现在,请运用你在第12课中学到的知识,尝试做一下这道题吧~ + +提示:这是视频中的第二种神秘字符串。 + +请问: + +第2个帖子(以1为起始)的HTML中id为content的部分中一共有多少个br标签? + +![debugger](../img/117.png) + +服务器返回的特殊字符串 + + { + "status": 1, + "data": "5PmiaGjRCkGGBfYJws7fZZbpKH3nexWCY6vdCkFFbQUswYrTPDE5KZilhdSG/O12OISbMMUO4bBgX9UFarQ1ZT4Fjm6O03sQ1+tqDD6ZvHj/qRROhyfsailggK/dqklWFGNiNDJTxLIYzY4S2eWsJO2w3tTROKcceLe04owJ2dyOMqcm/e+RXNsASvx1ojNYB8O25nwakeepNdpCMmiR/PXjm+OqAYwyy57pHGJCeBPgScyUaq3U2HLZsplwnVQpwYo3RW5fhceKtzSs6EPJvmawN40kgKB7u4nyAQm+dlkz14LehMx+Ie3+UaAAsC6EbzoWN/e5sFbbekfijTQt6JfWNxrd2K8tQpFtAwGTdJI3z6B4MW7HqiykBYbfSGPIQAgR4lYEc9sgoaDng+lFGANX2/glnEqW63mrm+9/7NQTy4cjf25X6iB+aiLb99OTsn9Uv9N/8WK9d7eT+GHb3GpUJKdlI4+Ik9qk4C58eyZL/545D7gZJWRbEm1kGcrl/sMsUyMePtMXQBItZ14Jmvww93qcweePWxRHujNPnIq44haYKcFm7x+zm7pK/vJ0LZJ6CsR+p0JNRdWdkO58aFUq6CMo6FxpevlT2tHfvqzJ43czaddG52heBfoMDl/LvSAPU212dKs2QlUoOURITSQKTP0DvWbSQViIQcrzwGxhTD12VwCyijBNQ72Db8APVZVRKDfPkUfx83WTGId7V0FNiipwyxAfe6ayuYZrgiFbyg0SVjz8mKdXPplLqJQMqARf8nzUVnzKGIk4kfWlV0kit+CSF4mqtD1gi1ga9nQ6tQGIuDoTEtPSN8pf2m7c/dDT0JrXN1hTaZHIYAl1pR7DvAGJ9nzZanGRmc06mX+QZNqIougVFEhL1YAIs7ShOGWrAF8dI/vpqsBxmIUuHRGA6y5yIP8mYcSMyXIA947kLk4X8YcOmrLcJUAfBh7huxHlMl39LGFmyAT5R4Q8c63X9PPHXiRlhSuKyd2FmWapJh8qyTOTVmjYVm3w/eI+C9LVMNHUIaIG+U1o/GLFaaivkh9c0ACOPZg5lfGVO6tn/uz6DGF3aoWJkuij198lm9VY7uD9dbF+RiNdxisI8HmUYqqMyBysI+rcj/8P7MTH3suUvpMMMpFdYXpDEiBAI2Vxxe1E2teek2aiF4UNCf9MdY/rPV2gGFkNZ3mEnwW4DMEr8Wa3VW3x/cFj6X6h5IMoP2MKInc5ti7Ii2npw1qiU0IS+3ts9OBqvhKLw8DHjW+uMLqUaajuZHEufVXt8MB3BKPxdp1oUjDe4HAjRRisyIPxZFvgVmPpqoM0BXEvAru4SaO5dSyc13+F8LzQehme00RlBSSvYnEw9wkaLHOpty/oBWMcqKDIAQ0Uzm01W56MXqcg0xIpZGDdP325JO9WKMKR+eGUDfkzsXi8wOusyduyH0IQX1PmWbhtYPazH5vUG5YZbDINbckgLnj9imJBaVv6i0vt8MSeusSuUsBtt8QGRCLjVCzvncxYn0sx/DcqE4u2U+vgcuAaXz2Jf5wKH6sMEKNOXZdP7mY3QC+cK7Ww/eFdjIphOzTKrJ2LbZT91e/jjqLp+uWYioFGWS28Nq9kKL+5+YYnnhWfgmwrQFQy/rhUMH7FvxmentTEk/0rBZKdd5GVxouV2gwwcK08UMXp95p+2UV9IdUIQ8KlwbZ6bFsGaT7jRwPbZt/OO/IjerMlC7cCbfR9DgyyB41+2rkriiw6318RfYql9EL/46P9pCt5dNITQogG/BVibhXEx/1BWxXs3ABQ4cHErIjI3Tp1/86JVJIEfNnAnmhO8ahTWTo3wyV+OJbmObohxksXaXr5IZjKYtMtRyUYR6erB6lWrxIvNvpKh7GIhLI13z8CV2ELKAL+PRX35D+HKJHG08WI5Bc83DslqYDJTFGsXZAmYy8ubMrNAsqlU8NaQ35FCiVgQr6CTaN9jAVfesiIKK3uoa/WXc8MM82Mq92QHglgBtCkAXwYLkYu0+uWRCUv7zG+V/HqJYCO1f7D9N01oSLn1W6yJC/ee3Auw3k0MIoFu6ksV+bwUz2aT7lT2HEHY2pNK84/c4Yt/dIb/zYGtNvLdjZdUu4LXm2IPcRvZvrnv7tiTMdyLSrksSV6DWn1xGaPUHD/hzIp1YMpzG9xynf1IeNnMIdEDZX2EKTTNteTWfs319oiAL2rGiQ39t0E4IclD5C5B7Q7+aitauxvsZbqu9OxvM02jFImTIE/SoDshnfo8heC7sqyYB2CjWAYd2uf8nMY8exfG//lmcjbh2u8wrCbJssVEvCKqIwOROl3Hk8wPRu1tz5IyNkPLxoMbMyZpmkvr/rkSlE55F6JRDbwBFlTpnjA4PyWmZEJ5sgyVESdZvwPvqQ+x7TNGCrApvEpbfnUCp2Dsg9Iv742xHvumvGPx9JCIlVdGjak8EiuNGsjIXh+ETs4ko/PAMS81dJKzQERvoQRPIRoi9ckfAWzcFBOko3ahNSFabWa31UCUkwxBONcXGCm2tVqcqgqlN+FpEYLltLc+UF3ojP94Wlosv2eGOrdrEfVD28FrmJb4GqfzWowybrsp7/HOmbAknhCEyKMtZkTH8f4z7nw3vfjzvgUuQRWxfvfIURhPq7QdqrDVI22vulsauio7lsn0GcEfsgYWTX3mtQgK2c4hnTk0Imz7CFezz8WGXrnSanga/z76SiN5fHGlB4e7pGcJFvhjXzcEcdzOaMtoDWdUdbM1cdG2OJLJS0lFU5twu3waFx6wuYN2eMaYOKyY0SpXB6q11tmCrESAVYczuAQ3hG089lJcOXrKCneOemuMGeUy26XnFQzSItioeeVepMf1zlUnl8dtWg117+czI9ElciEAR8RXfDn+dfXfT1mNW2UosssdUHTJPJzENg6B4tKslR1Ffk8YsmiOcMPkUABe/a+rNWfRQd6zQa+GyeXqKZFzmq/W9q9mOybcHqxduzbiFn2b0p4J0f2pRMs7lUaXv7YuR1UCtzCr1obBX2t+iI8uz5Ha1wcFSVmHqM/OeEkgWLnDaZTyYQnL+9uPGvy98t+bq7IBuziLBaMXpaIpJdf+7WaRZS26hfyvJZFw2li++8KdkAzn7VkzktAYA+KCOErWd5oqnDJz5tW4UCAJMQ/GOyHvsucgVzjRTqh8wzo37tMRsPqeCiFavCt8D/cTY0+BLo6/0AV9DI2ch7FYeUdf2LZiOxWfH/CHq1ql7Hzkot5g1c01hwFRsqMCEi12x5RBlrU8OBS2044FBJckZ+q0ypqHQpBbnqqXM+fmZU8oHw4TO1WkQVhqlokwFQvNylVpQMf1vWumydBR8f5QDqPNo1QLHzUb9pvGAlXL3rDrghIUUCBVAhsQfQ/p95t3AT0fI9/Bh/VICv4tT9gAkZR+l2AGzD1cysF6dQpnjt0jYePnsB7w2fdtsY9w0ElGsWYBNG0OBdmzN2R1b3DRSYEbpl0DRsGFLYwo+I6JJHsX0KgRzm88JcqoF9tA5m/uC24Q+XeCXPsJoisxpbmp8pbUPcQugaaVUvxnLu5a4iRl+ONXvUQINtq7YuqTPlNJz8/jHEMx24JCZg+aaE8muv8hlDpUGJYMSI7FvBN6I+OSOCg3Luxao5+LB0uNUsydgNRgA7kj9Jna7hThRASg6vQsqauB9m/TMMUEHznnLVEleNH/N6ehJkAuoFIEDkCLDriIgVmunhFT3Tz0tCSjkuC4GMmk/R+lom35C8+KqhuwcuZFRCcf6m1NPLfNBdTRgz33W8dUhgdZeYwNzBpBRcfAHTg4+1OGU8d89i3g6hOV7FmaaHNUiQjQ0C4g17uAeQJk6lZjPvz2KoWIdwUg5FkQ5s44IZWrxh1Vgn97yZjX5kAJrNSYOUC7MOvW6djoNEzsVnWbp4Fe3LFKDVh6M92iBpZfs11OzTQO1EDyv4nJttKZUkhXsCN3HGdNsG+H26S5fhVXOVoMvGUKPbUXoJmLdlWkvL1qvJRTXsFAI65+Kktah+gUBm40rCVGHPt5j7yyPWhltKqP2vvL3la8o00+dJ2/knOz5r2CJHI/N0Yoqp/0Dg7ilmdogy7cTUHumFrRbshSewDTW0xYsqkYhdufdCIR43VsmmbapLNqSlBjplBhE054QAGEcS8K+xsoaNGbK9XX4L7FuTEIBlQSowcyfrXQuoEo95wtpm/ix1Azvx+ToonepBKKhZSD4b1ncgMn/CKs5m7ByY41DdPzLZzbeEmLePzXvdMholHvqH9jCX0DmGLFdMKmT/B+BU52/nQ/qMkf0DvVrOKhsiNW3N0MO3PCag3lLNnQZQoyZdTtOBUiU3pWsidCGjSBTorCnORC2/klTNcSQbXBxyryagYxJJ848hJZs4teuj8KiLB6gnD/xyhyozw3yrM28EAyj1XPLRczJ0Wwp305+0h6Z0sq8cz5mdqEfmCWDwn8jlOBwB/lCzWWOR9a7bKaF8Sd28JyNCDYO1kLzvzFpWO4i3fgetjn2NP2IIor01QNd5jybTU5Af+RFWGKvAS8B39hta9fwTmCRm+mhTtZF2m7lojbL6rY/Ra45nVIUulG6sc/wMfcCKDWdQnHfzRkuQ603XjOCod1wfS+cOn1bPp63QReSsLv7wQ30KrLEhQUOzuMcQFO5veG+zYuABlvomMavmt5vd2T+ouZTs8QRotRF2Rxbx3sCL0J2XghJDhbqhIgqKlsuI0vakKhy/UAnXrqM6cGZQmEcnY2lqrHaaTiE76fXe7F9+UZXJJTJjmq+ZPR974VKQdjkG1j8bYMOcwztNZKEXsRSufPwtWu/MwDwIYaD3+o2NhvYZNxNe6jXsxBU+TQRvqfLnvcUDRHPwqyueCCigAA5x4fzxuQ2llOFc/twnGnDRw9vgj04bsGiRrZqWTBRmSIx+X3HGABNGHn2qIAU7+qfa8ItsxVYAkLGzN9TcGQSotSm7ttlMDo77wiaFh3lEH2sJoIGptlvPJbE9eLHtdzrdJZZP14j2vmnnZqKlq5NB487VWgyaAh7rDJcSohCFeDAPd1YTm8kr6axw5U5d6gaAu+vAwhgassT4ayfRxIyQs2wTDJ18YPZZ6ldFnY/YyJC2cbOCwYwISKEgQmPohPHo++HvKefl96EzrDpkoq6Hk0jrv2mInS5i9Yi+wN2d8iVVpAmHwjvDRxaSbLZfINgtXHy9tFcykCYSzVq3idhwH89XHS2AAfSBJxXfRmhczwjaYwxLI2AhSpH/XLBdZyxYVWqvZOK1ZkbbGNfE1DgrWSYdnH8YpoedSR4EAp8UQUyulTyaO2PXwzCIMj+sxuhQ9D/qKZDLIZKHyRO90ehxYbJwWBWXS1e+3se7j3YFI9vylwStdnFKtNov1Fbnx+lG/w5zvGs4WO7GonXfV/NNuepi5ypuhj31HUV1Knp0OrTln533cvO34lAiOY6kBEcjQaFUqyDDTpNCZVnltvnIv1Ha9b2JGn2ukux1D9go/FqFc+YekULulxrd0u1WGI00wzCya+1AImEtqJ7AHxCNOSee7lYgYRKNd8U3rnZezDitDXb4x1sqwqSOjsH1go2UbmytvtyFv8tKHD5mguJuxsv9Cf4Q7QC1Sb+otv+s9DQl8CYneitVWVxI2P0WWf6OwoNcCvW8icKAJbXlgwXzHd3jp/z+fnK31G66OIx/AdMsdkPIy+PsCc2WWVGAbLBTb3rDzfiTh3x8NXNN05TbSIpR77hNSPREh6kM+aJ4xtRpt+YvdtgTLvcJ/Sa9yM6JMIJyCJX4Oe9CJYGXiyOwo4s5pXurdufyuGkmWrnR/pe9VLD4NsvjTlibYCUElJ6zudZetI5HaM3JR20kNWcfEPJvUYMm+VWMt9ZrEn1gmk5fkdqs9O5yEPcWd3RrYPvQ8XiDmOJpo2cRq6+vYtqEYAFJwpq4Z6m9sgi6xzcuwRRDxzYuhpoIMyG9JBQCgJbAT6NIvOFSDzYyoPUTPtH9MOUfaYS0UBz1C2+IKnKu8GNAE1xor57P2dJEKvOecfzN0aQWIbZJbSHrAlcENJMzKvsItfbHZchZyAC7QW08OmWPrqMr72hGdh8umGiuilsi91VOaIvkeXUjesWkLnH/GsE5O7No2LWOzFLlem9OiibdwJ0Lzbn48Da+pMdjJqjdc1r/qkHx9pGouWsvAQgVnb2YiKsS9++1AaNSUAqy20AGqvQl9SuMJgVyN+h6ZiRtjm2MHzxE+yVu9c7GLcS3UYOuBxxilLkZgMcDI/FSfXfNJtRbYEuIS30509NUY9IG83YHo321hYlbytMAZtJMl5dPTa2sUtFnUFtJH+nhpoF4/2HrD47K2Yhxvb1GBym8PzXtsoZ14coaisOiW+LTlHY0sD4uRZyUD6lvowe7lt8/n+iBHHBGUQY0JCPlceYR/fvJSbBnByxCZ5t8D698Xbw+esTOskd+4/1svtdk+AxA4aT8BLOU7/WS5D1xBjG+oxvPhN7If+a0vp5jU7KJI++dHXc/IfQPerz8mrbtSQoyMZyw48NslC2vToCwln4GQRrqyQlLask50RUxRbyhy2rU0tub28ROt+PbFld6Bg16LFvzuBgyRd8necBrOvvLCRR4QmjQHV5eGViuJchdb72AZ78LTFuZXe6GAVpIqPMz4nV0+HJO0Dmf6+EXLjwagpKKKNCwpSJ3GSipHw440In2+YPCXZL1aUW8/O9OGws3t1npqV/JPWqW6NadtL0jag5PycjN97bv/JjIk8+v6mEA9KhxALvTHR/al3tFZ8g784YNSUAxHZa/uaF/M/6/LbTIBVHkmOaBmmlUxNNVlrrhHefP9Cte8hyE98dFakORCpPFYzGI0nvFJi7i+yNmb738zqVgbqoXtQOJ+QfI9PdnrikwJx/JmyEZNloXlpHAtLym7NlMtzL9lx0KrXnyTQzgzfDoqkQx7SQXD2VsyDOfg4QdSrtY2fkK5NpAohakXK7fNNyRJigqoVnXEc9E2nu0OE/3yumg77bI5px15CQOQ4hoxkHwUepXFPVwZgzBagCOPpraNF26RME8RIAKBhlYo/1Fw1kxmG69iip2k5RRyy3xze4iNxvy467vwn7AovGHcL7a+v1dwWO+ShehEunn8ofe19p9S5EecaUyLizJePT8i9Jp0wuZLOdebRSVdEb6ye7mnmeN3TSIIZ3Bgzpedf6rY9K0i8r5002451B1JcPUtkQ6sXbXU+MKBsBMfHPsrCOEQ5FHHx2QDazR3B/6zS64bZwz4396RjVyD3iONsPlbAQy4N/EL2cNpkjC1epXAT6G6sFeQkrCXmToryQb2svj/TUZev7oYL2AH3Ig6Bf9gL8UQiPp9jaICZbL6mMt5uznGhjkaNoNYLt/fZYbeMc/KYCemtPXVLlyHxELCX28glYPBCf1RzRZgSvipmNJDG3RSu4bpLqxHw19jB6QkiEUBhtxNy8SrH0C3U4yivkk4SpUwNZR06OnPxoZUwLbEYenLOc+VykxEIbdlNya+XYRvQoaGuzGhagmQVX5Q/O68O/g9MCh60QKZTER/sCV5Gv4f8L4SIxbq5VSkUDvK623Z+0ftssGspkqSMeSYmLPzq1r3Ex77F5AEgxsrGB3q0946q7CtnMV3UOVdi5opjJ2zx4fh8wjN85t2NWI9PcxNcz10cdI/lG36U1z4ov/jj46mUAUv6Yxms5+alXTBiVoZo57WljD9lIZ37uvXc+PDa1rKcHF6WeUIDqa1XKFW2/SFFHfbzRRfHjaixi/OkuQH+yGfd2BNQCXBViQMJcWPm36/bASSOolDReEUiVYfjwF3RQAFcKOPsKn0ZbCPDU0f4wnOYkAm0+2+CLSh40jHiuVN81PsTtzzLfuhJ0oaogvl0ZPXI6N4j8jXQiHo1XIkUbuYZ8Yn0Js10iprqoAQO4X86kKjBYyxbhDcRJq9X/7a6MlVLetwaYh3cxUf5yQWJzfloTehR7KEWVPm5vLtEkpFxgADKZaUgYcFpbmPkFfJCMknKDdM/jAzEa77gMbV+Q9bNitz+Q1bKmwScC2yAerR/wZcQyJMr7A+ZfolJxM1nTOPO5aa1GOvVyCRzkADMza3mWU+4nEtXIQ/OSgFZ8aNH8zEIfh1Zn0kqazNagQZj/0ZZdz1U/l4RoMLo+Im1UH0f1TVS38+7lHQoskzaxM+jw+5eBy1DGww2a1s4U2KSV1ZKzMWySt9jw8OOSqZGk8m6KSNo+aZqriQlroDXRFqu4P0ji0wD1KtESoAPY/GVtb9Jog/iDW/toxd08Kx/wxrM31c9RkYIt6AAIWAmI8csMIO" + } + +很明显是 AES 加密 + +这里就很熟悉了 AES加密,贴一段加密代码 + + const CryptoJS = require("crypto-js"); + + let value = "123456"; //待加密的字符串 + let secret_value = "af25-87hk-a35v-5"; //密匙 16位 + let iv_value = "af25-87hk-a35v-5"; // 初始向量 initial vector 16位 + + // 密匙和向量处理 + let secret = CryptoJS.enc.Utf8.parse(secret_value); + let iv = CryptoJS.enc.Utf8.parse(iv_value); + + // 加密 + let encrypted = CryptoJS.AES.encrypt(value, secret, { + iv: iv, + // mode 支持 CBC, CFB,CTB,ECB,OFB,OFB, 默认CBC + mode: CryptoJS.mode.CBC, + + // NoPadding, zeropadding 默认Pkcs7 即 pkcs5 + padding: CryptoJS.pad.Pkcs7 + }); + + // 将加密结果转换为字符串 + encrypted = encrypted.toString(); + + // 解密,传入密文,密钥盒向量设置加密与填充模式 + let decrypted = CryptoJS.AES.decrypt(encrypted, secret, { + iv: iv, + // mode 支持 CBC, CFB,CTB,ECB,OFB,OFB, 默认CBC + mode: CryptoJS.mode.CBC, + + // NoPadding, zeropadding 默认Pkcs7 即 pkcs5 + padding: CryptoJS.pad.Pkcs7 + }); + + // 将解密结果转换为utf8字符串 + decrypted = CryptoJS.enc.Utf8.stringify(decrypted); + + console.log(value); + console.log(encrypted); + console.log(decrypted); + +既然判断是aes加密这里需要得到 + + 密匙16位secret_value, + 初始向量 initial vector 16位 iv_value, + mode + diff --git a/巨量算数-ase加密-signature-rpc/readme.md b/巨量算数-ase加密-signature-rpc/readme1.md similarity index 100% rename from 巨量算数-ase加密-signature-rpc/readme.md rename to 巨量算数-ase加密-signature-rpc/readme1.md