关于match/v2加密

[xmexg]

7

下面这个脚本意外能解开最新的加密

 frida -U -n 小猿口算 -l .\anay_webview.js

首先复制下密文，得到

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

解base64得到

[null,{"result":"eyJwa0lkU3RyIjoiNjA5NDM4MTI3MzQ1Mzk3ODE3Iiwib3RoZXJVc2VyIjp7InVzZXJJZCI6MTA1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\u003d\n"}]

删掉所有\n

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\u003d

解unicode

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

再解base64得到明文

{"pkIdStr":"609438127345397817","otherUser":{"userId":1056044272,"userName":"猿宝44272","avatarUrl":"https://leo-online.fbcontent.cn/leo-gallery/16a9fd09b1d892a.png","userPendantUrl":null},"otherWinCount":0,"selfWinCount":13,"targetCostTime":50000,"examVO":{"pkIdStr":"609438127345397817","pointId":2,"pointName":"20以内数的比大小","ruleType":0,"questionCnt":10,"correctCnt":0,"costTime":0,"questions":[{"id":0,"examId":609438127345397817,"content":"15\\circle19","answer":"<","userAnswer":null,"answers":["<"],"status":0,"script":null,"wrongScript":null,"ruleType":"COMPARE"},{"id":1,"examId":609438127345397817,"content":"10\\circle7","answer":">","userAnswer":null,"answers":[">"],"status":0,"script":null,"wrongScript":null,"ruleType":"COMPARE"},{"id":2,"examId":609438127345397817,"content":"8\\circle18","answer":"<","userAnswer":null,"answers":["<"],"status":0,"script":null,"wrongScript":null,"ruleType":"COMPARE"},{"id":3,"examId":609438127345397817,"content":"5\\circle13","answer":"<","userAnswer":null,"answers":["<"],"status":0,"script":null,"wrongScript":null,"ruleType":"COMPARE"},{"id":4,"examId":609438127345397817,"content":"15\\circle8","answer":">","userAnswer":null,"answers":[">"],"status":0,"script":null,"wrongScript":null,"ruleType":"COMPARE"},{"id":5,"examId":609438127345397817,"content":"11\\circle6","answer":">","userAnswer":null,"answers":[">"],"status":0,"script":null,"wrongScript":null,"ruleType":"COMPARE"},{"id":6,"examId":609438127345397817,"content":"15\\circle6","answer":">","userAnswer":null,"answers":[">"],"status":0,"script":null,"wrongScript":null,"ruleType":"COMPARE"},{"id":7,"examId":609438127345397817,"content":"7\\circle11","answer":"<","userAnswer":null,"answers":["<"],"status":0,"script":null,"wrongScript":null,"ruleType":"COMPARE"},{"id":8,"examId":609438127345397817,"content":"10\\circle19","answer":"<","userAnswer":null,"answers":["<"],"status":0,"script":null,"wrongScript":null,"ruleType":"COMPARE"},{"id":9,"examId":609438127345397817,"content":"8\\circle15","answer":"<","userAnswer":null,"answers":["<"],"status":0,"script":null,"wrongScript":null,"ruleType":"COMPARE"}],"updatedTime":0}}

这次我们多了一步，删除所有\n, 这下完美解决乱码

[taotao5]

没啥难度

这个怎么做到的？

[NiuHK]

这个开frida服务器,然后设置端口转发,但是运行do_matchv2.py 只提示个Script loaded successfully ,抓不到数据,需要配置其他服务吗

[Hillton53]

需要打开到答题页面才会爬到内容

Sent from Proton Mail for iOS

2024 年 10 月 11 日星期五 21:53, 苍术 @.***(mailto:2024 年 10 月 11 日星期五 21:53, 苍术 < 来信：

这个开frida服务器,然后设置端口转发,但是运行do_matchv2.py 只提示个Script loaded successfully ,抓不到数据,需要配置其他服务吗

— Reply to this email directly, view it on GitHub, or unsubscribe. You are receiving this because you commented.Message ID: @.***>

[NiuHK]

需要打开到答题页面才会爬到内容 Sent from Proton Mail for iOS 2024 年 10 月 11 日星期五 21:53, 苍术 @.(mailto:2024 年 10 月 11 日星期五 21:53, 苍术 < 来信： … 这个开frida服务器,然后设置端口转发,但是运行do_matchv2.py 只提示个Script loaded successfully ,抓不到数据,需要配置其他服务吗 — Reply to this email directly, [view it on GitHub](#9 (comment)), or unsubscribe. You are receiving this because you commented.Message ID: @.>

是的,已经打开答题页面了但是抓不到数据,是需要配置其他的环境吗?我只配了frida

[Hillton53]

frida用的应该是.js，运行之后只能爬到密文，还得用楼主的方式解密

Sent from Proton Mail for iOS

2024 年 10 月 11 日星期五 21:59, 苍术 @.***(mailto:2024 年 10 月 11 日星期五 21:59, 苍术 < 来信：

需要打开到答题页面才会爬到内容 Sent from Proton Mail for iOS 2024 年 10 月 11 日星期五 21:53, 苍术 @.(mailto:2024 年 10 月 11 日星期五 21:53, 苍术 <[来信：]())… 这个开frida服务器,然后设置端口转发,但是运行do_matchv2.py 只提示个Script loaded successfully ,抓不到数据,需要配置其他服务吗 — Reply to this email directly, [view it on GitHub](#9 (comment)), or unsubscribe. You are receiving this because you commented.Message ID: @.>

是的,已经打开答题页面了但是抓不到数据,是需要配置其他的环境吗?我只配了frida

— Reply to this email directly, view it on GitHub, or unsubscribe. You are receiving this because you commented.Message ID: @.***>

[Arsenicss]

没啥难度

这个怎么做到的？

逆算法，纯协议发包

[NiuHK]

frida用的应该是.js，运行之后只能爬到密文，还得用楼主的方式解密 Sent from Proton Mail for iOS 2024 年 10 月 11 日星期五 21:59, 苍术 @.***(mailto:2024 年 10 月 11 日星期五 21:59, 苍术 < 来信： …

需要打开到答题页面才会爬到内容 Sent from Proton Mail for iOS 2024 年 10 月 11 日星期五 21:53, 苍术 @.(mailto:2024 年 10 月 11 日星期五 21:53, 苍术 <[来信：]())… > 这个开frida服务器,然后设置端口转发,但是运行do_matchv2.py 只提示个Script loaded successfully ,抓不到数据,需要配置其他服务吗 — Reply to this email directly, [view it on GitHub]([#9 (comment)](#9 (comment))), or unsubscribe. You are receiving this because you commented.Message ID: @.> 是的,已经打开答题页面了但是抓不到数据,是需要配置其他的环境吗?我只配了frida — Reply to this email directly, [view it on GitHub](#9 (comment)), or unsubscribe. You are receiving this because you commented.Message ID: @.***>

我看演示中,直接运行py文件是有控制台输出,但是我这里没有,我再试试模拟器

[zipperWang]

没啥难度

这个怎么做到的？

逆算法，纯协议发包

大佬已经解决了sign的问题吗,能否开源一观

[Arsenicss]

没啥难度

这个怎么做到的？

逆算法，纯协议发包

大佬已经解决了sign的问题吗,能否开源一观

我不太清楚楼主做到了哪一步，如果可以能用frida去hook到sign函数的话直接用rpc主动调用即可做到，具体算法得进so层，是个动态注册的函数

[AyeeMinerva]

没啥难度

这个怎么做到的？

逆算法，纯协议发包

快开源,球球了

[xmexg]

?app开始检测frida了？？？

用旧版https://apkpure.com/cn/xiao-yuan-kou-suan/com.fenbi.android.leo/download/3.93.2

[AyeeMinerva]

为什么对result进行了替换但是重加密回去后, 无法在题目里生效? 简单来说就是改了题的数据没用 py代码中传回js文件后, app数据不会生效么

[zipperWang]

为什么对result进行了替换但是重加密回去后, 无法在题目里生效? 简单来说就是改了题的数据没用 py代码中传回js文件后, app数据不会生效么

需要再调用加密函数加密回去

[Ddddd-dd]

为什么对result进行了替换但是重加密回去后， 无法在题目里生效？ 简单来说就是改了题的数据没用 py代码中传回js文件后， app数据不会生效么

因为app传到前端界面的时候这边已经运行了 你返回数据回去前端肯定不会再次执行 除非从app重新加载这个界面 也就是从Anderson层面重新执行 但是这样就又回到了Android逆向了 最终的方法肯定还是Android逆向找到解密方法