获取蓝奏网盘无密码下载链接分析思路
先准备准备一个 lanzou链接
链接(自己准备一个该链接只作为演示):https://wwd.lanzouw.com/i269V065bmza
打开浏览器抓包(开发者工具 或者 F12切换出来 ,浏览器都一个样子 自己随便选)
切换到network
得到信息,逐步分析
网页:https://wwd.lanzouw.com/i269V065bmza
<!DOCTYPE html>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta name="viewport" content="width=device-width,initial-scale=1.0,maximum-scale=1.0,user-scalable=0" />
<title>333.txt - 蓝奏云</title>
<meta name="description" content="文件大小:4.0 B|啊实打实大苏打实打实大苏打的是" />
<link href="/img/t0.css?v7" rel="stylesheet" type="text/css">
<link rel="shortcut icon" href="/favicon.ico">
</head>
<body>
<div class="top">
<div class="d1">
<div class="d11 bgimg">
<a href="/" class="d7"> </a></div>
<div class="d12">
<a href="/account.php?action=login">登录</a>
</div>
</div>
</div>
<div class="pc bgimg"></div>
<div class="d">
<!--<div class="b">https://www toutiao com/a6750138907435745803/</div>-->
<div style="font-size: 30px;text-align: center;padding: 56px 0px 20px 0px;">333.txt</div>
<div class="d2">
<div>
<table width="99%" border="0" align="center" cellspacing="0">
<tr>
<td width="330" valign="top">
<span class="p7">文件大小:</span>4.0 B<br>
<span class="p7">上传时间:</span>昨天18:50<br><span class="p7">分享用户:</span><font>13**</font><br>
<span class="p7">运行系统:</span>Win桌面<br>
<span class="p7">文件描述:</span><br>
啊实打实大苏打实打实大苏打的是 </td>
<td> </td>
<td width="315" align="right">
</td>
</tr>
</table>
</div>
<div class="d3">
</div>
<div class="load2">
<div class="loader"></div>
</div>
<div class="ifr"><!--<iframe class="ifr2" name="1" src="/fn?v2" frameborder="0" scrolling="no"></iframe>-->
<iframe class="ifr2" name="1654861413" src="/fn?AGYFbwthBGIAYwBnVjtcZVA_bBjNXLgp8AzkDNFc9W29XY1Q7C2AAZVY0AGcCZQIlASxTM1FsC3oDbQZnATNaMABlBSsLawQWAC8AOFZN" frameborder="0" scrolling="no"></iframe>
</div>
<div class="d3">
</div>
</div>
</div>
<script type="text/javascript">
if (window!=top)
top.location.href = window.location.href;
</script>
<div style="display:none"><script src="https://s6.cnzz.com/z_stat.php?id=5288474&web_id=5288474" language="JavaScript"></script></div><div class="foot_info"><div style="color: #8a6d3b;background-color: #fcf8e3;padding: 5px;border: 1px solid #faebcc;border-radius: 3px;font-size: 12px;clear: both;width: 400px;margin: auto;text-align: center;line-height: initial;margin-bottom: 10px;">谨防刷单兼职,网贷,金融,裸聊敲诈,赌博等诈骗,请立即举报</div><div class="foot_copy">版权声明:不得利用云存储发布,存储,淫秽,诈骗等违法信息。<a href="/q/jb/?f=72519840&report=1" target="_blank">侵权/违法投诉</a><br>或者投诉邮箱:ta@lanzou.com</div>© 2022 Lanzou A</div>
<div style="display:none"><script src="https://statics.woozooo.com/img/bd.js"></script><script src="https://statics.woozooo.com/img/hm.js"></script></div>
</body>
</html>网页https://wwd.lanzouw.com/fn?AGYFbwthBGIAYwBnVjtcZVA_bBjNXLgp8AzkDNFc9W29XY1Q7C2AAZVY0AGcCZQIlASxTM1FsC3oDbQZnATNaMABlBSsLawQWAC8AOFZN
<!-- file pages1 -->
<!DOCTYPE HTML>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<script type="text/javascript" src="/includes/js/jquery.js"></script>
<link href="/img/tf.css" rel="stylesheet" type="text/css">
</head>
<body>
<div id="outime">地址超时,请刷新</div>
<div class="load" id="go">
文件加载中...
</div>
<script type="text/javascript">
var ajaxdata = '?ctdf';
//var ispostdowns = '';
var websignkey = 'FynO';
var websign = '';
$.ajax({
type : 'post',
url : '/ajaxm.php',
data : { 'action':'downprocess','signs':ajaxdata,'sign':'B2FUag08V2ZUXQE_bCjpdYVo3VGNTOVRnV2laZAdvADFQdlV2D28FYAdnAWIAYFJrVDgGM1A3ADVRZQ_c_c',
'ves':1,'websign':websign,'websignkey':websignkey },
//data : { 'action':'downprocess','sign':sign,'sign':sign,'ves':1},
dataType : 'json',
success:function(msg){
var date = msg;
if(date.zt == '1'){
$("#go").html("<a href="+date.dom+"/file/"+ date.url +" target=_blank rel=noreferrer><span class=txt>电信下载</span><span class='txt txtc'>联通下载</span><span class=txt>普通下载</span></a>");
setTimeout('$("#outime").css("display","block");',1800000);
}else{
$("#go").html("网页超时,请刷新");
};
},
error:function(){
$("#go").html("获取失败,请刷新");
}
});
</script>
</body>
</html>网页https://wwd.lanzouw.com/ajaxm.php
{"zt":1,"dom":"https:\/\/developers.lanzoug.com","url":"?VDIHOQo7BzZSWwc\/BjMHa1ZpBz9RPVZnBTEGLlx0VC0CdlsqWWJTblZsCjlXXAJqAT8AOFM7ADBVZwcwVzJVbFR
gB2AKcQc1UncHbAZmByBWfAdyUTNWZgUyBjJcMlR6AjJbOlkrUzdWOQpzVzsCMAE5ADJTPgA2VTQHNFdtVWJUZAdjCjYHYFJiBzAGYgc
\/Vm0HN1FvVmEFMwZjXDdUYAJmW25ZZ1MyVmEKOVctAncBIwBxUyoAd1UhB2RXeVU9VDAHbQpvB2BSNgdoBmEHNlYqB3ZRZ1Y5BWcGZlw9VGQCNFs5WTBTP1Y2Cm1XOwIyAWgAK1M
iACRVNAdtV3xVaVRlB2YKYgdnUjMHZgZgBz9WPAc2UShWIQVyBndcPVRkAjRbOVkwUzBWNwptVzsCMwFrACNTeQBrVSIHPFc6VWxUZwd+Cm4HZ1IqB2MGawcoVj0HMlE4",
"inf":0}
以上三个网页是比较重要的页面
我们针对该信息进行分析
首先分析一号网页
重要的东西 就一个
<iframe class="ifr2" name="1654861413" src="/fn?AGYFbwthBGIAYwBnVjtcZVA_bBjNXLgp8AzkDNFc9W29XY1Q7C2AAZVY0AGcCZQIlASxTM1FsC3oDbQZnATNaMABlBSsLawQWAC8AOFZN"
frameborder="0" scrolling="no"></iframe>得到了第二个页面的地址
然后Get继续访问
<script type="text/javascript">
var ajaxdata = '?ctdf';
//var ispostdowns = '';
var websignkey = 'FynO';
var websign = '';
$.ajax({
type : 'post',
url : '/ajaxm.php',
data : { 'action':'downprocess','signs':ajaxdata,'sign':'B2FUag08V2ZUXQE_bCjpdYVo3VGNTOVRnV2laZAdvADFQdlV2D28FYAdnAWIAYFJrVDgGM1A3ADVRZQ_c_c',
'ves':1,'websign':websign,'websignkey':websignkey },
//data : { 'action':'downprocess','sign':sign,'sign':sign,'ves':1},
dataType : 'json',
success:function(msg){
var date = msg;
if(date.zt == '1'){
$("#go").html("<a href="+date.dom+"/file/"+ date.url +" target=_blank rel=noreferrer><span class=txt>电信下载</span><span class='txt txtc'>联通下载</span><span class=txt>普通下载</span></a>");
setTimeout('$("#outime").css("display","block");',1800000);
}else{
$("#go").html("网页超时,请刷新");
};
},
error:function(){
$("#go").html("获取失败,请刷新");
}
});
</script>可以看到 比较重要的信息,就是这个 js了,js post 接口 ajaxm.php
提交的信息是
action=downprocess&signs=%3Fctdf&sign=B2FUag08V2ZUXQE_bCjpdYVo3VGNTOVRnV2laZAdvADFQdlV2D28FYAdnAWIAYFJrVDgGM1A3ADVRZQ_c_c&ves=1&websign=&websignkey=FynO根据提交的信息 分析第二个页面的代码
找到关键信息为:
var ajaxdata = '?ctdf';
//var ispostdowns = '';
var websignkey = 'FynO';
var websign = '';
$.ajax({
type : 'post',
url : '/ajaxm.php',
data : { 'action':'downprocess','signs':ajaxdata,'sign':'B2FUag08V2ZUXQE_bCjpdYVo3VGNTOVRnV2laZAdvADFQdlV2D28FYAdnAWIAYFJrVDgGM1A3ADVRZQ_c_c',
'ves':1,'websign':websign,'websignkey':websignkey },将data内的变量替换
1、替换 ajaxdata
var ajaxdata = '?ctdf';
1
此时,data数据信息:
'action':'downprocess','signs':'?ctdf','sign':'B2FUag08V2ZUXQE_bCjpdYVo3VGNTOVRnV2laZAdvADFQdlV2D28FYAdnAWIAYFJrVDgGM1A3ADVRZQ_c_c','ves':1,'websign':websign,'websignkey':websignkey
1
2、替换 websignkey
var websignkey = 'FynO';
1
此时,data数据信息:
'action':'downprocess','signs':'?ctdf','sign':'B2FUag08V2ZUXQE_bCjpdYVo3VGNTOVRnV2laZAdvADFQdlV2D28FYAdnAWIAYFJrVDgGM1A3ADVRZQ_c_c',
'ves':1,'websign':websign,'websignkey':'FynO'
1
3、替换 websign
var websign = '';
1
此时,data数据信息:
'action':'downprocess','signs':'?ctdf','sign':'B2FUag08V2ZUXQE_bCjpdYVo3VGNTOVRnV2laZAdvADFQdlV2D28FYAdnAWIAYFJrVDgGM1A3ADVRZQ_c_c',
'ves':1,'websign':'','websignkey':'FynO'
1
自此,data的数据就算是整合完了。
然后 根据抓包得到的提交数据我们需要将整合好的data数据变为 url格式
action=downprocess&signs=%3Fctdf&sign=B2FUag08V2ZUXQE_bCjpdYVo3VGNTOVRnV2laZAdvADFQdlV2D28FYAdnAWIAYFJrVDgGM1A3ADVRZQ_c_c
&ves=1&websign=&websignkey=FynO
1
然后提交该信息给 ajaxm.php
协议头:
:authority: wwd.lanzouw.com
:method: POST
:path: /ajaxm.php
:scheme: https
accept: application/json, text/javascript, */*
accept-encoding: gzip, deflate, br
accept-language: zh-CN,zh;q=0.9
content-length: 152
content-type: application/x-www-form-urlencoded
cookie:
origin: https://wwd.lanzouw.com
referer: https://wwd.lanzouw.com/fn?AGYFbwthBGIAYwBnVjtcZVA_bBjNXLgp8AzkDNFc9W29XY1Q7C2AAZVY0AGcCZQIlASxTM1FsC3oDbQZnATNaMABlBSsLawQWAC8AOFZN
sec-fetch-mode: cors
sec-fetch-site: same-origin
user-agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko)
Chrome/77.0.3865.120 Safari/537.36 Core/1.77.119.400 QQBrowser/10.9.4817.400
x-requested-with: XMLHttpRequest访问协议头中带有一个 referer
referer: https://wwd.lanzouw.com/fn?AGYFbwthBGIAYwBnVjtcZVA_bBjNXLgp8AzkDNFc9W29XY1Q7C2AAZVY0AGcCZQIlASxTM1FsC3oDbQZnATNaMABlBSsLawQWAC8AOFZN所以写的时候需要加上 referer
访问该接口以后 得到信息
{"zt":1,"dom":"https:\/\/developers.lanzoug.com","url":"?VDIHOQo7BzZSWwc\/BjMHa1ZpBz9RPVZnBTEGLlx0VC0CdlsqWWJTblZsCjlXXAJqAT8AOFM7ADBVZwcwVz
JVbFRgB2AKcQc1UncHbAZmByBWfAdyUTNWZgUyBjJcMlR6AjJbOlkrU
zdWOQpzVzsCMAE5ADJTPgA2VTQHNFdtVWJUZAdjCjYHYFJiBzAGYgc\/Vm0HN1FvVmEFMwZjXDdUYAJmW25ZZ1MyVmEKOVctAncBIwBxUyoAd1UhB2RXeVU9VDAHbQpvB2BSNgdo
BmEHNlYqB3ZRZ1Y5BWcGZlw9VGQCNFs5WTBTP1Y2Cm1XOwIyAWgAK1MiACRVNAdtV3xVaVRlB2YKYgdnUjMHZgZgBz9WPAc2UShWIQVyBndcPVRkAjRbOVkwUzBWNwptVzsCMwFrA
CNTeQBrVSIHPFc6VWxUZwd+Cm4HZ1IqB2MGawcoVj0HMlE4","inf":0}根据第二个页面的代码:
if(date.zt == '1'){
$("#go").html("<a href="+date.dom+"/file/"+ date.url +" target=_blank rel=noreferrer><span class=txt>电信下载</span><span class='txt txtc'>联通下载</span>
<span class=txt>普通下载</span></a>");
setTimeout('$("#outime").css("display","block");',1800000);
}else{
$("#go").html("网页超时,请刷新");
};先判断 zt值是否为1,为1则拼接下载地址
if(date.zt == '1')
1
然后拼接信息得到下载地址
date.dom+"/file/"+ date.url
1
下载地址
https://developers.lanzoug.com/file/?VDIHOQo7BzZSWwc/BjMHa1ZpBz9RPVZnBTEGLlx0VC0CdlsqWWJTblZsCjlXXAJqAT8AOFM7ADBVZwcwVzJVbFRgB2AKcQc1UncH
bAZmByBWfAdyUTNWZgUyBjJcMlR6AjJbOlkrUzdWOQpzVzsCMAE5ADJTPgA2VTQHNFdtVWJUZAdjCjYHYFJiBzAGYgc/Vm0HN1FvVmEFMw
ZjXDdUYAJmW25ZZ1MyVmEKOVctAncBIwBxUyoAd1UhB2RXeVU9VDAHbQpvB2BSNgdoBmEHNlYqB3ZRZ1Y5BWcGZlw9VGQCNFs5WTBTP1
Y2Cm1XOwIyAWgAK1MiACRVNAdtV3xVaVRlB2YKYgdnUjMHZgZgBz9WPAc2UShWIQVyBndcPVRkAjRbOVkwUzBWNwptVzsCMwFrACNTeQ
BrVSIHPFc6VWxUZwd+Cm4HZ1IqB2MGawcoVj0HMlE4
1
需要注意 这个地址是有时效性的
setTimeout('$("#outime").css("display","block");',1800000);
1
至此 基本就算是分析完了,有兴趣的可以根据该思路写成代码,直接下载文件。
问:为什么会分析这玩意,写这玩意?
答:穷逼租不起服务器云存储啥的,所以用蓝奏网盘来作为更新文件的存储。
我的操作思路是:利用gitee保存更新信息,程序打开时获取更新信息,如需更新,则下载用于解析蓝奏的dll,进行下载地址的解析,成功解析则直接更新,不成功则提示用户手动更新。
问:既然gitee可以下载dll为什么不直接用gitee更新?
答:gitee有文件大小限制,大文件不登录时无法下载的!
问:为什么把解析这块封装成dll?
答:防止蓝奏规则变更,封装成DLL,蓝奏规则变更,我更新DLL即可。
1
2
3
4
5
6
7
浏览器协议头(这是QQ浏览器协议头 电脑是win10系统)
user-agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36 Core/1.77.119.400 QQBrowser/10.9.4817.400
1
则直接更新,不成功则提示用户手动更新。
问:既然gitee可以下载dll为什么不直接用gitee更新?
答:gitee有文件大小限制,大文件不登录时无法下载的!
问:为什么把解析这块封装成dll?
答:防止蓝奏规则变更,封装成DLL,蓝奏规则变更,我更新DLL即可。
浏览器协议头(这是QQ浏览器协议头 电脑是win10系统)
1
2
3
user-agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36 Core/1.77.119.400 QQBrowser/10.9.4817.400
