跳转至

5.1.4.   反编译app后台php解密实现

介绍

某客户通过revert手段动态调试获取到钉d app签到消息加密解密的通信密钥。需求:已知rsa密钥和token,通过php语言实现该解密算法,解密消息。

关键代码:

<?php
header("Content-Type: text/html;charset=utf-8");


require_once 'Aes.php';


$key = "55d71a45334bbee5a7b609ffdad10e39";


$message = $_SERVER["HTTP_AHUR"];


function decrypt($input, $key) {

    $td = mcrypt_module_open('rijndael-128', '', 'ecb', '');


    $iv = mcrypt_create_iv(mcrypt_enc_get_iv_size($td), MCRYPT_RAND);
    mcrypt_generic_init($td, $key, $iv);

    $decrypted = mdecrypt_generic($td, base64_decode($input));

    mcrypt_generic_deinit($td);


    mcrypt_module_close($td);


    return trim($decrypted);


}

$res = decrypt($message, $key);

$packageName = explode("_", $res)[0];

$version = explode("_", $res)[1];


if ($packageName == "com.alibaba.android.rimet") {


    if (strpos($version, "6.3.10") !== false) {


        echo '{"code":199,"msg":"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","data":[],"time":"2021-09-00 15:11:44"}';


    } else if (strpos($version, "6.3.15") !== false) {


        echo '{"code":199,"msg":"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","data":[],"time":"2021-09-17 15:11:44"}';

    } else if (strpos($version, "6.3.6") !== false) {


        echo '{"code":199,"msg":"6.3.6----------------------+38fy6HyDEyCzqSflEjd++zNVmbE/n05Gklamf1/AVrEfrgBsOi3ZtPUrlexJZ5o7/fVFM5yCWWDE5ytNyXIT0YX7ANNwzx+hyZwM6S3BDm0Fb+7WVbcOQYt4Grb98uJPmnx8rbBn8BkWR0jDeMZsTOhdnQWkqW0zY1QaN6xHAmqHaVaC9d6gsf0XcLEX+q9JfJYohVX9B9lCo076KM5/fYiyYKSud0QmT5RZ8PsSlfClP3k6eE5GajBpo5SxM2nnjSCuQJyJ9v97Oa5mgiLlu8OwqpBCvFaiN1CkkU3YOUCwXjm6z+IBV1p2edSdRaiX33AHgeasarRW5dPwcC34JiRAdprXK4DpjzwN6vnIULg3Cbu0FgUlNwygSDeP3TJXhVQ7lwI40jpsp2DOJHgzSgAmxYps4gQBgukV399ukHym4oyOwTgptQrVDnkIm8KMa/lr+vcXkt6DOMho8THhJ2BrmJAlZuDXlx4zGGhTkjoYTnjgc+ucf2WtoJXkaQ48GfXuy4tMe5y58XkQzWmUfFmuqxXZQGBCuxluqDfF9KR5Oo7nzBTLINKH6h5rs60wiXS6j2gj77ZQpopb/A+J+04UpMfYSyHoa3E/xFgFONWcMM2GGVU1Z9R2xa6+eWBRpJBrozaXH/j5U0aO1l/Mkb9mgPGsSW2Lfkbb4gk0yynewI9/p64Y81cwiWo7PXNo12TFlg+G4Z9YCg+nfka/qXjqA7ow4fNmjD5SrYcoeHlRo9AU8GFEwe5rLlu5WNMp9zimzW7n0Bua24seJAUgXfe8mXtVs8z","data":[],"time":"2021-09-17 15:11:44"}';


    } else {


        echo "包名:" . $packageName . "       \r\n版本名:" . $version;


    }
} else {


    echo "package error.";


}

版权说明:

本文档版权隶属 天问科技 ,仅用于天问科技旗下公司,团队为客户展示项目案例所用,任何盗用本公司图文,描述,案例的行为均属违法,我们保留追究法律责任的权利。