网址:http://ctbpsp.com/#/

解析流程

网站请求头和cookie都没有加密,唯一的加密是响应体加密

image-20230517155601531

抓包发现promise,我们在找一下interceptors拦截器

image-20230517160449379

这个一眼看上去就比较符合,而且数据进来,应该是用这个拦截器进行解析的

image-20230517161003094

这也是个普通的des解密,直接导包使用就好了

image-20230517161138285

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
var CryptoJS = require("crypto-js");
var C = CryptoJS;
var C_lib = C.lib;
var WordArray = C_lib.WordArray;

function parse1(latin1Str) {
    // Shortcut
    var latin1StrLength = latin1Str.length;
    // Convert
    var words = [];
    for (var i = 0; i < latin1StrLength; i++) {
        words[i >>> 2] |= (latin1Str.charCodeAt(i) & 0xff) << (24 - (i % 4) * 8);
    }
    return new WordArray.init(words, latin1StrLength);
}

var t = '要解密的字符串'
var keyHex = parse1(unescape(encodeURIComponent("ctpstp@custominfo!@#qweASD")))
var ciphertext = CryptoJS.enc.Base64.parse(t)

const decryptDES = (ciphertext) => {
  if (ciphertext) {
      let decrypted = CryptoJS.DES.decrypt(ciphertext, keyHex, {
      mode: CryptoJS.mode.ECB,
      padding: CryptoJS.pad.Pkcs7
    });
    return decrypted.toString(CryptoJS.enc.Utf8);
  } else {
    return '';
  }
};

console.log(decryptDES(t))