获得本站免费赞助空间请点这里
返回列表 发帖
admin

Rank: 9Rank: 9Rank: 9

UID
帖子
738 
精华
28 
积分
14249 
金币
2415  
威望
1647  
贡献
1363  
1 跳转到 » 倒序看帖
打印
tT
发表于 2008-1-19 23:24 | 只看该作者

网页制作中页面的加密和破解

网页加密, 网页破解
当你在浏览网页时,看到一个很漂亮的特效,你查看源代码时看到的是一队乱码,那多扫兴呀!根据本人的研究,总结出了三种解密方法,与大家分享!!5 k* ]/ U: D% Q$ Z, f# b7 W# s. c( U$ E) c

  x  N4 d1 h8 y. ~* J9 h, I
9 W% H6 R% U- z方法一:( F$ o* b. p5 v4 d# Y. |2 R/ m; C) K1 |

2 n7 a- C7 \+ z
$ v/ C. L- R+ z& U  有一种加密的办法是采用javascript的escape()函数,把某些符号、汉字等变成乱码,以达到迷惑人的目的。解密这种代码的办法是采用其反函数加以还原。下面是一个经过加密的例子:/ E4 U8 X* Z  R# U+ H  r

8 D* S+ `8 k5 j. [0 b8 ]<HTML>
# F4 u) F# a8 {" [<SCRIPT LANGUAGE="javascript">
0 c" M0 B+ g6 rvar Words ="%3Chtml%3E%3Cbody%20bgcolor%3D%22red%22%3E%3Cp%3E%u8FD9%u662F%u4F8B%u5B50%uFF01%uFF01%uFF1A%uFF09%3C/p%3E%3C/body%3E%3C/html%3E"2 \& H, m9 N8 W( n# u# X  i
var NewWords;0 o' U8 O3 n, z5 ?
NewWords = unescape(Words);
0 G& L  m# b( e& cdocument.write(NewWords)
: {. w" z3 Z! m0 u</SCRIPT>) N. K$ L$ \$ f1 F9 J# U, z. f# d
<BODY>
8 r/ H7 n, ~7 N5 L* y# W5 W</BODY>
/ P  v& L: q% v</HTML>7 ]: o  J9 A# |8 |% U) u

: A3 @& n" y" t5 H1 S  这种文件最好解密,一看就明白,关键是unescape()函数起了还原源代码的作用。要想看到加密前的代码是什么样子,可以用下面的办法:9 W" s8 t3 G, c
9 o' U+ J; v# ^
<HTML><SCRIPT LANGUAGE="javascript">7 t  w# e5 I1 v; C4 r  r
var Words ="%3Chtml%3E%3Cbody%20bgcolor%3D%22red%22%3E%3Cp%3E%u8FD9%u662F%u4F8B%u5B50%uFF01%uFF01%uFF1A%uFF09%3C/p%3E%3C/body%3E%3C/html%3E"
) P2 Q! w$ q9 p; H9 e& tvar NewWords;
0 W& q& m* n1 \+ g: \4 s  cNewWords = unescape(Words);
- |9 ^# S, u6 @1 V" uNewWords=NewWords.toString();; ^0 s8 p/ a+ D1 w* B# \) p
function password(){
- l3 i8 t" Q9 j! @- ?document.pw.txtpw.value=NewWords;" ^# y4 B7 ~8 J
}' N) a/ I0 L* {7 R! h# X8 F
</SCRIPT>7 O0 X7 [* D6 L& S% }# W8 I
<BODY>
7 }* _8 ?. Q5 S( u<form name=pw>  \0 ~' Z7 q5 A. \( o5 Y6 |
<input type=button onclick="password()" value="解密">
* \" ]. o1 r- b+ T# X# q4 V<br>; K$ J( h7 _" h
<textarea name="txtpw" cols="100" rows="100"></textarea>, p/ h$ m" ~' w* P, s: e' }. l
</form>0 n1 x/ I0 d* A6 B
</BODY>
+ A/ N. b2 J$ M( }" X</HTML>7 @( `( J) g4 l" j: P" M) C+ y
) S* k2 V6 _! X
方法二:0 ~0 Y( B; ~7 v* C9 W# k' f3 s% Y

7 x2 X8 n! B7 v" z5 ?9 K+ W0 S9 w  有一个软件叫HTMLEncrypt.exe,它就是把源代码进行加密的软件,这个软件的加密的原理是把字符转换成Unicode代码。下面的例子是一个分帧的页面:
4 z6 Y2 s; e" I' z' m2 ]( X2 g
! w* M" L) N1 {' J& Z<html><head><script>
7 Z, [, l' `9 [' r( z  G, Ifunction Carbosoft( s ) { var sRet=""; for(j=0; j< s.length; j++ ){ var n= s.charCodeAt(j); if (n>=8364) {n = 128;} sRet += String.fromCharCode( n - 3 ); } return( sRet ); }% I. M- ]7 X1 k8 [! \1 B5 t3 V  x
var sJsCmds ="" +
3 S$ `- N  X0 v# ?( ]! P1 N; x"?kwpoA?khdgA?phwd#kwws0htxly@%Frqwhqw0W|sh%#frqwhqw@%wh{w2kwpo>#fkduvhw@lvr0;;8<04%A?wlwohAZHOFRPH?2wlwohA?phwd#qdph@%JHQHUDWRU%#frqwhqw@%Plfurvriw#IurqwSdjh#613%A?phwd#qdph@%Plfurvriw#Wkhph%#frqwhqw@%qrqh/#ghidxow%A?phwd#qdph@%Plfurvriw#Erughu%#frqwhqw@%qrqh/#ghidxow%A?2khdgA?iudphvhw#erughu@%3%#iudpherughu@%3%#urzv@%-/93%A##?iudph#qdph@%pdlq%#vuf@%xs1kwp%#vfuroolqj@%dxwr%A##?iudph#qdph@%rqolqh%#vuf@%grzq1kwp%#vfuroolqj@%qr%#qruhvl}h#wdujhw@%beodqn%A##?qriudphvA##?erg|A##?sAWklv#sdjh#xvhv#iudphv/#exw#|rxu#eurzvhu#grhvq*w#vxssruw#wkhp1#?2sA##?2erg|A##?2qriudphvA?2iudphvhwA?2kwpoA?irqw#froru@%&33333%A?s#doljq@%fhqwhu%A?vpdooA?irqw#idfh@%Wdkrpd%AWklv#iloh#zdv#hqfu|swhg#xvlqj#dq#xquhjlvwhuhg#yhuvlrq#ri#?d#kuhi@%kwws=22fduer{1wkhgqv1qhw2kwpohqfu|sw1kwp%AKWPO#Hqfu|sw#y413?2dA1?2irqwA?2vpdooA?2sA" +4 d* S2 R4 X4 m6 ]; |; V5 E
"";0 t; U8 P# x% L" `9 C$ f3 k( c
var s= Carbosoft( sJsCmds);
6 E3 r: H: Y8 Y9 \5 x. V5 v" v# c  u' qdocument.write (s);
. D( Y$ ~5 O, t. b- Q' f</script>
+ w4 h% K; \* T6 y) c: b</head><body></body></html>2 ~* Z4 M5 a% T4 ]( q" U; a
. R! v4 B  t: i
  从上面可以看出,浏览器解释这写代码前,进行了还原,从而可以得到破解的方法如下:. R4 R! K* ^; E  U% q& I
2 h9 _: d/ S" b: ^+ `7 T7 T
<script>. A, w, X$ J& E3 r2 q' U
function Carbosoft( s ) { var sRet=""; for(j=0; j< s.length; j++ ){ var n= s.charCodeAt(j); if (n>=8364) {n = 128;} sRet += String.fromCharCode( n - 3 ); } return( sRet ); }
  n0 G6 n  J4 s9 D. P! \var sJsCmds ="" +7 D6 U+ }' I+ `/ D/ o) [3 _* q9 l
"?kwpoA?khdgA?phwd#kwws0htxly@%Frqwhqw0W|sh%#frqwhqw@%wh{w2kwpo>#fkduvhw@lvr0;;8<04%A?wlwohAZHOFRPH?2wlwohA?phwd#qdph@%JHQHUDWRU%#frqwhqw@%Plfurvriw#IurqwSdjh#613%A?phwd#qdph@%Plfurvriw#Wkhph%#frqwhqw@%qrqh/#ghidxow%A?phwd#qdph@%Plfurvriw#Erughu%#frqwhqw@%qrqh/#ghidxow%A?2khdgA?iudphvhw#erughu@%3%#iudpherughu@%3%#urzv@%-/93%A##?iudph#qdph@%pdlq%#vuf@%xs1kwp%#vfuroolqj@%dxwr%A##?iudph#qdph@%rqolqh%#vuf@%grzq1kwp%#vfuroolqj@%qr%#qruhvl}h#wdujhw@%beodqn%A##?qriudphvA##?erg|A##?sAWklv#sdjh#xvhv#iudphv/#exw#|rxu#eurzvhu#grhvq*w#vxssruw#wkhp1#?2sA##?2erg|A##?2qriudphvA?2iudphvhwA?2kwpoA?irqw#froru@%&33333%A?s#doljq@%fhqwhu%A?vpdooA?irqw#idfh@%Wdkrpd%AWklv#iloh#zdv#hqfu|swhg#xvlqj#dq#xquhjlvwhuhg#yhuvlrq#ri#?d#kuhi@%kwws=22fduer{1wkhgqv1qhw2kwpohqfu|sw1kwp%AKWPO#Hqfu|sw#y413?2dA1?2irqwA?2vpdooA?2sA" +
! g- b9 ^% s% R0 B"";; U2 x# N* c. u" v& q$ b: G( Q$ b
var s= Carbosoft( sJsCmds);
9 O# x- h) H: m0 p  R</script>
2 S* u6 y. b7 t' P% Z<form name=qq>0 y  W2 \$ V3 @# H
<textarea name=ww cols=100 rows=10></textarea>
$ F( e- t, Z2 B0 M9 ?, f% l<input onclick='ww.value=s' type=button value="解密">. |+ R# t+ q* h! {
</form>
" B  w* H: J+ p3 t
: t( A  n# ^1 P; _& `# O1 O* n
2 J; t# v3 [4 |5 J* U方法三:
* ~& |' E% E$ g) ]
: R6 s0 @5 ]  }' `6 t9 \3 `$ _  有一种加密方法是每行单独加密,还原起来比较复杂。看一个加密过的原文:
8 t2 j; ]/ H( g) o+ g& v
0 H8 k  I; O) J- G<HTML>
  G. \0 _* }  B4 e; \  F<BODY>
% x5 A; N8 |& g8 _% T# ^$ h<SCRIPT LANGUAGE="javascript">' E- `! u2 _: A  r2 o/ Y* P  o$ o
function Decode() {
! z& {' k) T7 h3 g3 O* ld("FrfmnD");d("FruyvDFgwhqjfWnyeseysuEXpydy%whqjf~J~XWghwEXfkjJpgXDFIgwhqjfD");d("FmufyWrffjKuieqdEX?klfulfK$ajuXWwklfulfEXfubfIrfmnGWwryhgufEsx}{~}XD");d("FfqfnuDejFIfqfnuD");d("FIruyvD");d("FxkvaD");d("FIxkvaD");d("FIrfmnD");d("W");return 0;}
$ }4 p& m1 I( T" v. B5 M</SCRIPT>
2 z- D- p9 X7 n6 w<SCRIPT LANGUAGE="javascript">8 Z8 S# f* ~/ N
function d (enc) {document.write(codeIt(key,enc));}
, S  _- f8 Q) p3 evar key = "0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz!\"\ \|#$%&\'()*+,-.\/:;<=>?@[\\]^_\t\`{}~\n";function codeIt (mC, eS) {var wTG, mcH = mC.length / 2, nS = "", dv;for (var x = 0; x < eS.length; x++) { wTG = mC.indexOf(eS.charAt(x));if (wTG > mcH) {dv = wTG - mcH; nS = nS + mC.charAt(48 - dv);}else {dv = mcH - wTG;nS = nS + mC.charAt(48 + dv);}}return nS;}5 W  S+ u+ e. ], T( o2 X# k% r
</SCRIPT>0 _- P' O; v. E6 t; P+ t1 p
<SCRIPT LANGUAGE="javascript">
0 ^% L* Q/ h- R6 cDecode();$ {% G0 ]0 C! n4 w. F0 {+ Y
</SCRIPT>
6 U: P+ `: D* [/ T6 A1 o( N8 a</BODY>1 y% w( V3 q" @1 a* k
</HTML>
/ \8 u! ]% {  ?: D3 R& H! {/ W( q0 ?- ]
  还原的时候,也必须每行单独解密,用下面的方法可以看到源代码:* [2 Q; R0 v1 R% Q4 @

* |7 t7 ~9 p3 E; i4 m<HTML>3 u: Y# I' L) _* L: ~: C: x
<BODY>
( a$ K+ c5 i7 f' O<SCRIPT LANGUAGE="javascript">
1 Q; n* r% P7 u+ wfunction Decode() {6 o3 h% {8 K: \- O3 h6 @3 d
d("FrfmnD");d("FruyvDFgwhqjfWnyeseysuEXpydy%whqjf~J~XWghwEXfkjJpgXDFIgwhqjfD");d("FmufyWrffjKuieqdEX?klfulfK$ajuXWwklfulfEXfubfIrfmnGWwryhgufEsx}{~}XD");d("FfqfnuDejFIfqfnuD");d("FIruyvD");d("FxkvaD");d("FIxkvaD");d("FIrfmnD");d("W");return 0;}4 x6 c& n3 m* v0 C( g& X
</SCRIPT>; `) N! G9 y% p6 o
<SCRIPT LANGUAGE="javascript">5 i; d  d; F/ T# ]& G6 ^
function d (enc) {alert(codeIt(key,enc));}
7 K: ~  b1 R3 @: U1 D: x% }6 @/ Lvar key = "0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz!\"\ \|#$%&\'()*+,-.\/:;<=>?@[\\]^_\t\`{}~\n";function codeIt (mC, eS) {var wTG, mcH = mC.length / 2, nS = "", dv;for (var x = 0; x < eS.length; x++) { wTG = mC.indexOf(eS.charAt(x));if (wTG > mcH) {dv = wTG - mcH; nS = nS + mC.charAt(48 - dv);}else {dv = mcH - wTG;nS = nS + mC.charAt(48 + dv);}}return nS;}' ?8 Y0 c9 S# I6 L+ ?
</SCRIPT>
& h, p) Y! ?( k' m/ Q<SCRIPT LANGUAGE="javascript">5 K: ]7 x5 I1 \/ s' F  R9 y6 y
Decode();
' O1 p1 c0 r( U! ]0 g( E& j) j; i/ N</SCRIPT>
8 b0 W/ V. i2 t6 z' J</BODY>% R, k% b) v+ b2 B, F
</HTML>
4 u/ ^' _1 W7 K, n+ h
' T' U) n4 ?+ b6 B3 C/ P* t2 b  哈哈!!:=)是不是很精彩!!
收藏 分享
捌玖网络 89w.org----致力于站长学习交流

返回列表
【捌玖网络】已经运行: