mirror of
https://github.com/luzhisheng/js_reverse.git
synced 2025-04-19 21:09:52 +08:00
6.3 KiB
6.3 KiB
极验demo地址
案例
https://www.geetest.com/demo/slide-float.html
通过抓包的流程
1.获取了
challenge: "a9ecc15e9116f3045390258cfae06040"
gt: "019924a82c70bb123aae90d483087f94"
new_captcha: true
success: 1
2.通过上面的gt获得了js代码 fullpage.9.0.8.js
geetest_1641456537007({status: "success",…})
data: {type: "fullpage", static_servers: ["static.geetest.com/", "dn-staticdown.qbox.me/"],…}
aspect_radio: {slide: 103, click: 128, voice: 128, pencil: 128, beeline: 50}
beeline: "/static/js/beeline.1.0.1.js"
click: "/static/js/click.3.0.2.js"
fullpage: "/static/js/fullpage.9.0.8.js"
geetest: "/static/js/geetest.6.0.9.js"
pencil: "/static/js/pencil.1.0.3.js"
slide: "/static/js/slide.7.8.6.js"
static_servers: ["static.geetest.com/", "dn-staticdown.qbox.me/"]
type: "fullpage"
voice: "/static/js/voice.1.2.0.js"
status: "success
9.0.8
大版本.中版本.小版本
一般情况小版本更新算法是不会改变的
3.最后请求https://apiv6.geetest.com/get.php
提交
gt: 019924a82c70bb123aae90d483087f94
challenge: a9ecc15e9116f3045390258cfae06040
lang: zh-cn
pt: 0
client_type: web
w: 9DUewz7mJWnFi4uk1tr......
返回
geetest_1641456537329({status: "success", data: {theme: "wind", theme_version: "1.5.8",…}})
data: {theme: "wind", theme_version: "1.5.8",…}
api_server: "api.geetest.com"
c: [12, 58, 98, 36, 43, 95, 62, 15, 12]
0: 12
1: 58
2: 98
3: 36
4: 43
5: 95
6: 62
7: 15
8: 12
feedback: "https://www.geetest.com/contact#report"
i18n_labels: {copyright: "由极验提供技术支持", error: "网络不给力", error_content: "请点击此处重试", error_title: "网络超时",…}
copyright: "由极验提供技术支持"
error: "网络不给力"
error_content: "请点击此处重试"
error_title: "网络超时"
fullpage: "智能检测中"
goto_cancel: "取消"
goto_confirm: "前往"
goto_homepage: "是否前往验证服务Geetest官网"
loading_content: "智能验证检测中"
next: "正在加载验证"
next_ready: "请完成验证"
read_reversed: false
ready: "点击按钮进行验证"
refresh_page: "页面出现错误啦!要继续操作,请刷新此页面"
reset: "请点击重试"
success: "验证成功"
success_title: "通过验证"
logo: true
s: "65386e31"
static_servers: ["static.geetest.com", "dn-staticdown.qbox.me"]
0: "static.geetest.com"
1: "dn-staticdown.qbox.me"
theme: "wind"
theme_version: "1.5.8"
status: "success"
4.ajax.php
提交
gt: 019924a82c70bb123aae90d483087f94
challenge: a414df099537d238cb7ca3c487414ff4
lang: zh-cn
pt: 0
client_type: web
w: BjLmPs34hYB(EhN88sI....
返回
geetest_1641458409189({status: "success", data: {result: "slide"}})
data: {result: "slide"}
result: "slide"
status: "success"
5.get.php
提交
is_next: true
type: slide3
gt: 019924a82c70bb123aae90d483087f94
challenge: a414df099537d238cb7ca3c487414ff4
lang: zh-cn
https: true
protocol: https://
offline: false
product: embed
api_server: api.geetest.com
isPC: true
autoReset: true
width: 100%
callback: geetest_1641458405510
返回
geetest_1641458405510({gt: "019924a82c70bb123aae90d483087f94", challenge: "a414df099537d238cb7ca3c487414ff449",…})
api_server: "https://api.geetest.com"
benchmark: false
bg: "pictures/gt/a3e9020a7/bg/653d0c160.jpg"
c: [12, 58, 98, 36, 43, 95, 62, 15, 12]
challenge: "a414df099537d238cb7ca3c487414ff449"
clean: false
feedback: "https://www.geetest.com/contact#report"
fullbg: "pictures/gt/a3e9020a7/a3e9020a7.jpg"
fullpage: false
gct_path: "/static/js/gct.e6dfc00e5bffe92123ca60b88da1e708.js"
gt: "019924a82c70bb123aae90d483087f94"
height: 160
hide_delay: 800
https: true
i18n_labels: {cancel: "取消", close: "关闭验证", error: "请重试", fail: "请正确拼合图像", feedback: "帮助反馈", forbidden: "怪物吃了拼图,请重试",…}
id: "aa414df099537d238cb7ca3c487414ff4"
link: ""
logo: true
mobile: true
product: "embed"
s: "432f3165"
show_delay: 250
show_voice: true
slice: "pictures/gt/a3e9020a7/slice/653d0c160.png"
so: 0
static_servers: ["static.geetest.com/", "dn-staticdown.qbox.me/"]
template: ""
theme: "ant"
theme_version: "1.2.6"
type: "multilink"
version: "6.0.9"
width: "100%"
xpos: 0
ypos: 28
发现里面有原始图片(乱码),遮照图(乱码),滑动图
6.ajax.php
提交
gt: 019924a82c70bb123aae90d483087f94
challenge: a414df099537d238cb7ca3c487414ff449
lang: zh-cn
$_BBF: 0
client_type: web
w: )2aL(q5MW10p8S......
返回
geetest_1641458615294({success: 1, message: "success", validate: "dfd89b03f32cc4f88ab6e58b31bd9a46", score: "6"})
message: "success"
score: "6"
success: 1
validate: "dfd89b03f32cc4f88ab6e58b31bd9a46"
一共6布信息,w的值是加密过的,需要破解
js调试
1. 找到乱码原图还原
点击图片html查看,发现有 <canvas> 标签定义图形
什么是 canvas?
HTML5 <canvas> 元素用于图形的绘制,通过脚本 (通常是JavaScript)来完成.
<canvas> 标签只是图形容器,您必须使用脚本来绘制图形。
你可以通过多种方法使用 canvas 绘制路径,盒、圆、字符以及添加图像。
进行调试canvas创建图片断点