我用hook拦截自身的WSAsend经常会拦截不到,但是send就很稳定,我想获得http访问地址的,能不能从send拦截的包里提取出http的地址?求教,谢谢。
拦截的字节集如下。
{0,0,1,50,2,1,0,0,1,40,55,71,71,67,108,57,72,115,77,43,119,88,50,48,118,72,56,97,52,69,115,69,88,99,88,101,43,88,89,88,66,90,78,89,82,105,107,100,48,51,54,53,49,109,122,110,82,70,73,102,43,52,43,52,83,103,66,86,70,119,56,87,76,76,108,76,48,74,115,70,108,109,69,67,53,66,121,117,86,48,75,51,117,68,119,84,117,48,115,55,103,85,81,112,50,50,113,117,104,43,107,70,78,43,54,100,116,98,76,104,85,80,121,53,72,73,66,122,90,65,74,70,85,76,83,73,70,113,99,72,111,75,102,114,122,121,104,98,72,99,99,82,78,89,89,112,67,106,56,67,107,103,48,75,112,81,81,68,113,112,73,121,88,74,98,80,122,70,68,49,57,87,89,70,65,68,97,67,101,78,71,106,50,78,108,73,66,120,69,51,114,50,49,108,74,111,118,56,71,48,110,65,110,98,70,80,49,120,68,68,51,67,52,83,89,113,112,112,56,53,114,49,97,113,116,73,104,53,53,110,112,85,107,86,104,82,71,49,74,121,50,84,89,67,84,75,49,82,90,75,55,100,115,66,121,88,97,75,101,50,119,68,118,75,76,117,115,115,112,69,110,87,105,108,122,43,77,78,74,47,107,43,116,56,74,47,79,74,86,47,84,77,69,65,61,61}
补充内容 (2017-1-13 00:19):
上面tcp包贴错了,我自己短路了,这帖子直接问有什么办法拦截自身访问的http地址吗?我软件有调用网页的,网页上面有flash,访问http是这个flash访问的。
要稳定的。网截会漏,排除。 |