X-Gorgon算法参数获取(python版,附源码)
昨天在搜索X-Gorgon算法的时候看到一个老哥写的比较好,具体网址忘了,怕下次找不到了所以发在这里码住,稍作了点改动
代码仅用于学习探讨
1 # -*- coding: utf-8 -*- 2 """ 3 X-Gorgon加密算法python版 4 1.时间戳转十六进制 5 2.将时间戳排序俩次, 6 a1 v3 是排序key 7 sprintf(byte_102323F30, "%08x", a1); 8 sprintf(byte_102323F3A, "%08x", v3); 9 3.将url参数用MD5加密一次或俩次根据时间戳&运算 10 4.将第一次排序结果写入前16位地址加一写入(从1插入),隔一位插入,前边拼a1 11 5.将第二次排序结果写入后16位(从0插入)后边拼e1 12 """ 13 import requests 14 import hashlib 15 import time 16 17 byteTable1 = "D6 28 3B 71 70 76 BE 1B A4 FE 19 57 5E 6C BC 21 B2 14 37 7D 8C A2 FA 67 55 6A 95 E3 FA 67 78 ED 8E 55 33 89 A8 CE 36 B3 5C D6 B2 6F 96 C4 34 B9 6A EC 34 95 C4 FA 72 FF B8 42 8D FB EC 70 F0 85 46 D8 B2 A1 E0 CE AE 4B 7D AE A4 87 CE E3 AC 51 55 C4 36 AD FC C4 EA 97 70 6A 85 37 6A C8 68 FA FE B0 33 B9 67 7E CE E3 CC 86 D6 9F 76 74 89 E9 DA 9C 78 C5 95 AA B0 34 B3 F2 7D B2 A2 ED E0 B5 B6 88 95 D1 51 D6 9E 7D D1 C8 F9 B7 70 CC 9C B6 92 C5 FA DD 9F 28 DA C7 E0 CA 95 B2 DA 34 97 CE 74 FA 37 E9 7D C4 A2 37 FB FA F1 CF AA 89 7D 55 AE 87 BC F5 E9 6A C4 68 C7 FA 76 85 14 D0 D0 E5 CE FF 19 D6 E5 D6 CC F1 F4 6C E9 E7 89 B2 B7 AE 28 89 BE 5E DC 87 6C F7 51 F2 67 78 AE B3 4B A2 B3 21 3B 55 F8 B3 76 B2 CF B3 B3 FF B3 5E 71 7D FA FC FF A8 7D FE D8 9C 1B C4 6A F9 88 B5 E5" 18 19 def encryption(url): 20 """ 21 对参数全部挨个进行md5加密 22 """ 23 obj = hashlib.md5() # 先创建一个md5的对象 24 # 写入要加密的字节 25 obj.update(url.encode("UTF-8")) 26 # 获取密文 27 secret = obj.hexdigest() 28 return secret.lower() 29 30 def getXGon(url, stub, cookies): 31 """ 32 通过请求数据获取XGon加密字符串 33 """ 34 NULL_MD5_STRING = "00000000000000000000000000000000" 35 sb = "" 36 if len(url) < 1: 37 sb = NULL_MD5_STRING 38 else: 39 sb = encryption(url) 40 if len(stub) < 1: 41 sb += NULL_MD5_STRING 42 else: 43 sb += stub 44 if len(cookies) < 1: 45 sb += NULL_MD5_STRING 46 else: 47 sb += encryption(cookies) 48 # 这里没看太懂,先直接给-1试试 49 index = -1 50 # index = cookies.index("sessionid=") 51 if index == -1: 52 sb += NULL_MD5_STRING 53 else: 54 sessionid = cookies[index + 10:] 55 if sessionid.__contains__(';'): 56 endIndex = sessionid.index(';') 57 sessionid = sessionid[:endIndex] 58 sb += encryption(sessionid) 59 return sb 60 61 def input(timeMillis, inputBytes): 62 """ 63 对时间戳和XGon加密串进行加工 64 """ 65 result = [] 66 for i in range(4): 67 if inputBytes[i] < 0: 68 temp = hex(inputBytes[i]) + '' 69 temp = temp[6:] 70 result.append(temp) 71 else: 72 temp = hex(inputBytes[i]) + '' 73 result.append(temp) 74 for i in range(4): 75 result.append("0") 76 for i in range(4): 77 if inputBytes[i + 32] < 0: 78 result.append(hex(inputBytes[i + 32]) + '')[6:] 79 else: 80 result.append(hex(inputBytes[i + 32]) + '') 81 for i in range(4): 82 result.append("0") 83 tempByte = hex(int(timeMillis)) + "" 84 tempByte = tempByte.replace("0x", "") 85 for i in range(4): 86 a = tempByte[i * 2:2 * i + 2] 87 result.append(tempByte[i * 2:2 * i + 2]) 88 for i in range(len(result)): 89 result[i] = result[i].replace("0x", "") 90 return result 91 92 def initialize(data): 93 """ 94 对加工后的数据进行转码,利用秘钥初始化 95 """ 96 myhex = 0 97 byteTable2 = byteTable1.split(" ") 98 for i in range(len(data)): 99 hex1 = 0 100 if i == 0: 101 hex1 = int(byteTable2[int(byteTable2[0], 16) - 1], 16) 102 byteTable2[i] = hex(hex1) 103 # byteTable2[i] = Integer.toHexString(hex1); 104 elif i == 1: 105 temp = int("D6", 16) + int("28", 16) 106 if temp > 256: 107 temp -= 256 108 hex1 = int(byteTable2[temp - 1], 16) 109 myhex = temp 110 byteTable2[i] = hex(hex1) 111 else: 112 temp = myhex + int(byteTable2[i], 16) 113 if temp > 256: 114 temp -= 256 115 hex1 = int(byteTable2[temp - 1], 16) 116 myhex = temp 117 byteTable2[i] = hex(hex1) 118 if hex1 * 2 > 256: 119 hex1 = hex1 * 2 - 256 120 else: 121 hex1 = hex1 * 2 122 hex2 = byteTable2[hex1 - 1] 123 result = int(hex2, 16) ^ int(data[i], 16) 124 data[i] = hex(result) 125 for i in range(len(data)): 126 data[i] = data[i].replace("0x", "") 127 return data 128 129 def handle(data): 130 """ 131 对转码后的数据进行替换 132 """ 133 for i in range(len(data)): 134 byte1 = data[i] 135 if len(byte1) < 2: 136 byte1 += '0' 137 else: 138 byte1 = data[i][1] + data[i][0] 139 if i < len(data) - 1: 140 byte1 = hex(int(byte1, 16) ^ int(data[i + 1], 16)).replace("0x", "") 141 else: 142 byte1 = hex(int(byte1, 16) ^ int(data[0], 16)).replace("0x", "") 143 byte1 = byte1.replace("0x", "") 144 a = (int(byte1, 16) & int("AA", 16)) / 2 145 a = int(abs(a)) 146 byte2 = ((int(byte1, 16) & int("55", 16)) * 2) | a 147 byte2 = ((byte2 & int("33", 16)) * 4) | (int)((byte2 & int("cc", 16)) / 4) 148 byte3 = hex(byte2).replace("0x", "") 149 if len(byte3) > 1: 150 byte3 = byte3[1] + byte3[0] 151 else: 152 byte3 += "0" 153 byte4 = int(byte3, 16) ^ int("FF", 16); 154 byte4 = byte4 ^ int("14", 16) 155 data[i] = hex(byte4).replace("0x", "") 156 return data 157 158 def xGorgon(timeMillis, inputBytes): 159 """ 160 时间戳和XGon加密字符串处理,生成最终X-Gorgon参数 161 """ 162 data1 = [] 163 data1.append("3") 164 data1.append("61") 165 data1.append("41") 166 data1.append("10") 167 data1.append("80") 168 data1.append("0") 169 data2 = input(timeMillis, inputBytes) 170 data2 = initialize(data2) 171 data2 = handle(data2) 172 for i in range(len(data2)): 173 data1.append(data2[i]) 174 175 xGorgonStr = "" 176 for i in range(len(data1)): 177 temp = data1[i] + "" 178 if len(temp) > 1: 179 xGorgonStr += temp 180 else: 181 xGorgonStr += "0" 182 xGorgonStr += temp 183 return xGorgonStr 184 185 def strToByte(str): 186 """ 187 对XGon加密字符串进行二次转换 188 """ 189 length = len(str) 190 str2 = str 191 bArr = [] 192 i = 0 193 while i < length: 194 # bArr[i/2] = b'\xff\xff\xff'+(str2hex(str2[i]) << 4+str2hex(str2[i+1])).to_bytes(1, "big") 195 a = str2[i] 196 b = str2[1 + i] 197 c = ((str2hex(a) << 4) + str2hex(b)) 198 bArr.append(c) 199 i += 2 200 return bArr 201 202 def str2hex(s): 203 """ 204 16进制处理 205 """ 206 odata = 0 207 su = s.upper() 208 for c in su: 209 tmp = ord(c) 210 if tmp <= ord('9'): 211 odata = odata << 4 212 odata += tmp - ord('0') 213 elif ord('A') <= tmp <= ord('F'): 214 odata = odata << 4 215 odata += tmp - ord('A') + 10 216 return odata 217 218 if __name__ == "__main__": 219 # 抓包获取请求url 220 url = "https://xxxxx" 221 ts = str(time.time()).split(".")[0] 222 # ts = "1638959449" 223 # _rticket = str(time.time() * 1000).split(".")[0] 224 params = url[url.index('?') + 1:] 225 # 下面两个参数按需填写 226 STUB = "" 227 cookies = "" 228 # 获取gorgon参数 229 s = getXGon(params, STUB, cookies) 230 gorgon = xGorgon(ts, strToByte(s)) 231 # 拼请求头 232 headers = { 233 "X-Gorgon": gorgon, 234 # "X-SS-REQ-TICKET": "1585711173953", 235 "X-Khronos": ts, 236 # "sdk-version": "1", 237 # "Accept-Encoding": "gzip", 238 # "X-SS-REQ-TICKET": _rticket, 239 # "User-Agent": "", 240 # "Host": "aweme.snssdk.com", 241 # "Cookie": cookies, 242 # "Connection": "Keep-Alive", 243 # "x-tt-token": "00080ab789c0bf0519740314c59de87d8ace96d49d8ab2afd7a0f09cba0911612f99baf92acae289860e0f84ffd97fc2c344" 244 } 245 resp = requests.get(url, headers=headers) 246 print(resp.text) 247
