Tips: When you see this prompt, it indicates that the current article has been migrated from the original emlog blog system. The publication date of the article is quite old, and the formatting and content may not be complete. Please understand.
Sina Weibo Dynamic RSA Analysis Text + Login
Date: 2016-10-12 A Jue Tutorial Views: 3583 Comments: 5
Sina Weibo Dynamic RSA Analysis
1. IE Browser (version 9 and above)
2. HttpWatch (available in both Chinese and English)
3. JS Debugging Tools
Target Website: http://weibo.com (Sina Weibo)
2. Packet Capture
Still following our previous packet capture process, cultivating good habits, so I won't elaborate here.
3. Analyze Captured Data
1. Identify our login submission packet
2. Flexibly adapt keyword searches
5. JS Debugging
4. Finding Keywords
1. You can search for keywords on HttpWatch
You can also continue searching in IE's F12
2. Look for the pwencode keyword
1. This is different from last time; I will first copy the called code and make simple modifications because the copied code is not a function() like a subroutine in Easy Language
(This description may be incorrect)
We know that p is the password, and we will check the remaining two in the developer tools.
6. Specific Visual Analysis
User Comments:
admin 4 years ago (2016-11-25)
Looking for encryption algorithms based on jq's operating mode, not bad, thumbs up!
A Jue 4 years ago (2016-11-25)
Your name is also great! [Hehe]
One Thousand 5 years ago (2016-11-01)
Very impressive, learned the method.
0-0!!! 5 years ago (2016-10-18)
Can you share the software you used for HttpWatch? I couldn't capture any packets with what I found online! Thank you!