Before writing this article, I seem to remember I used to publish again. Baidu translation interface to modify the version number can get the old version and the old version is not encrypted JS, proper way it is the same.
But today's tutorial would not be so low, we honestly proper way to translate JS break out today, after all, the proper way of JS simple encryption is rare.
Look at the results:
Begin the tutorial:
The first step Ethereal:
The direct easily caught, oh no, it should be more experienced people can directly get caught.
Tgt value is returned in the corresponding translation of what we have.
Careful analysis of this package:
post request, then after repeated tests found, wherein the salt, sign, ts may be changed.
Ts difficult to find just less than a salt, in front of the same. And if you have experience, you see ts will know this is the current time.
Of course, this is only speculation, not really. So we can look to find the source of salt, which in the end is generated by what method, then we use the python code to simulate.
Just click on the find, of course, this is to be experienced. We can see the amount of information is sufficient. For example i = r + a random number, and r = ts, i = salt. Not to validate our guess - not difficult to find ts only less than a salt, in front of the same.
And r = (new Date) .getTime (), this is not the current time is to take it? Even if you do not know JS grammar, you would have guessed it? So OK, salt and ts we've got.
The value of the sign is how do we get it?
Md5 is a summary, there are only two variables, e, i, and i we've got in front. How do I get E, even ahead of us t = n.md5 (navigator.appVersion), bv = t, it is clear that even bv is encrypted, but our navigator.appVersion is a fixed value.
So how do get their value? debug can!
OK, so far all problems have been resolved, e is the string we inquired, navigator.appVersion agent for our customers. (Analog request, remember to add the request packet.)
If you find my article helpful to you, you can focus on my personal public number, more convenient for you to push the latest technology.
