425 words
2 minutes
EZ AES
2025-01-26
网页爬虫
AES
/
js2py
/
English
/
js逆向

EZ 1#

https://www.jisilu.cn/login/

image-20250126142019719

search by url

image-20250126142305957

var key = '397151C04723421F';

function jslencode(text, aes_key) {
    var key = CryptoJS.enc.Utf8.parse(aes_key);
    var iv = CryptoJS.enc.Utf8.parse("");
    var srcs = CryptoJS.enc.Utf8.parse(text);
    var encrypted = CryptoJS.AES.encrypt(srcs, key, {
        iv: iv,
        mode: CryptoJS.mode.ECB,
        padding: CryptoJS.pad.Pkcs7
    });
    return encrypted.ciphertext.toString(CryptoJS.enc.Hex)
}

from Crypto.Cipher import AES
from Crypto.Util.Padding import pad
from binascii import hexlify

def jslencode(text, aes_key):
    key = aes_key.encode('utf-8')  # Convert the key to bytes
    iv = b''  # Empty IV for ECB mode
    cipher = AES.new(key, AES.MODE_ECB)  # Create a new AES cipher object
    srcs = text.encode('utf-8')  # Convert the text to bytes
    encrypted = cipher.encrypt(pad(srcs, AES.block_size))  # Encrypt and pad the text
    return hexlify(encrypted).decode('utf-8')  # Return the hex representation of the ciphertext


aes_key = '397151C04723421F'
text = "123456"

print(jslencode(text, aes_key))

EZ 2#

https://www.swguancha.com/home/query-city-page

image-20250126144150546

image-20250126144222088

from Crypto.Cipher import AES
from Crypto.Util.Padding import unpad
import base64
encrypted_data = "..."
key = 'QV1f3nHn2qm7i3xrj3Y9K9imDdGTjTu9'
# Convert the key to bytes
key_bytes = key.encode('utf-8')
# Decode the base64 encoded encrypted data
encrypted_data_bytes = base64.b64decode(encrypted_data)
# Create AES cipher object
cipher = AES.new(key_bytes, AES.MODE_ECB)
# Decrypt the data
decrypted_data = unpad(cipher.decrypt(encrypted_data_bytes), AES.block_size)
# Convert decrypted bytes to string
decrypted_string = decrypted_data.decode('utf-8')
print(decrypted_string)

attention#

sometimes there exist special characters so copy it to pycharm and just run it may lead to failure decryption. so its better to

requests#

'Content-Type': 'application/json;charset=UTF-8',

image-20250126145239464

there two methods to send this request

  • curl to python
json_data = {
    'size': 16,
    'current': 1,
    'propertyCode': [
        'DISTRICT_PROP_GJ025_RJDQSCZZ',
        'DISTRICT_PROP_GJ117_NMSYGGQDCYYCLS',
        'DISTRICT_PROP_GJ001_NMHJRK',
    ],
    'dimensionTime': '2019',
    'levelType': 2,
}

response = requests.post('https://app.swguancha.com/client/v1/cPublic/consumer/baseInfo', headers=headers, json=json_data)

# Note: json_data will not be serialized by requests
# exactly as it was in the original request.
# data = '{"size":16,"current":1,"propertyCode":["DISTRICT_PROP_GJ025_RJDQSCZZ","DISTRICT_PROP_GJ117_NMSYGGQDCYYCLS","DISTRICT_PROP_GJ001_NMHJRK"],"dimensionTime":"2019","levelType":2}'
# response = requests.post('https://app.swguancha.com/client/v1/cPublic/consumer/baseInfo', headers=headers, data=data)

response = requests.post('https://app.swguancha.com/client/v1/cPublic/consumer/baseInfo', headers=headers, data=json_data)

this is incorrect, only get

{"timestamp":"2025-01-26 14:57:18","path":"/client/v1/cPublic/consumer/baseInfo","status":500,"error":"Internal Server Error","message":"syntax error, pos 1, line 1, column 2size=16&current=1&propertyCode=DISTRICT_PROP_GJ025_RJDQSCZZ&propertyCode=DISTRICT_PROP_GJ117_NMSYGGQDCYYCLS&propertyCode=DISTRICT_PROP_GJ001_NMHJRK&dimensionTime=2019&levelType=2","requestId":"40fd2dc9-24982833"}
  • from lufy’s class(official)
data = {"size": 16,
        "current": 2,
        "propertyCode": [
            "DISTRICT_PROP_GJ025_RJDQSCZZ",
            "DISTRICT_PROP_GJ117_NMSYGGQDCYYCLS",
            "DISTRICT_PROP_GJ001_NMHJRK"],
        "dimensionTime": "2019",
        "levelType": 2
        }
resp = requests.post(url, data=json.dumps(data, separators=(',', ':')), headers=my_headers)

EZ3#

        function a(e) {
            let t = "10f5dd7c2d45d247"
              , o = s().enc.Utf8.parse(t)
              , r = s().enc.Utf8.parse(e);
            const n = s().enc.Utf8.parse(t);
            let a = s().AES.encrypt(r, o, {
                iv: n,
                mode: s().mode.CBC,
                padding: s().pad.Pkcs7
            });
            return a.ciphertext.toString()
        }

from Crypto.Cipher import AES
from Crypto.Util.Padding import pad
from Crypto.Util import Counter

def a(e):
    t = "10f5dd7c2d45d247"
    # Convert key and IV from UTF-8 strings to bytes
    o = t.encode('utf-8')  # key
    r = e.encode('utf-8')  # plaintext
    n = t.encode('utf-8')  # IV (same as key in original code)
    
    # Create AES cipher in CBC mode with PKCS7 padding
    cipher = AES.new(o, AES.MODE_CBC, iv=n)
    
    # Pad the plaintext and encrypt
    padded_data = pad(r, AES.block_size)
    encrypted_data = cipher.encrypt(padded_data)
    
    # Return the ciphertext as a hex string
    return encrypted_data.hex()
EZ AES
https://zycreverse.netlify.app/posts/js-reverse/jisilu/
Author
会写点代码的本子画手
Published at
2025-01-26
合肥滨湖国际会展中心
五矿请求数据加密
© 2025 会写点代码的本子画手. All Rights Reserved. / RSS / Sitemap
Powered by Astro & Fuwari