|
|
50精币
来源:https://i.sdo.com/index/findPassword
页面进入会有个Get包 其中we_process_id参数我以为是随机的17位数字 写也是这样写的
https://safe.sdo.com/ajaxSafeDev/getCaptchaKey?_jsonp=jQuery112404103235622393695_1695501186081&we_process_id=39461695501186356&_src=i.sdo.com&_flow=findPwdMobile&we_request_times=1&we_cur_index=0&_=1695501186082
第一步取出captcha_key后获取验证码也是正常的 但是在输入验证码进行验证请求时就出现
({"errno":-1001,"msg":"对不起,异常的流程请求,请稍候再试。 [错误代码:-133025]","data":{"flow_last_error":"step check error, step error (inputAccOpt!=getCaptchaKey)"}});
we_process_id = 文本_取随机数字 (17, ) 调试输出 (we_process_id )Url = “https://safe.sdo.com/ajaxSafeDev ... 409777670839941308_” + 时间_取现行时间戳 () + “&we_process_id=” + we_process_id + “&_src=i.sdo.com&_flow=findPwdMobile&we_request_times=1&we_cur_index=0&_=” + 时间_取现行时间戳 ()Str = 到文本 (编码_编码转换对象 (网页_访问_对象 (Url, 0, , , , , , , , , , , , , , , , , ), , , )) 调试输出 (Str )
来源进行搜索 搜索到这里 往上接着找也没找出个所以然来
if ($we && $we.process) {
var p_id = $we.process.getData("id")
, p_flow = $we.process.getData("flow");
if (p_id) {
option.data["we_process_id"] = p_id;
option.data["_src"] = window.location.hostname;
}
最后验证成功后newpwd和newpwd_again 加密看是rsa 抠出来的js调试就计算失败了
define(["plugin/rsa/rsa.pack"], function() {
$we.rsa = {
publicKey: "C99F5B2FA7880E5224BCA8B6E6EAAF03CF0AE7CC74D881B2C532C0346B743911",
maxDigit: 131,
encryptExp: "10001",
encrypt: function(str) {
if (typeof encryptedString != "function")
return str;
return encryptedString(key, str);
}
};
setMaxDigits($we.rsa.maxDigit);
var key = new RSAKeyPair($we.rsa.encryptExp,'',$we.rsa.publicKey);
return $we.rsa;
});
function RSAKeyPair(a, b, c) {
this.e = biFromHex(a),
this.d = biFromHex(b),
this.m = biFromHex(c),
this.chunkSize = 2 * biHighIndex(this.m),
this.radix = 16,
this.barrett = new BarrettMu(this.m)
}
we_process_id newpwd newpwd_again 来个好哥哥教教
|
|
[复制链接]
粤公网安备 44522102000125 增值电信业务经营许可证 粤B2-20192173
发表于 2023-9-24 04:41:41
主题置顶卡
沉默卡
变色卡
楼主
扫一扫,关注易界动态