某讯滑块逆向记录
某讯滑块逆向记录
某讯滑块搞了快大半年了 这里简单记录下流程。相比目前的腾讯滑块,在更新前流程较为复杂些
目前的某讯滑块流程
1.一次初始化参数
2. 一次提交
具体的参数
- collect
- tlg
- eks
- ans
这三个缺一不可。简单说下collect参数某加密,密约大概一个月会变一次;至于tlg看看源码就知道;eks搜一下就知道;ans很明显包含滑块坐标。这里面核心当然是collect,包含一些浏览器环境、鼠标轨迹等等、还有些自定义的数据:
{"cd":[0,"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36","Win32",[360,360],"98k","221.237.22.249",24,1920,"ANGLE (Intel, Intel(R) UHD Graphics 730 Direct3D11 vs_5_0 ps_5_0, D3D11)","GgoAAAANSUhEUgAAASwAAACWCAYAAAG4zg9PFnZcfeEVfxorjqQo66B2geI//AAJ8P9Hrw4gAAAABJRU5ErkJggg==",960436924,1652333768,1658311563,1,"iframe","UTF-8",[],73540128,1080, [[122,242,7],[-1,1,12],[-4,1,18],[-3,1,6],[-2,1,7],[-4,2,8],[-6,3,16],[-5,2,21],[-3,1,3],[-1,1,8],[-3,0,8],[-3,1,8],[-1,0,8],[-2,1,8],[-2,1,9],[-2,0,8],[-1,0,7],[-1,0,8],[-2,2,8],[-1,0,8],[-2,0,9],[-1,1,9],[-1,0,16],[-2,2,7],[-1,0,39],[-1,0,8],[-2,1,8],[-1,0,8],[-1,1,17],[-1,0,8],[-1,1,16],[-1,0,16],[0,1,8],[-1,1,16],[-2,0,8],[0,1,40],[0,1,40],[0,1,7],[0,1,9],[1,1,16],[0,1,8],[2,1,17],[1,0,17],[1,1,5],[1,1,8],[1,0,9],[2,1,8],[2,1,8],[3,1,8],[4,0,8],[4,0,8],[6,2,8],[8,0,8],[6,1,8],[5,1,7],[8,0,9],[6,1,8],[5,0,8],[7,0,7],[6,0,9],[1,1,12]] ,0,1,12,0,0,2,"https://007.qq.com/?rand=1512991986334",1023,"",0.434999942779541,"Google Inc. (Intel)","6955462819628228608","1920-1080-1040-24-*-*-|-*","https://t.captcha.qq.com/cap_union_new_show?rand=1519713624347",0,["zh-CN","zh-TW","zh","en-US","en"],1658311564,"+08"], "sd":{"od":"C","clientType":"","coordinate":[10,64,0.5015],"trycnt":1,"refreshcnt":0,"slideValue":[[62,276,2],[1,1,7],[1,0,9],[2,1,8],[2,1,8],[3,1,8],[4,0,8],[4,0,8],[6,2,8],[8,0,8],[6,1,8],[5,1,6],[8,0,9],[6,1,8],[5,0,8],[7,0,7],[6,0,9],[4,2,9],[4,0,7],[4,0,7],[3,0,9],[2,0,8],[3,0,8],[3,0,7],[2,0,9],[2,0,8],[3,0,8],[2,0,8],[3,0,8],[3,0,8],[4,0,8],[4,0,8],[4,0,8],[4,0,8],[4,0,8],[5,0,7],[4,0,8],[1,0,8],[4,0,8],[2,0,6],[1,0,8],[2,0,8],[1,0,8],[2,0,16],[1,0,41],[2,0,23],[1,1,16],[2,0,32],[2,0,8],[2,0,7],[1,0,7],[3,1,8],[2,2,8],[2,0,8],[2,0,8],[1,0,7],[2,0,8],[2,1,7],[3,0,8],[3,1,7],[1,0,8],[1,1,8],[1,0,8],[2,0,7],[1,0,9],[1,0,8],[1,0,16],[0,1,8],[1,0,8],[1,0,16],[1,0,8],[1,0,7],[1,0,15],[2,0,57],[0,0,0]],"dragobj":1,"ft":"qf_7P_n_H"}}
搞定这个当然就相当于搞完了、至于如何获取指纹、如何获取密钥?你可以补环境、当然从零到有补出来是非常困难的、因为他有很多dom的操作
结果
最后能拿到ticket、randstr就算成功了