获取蓝奏网盘无密码下载链接分析思路

先准备准备一个 lanzou链接

链接(自己准备一个该链接只作为演示):https://wwd.lanzouw.com/i269V065bmza

打开浏览器抓包(开发者工具 或者 F12切换出来 ,浏览器都一个样子 自己随便选)

切换到network

在这里插入图片描述

刷新页面(Ctrl+R)
在这里插入图片描述

得到信息,逐步分析

网页:https://wwd.lanzouw.com/i269V065bmza

<!DOCTYPE html>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta name="viewport" content="width=device-width,initial-scale=1.0,maximum-scale=1.0,user-scalable=0" />
<title>333.txt - 蓝奏云</title>
<meta name="description" content="文件大小:4.0 B|啊实打实大苏打实打实大苏打的是" />
<link href="/img/t0.css?v7" rel="stylesheet" type="text/css">
<link rel="shortcut icon" href="/favicon.ico">
</head>
<body>
<div class="top">
<div class="d1">
<div class="d11 bgimg">
<a href="/" class="d7">&nbsp;</a></div>
<div class="d12">
<a href="/account.php?action=login">登录</a>
</div>
</div>
</div>
<div class="pc bgimg"></div>
<div class="d">
<!--<div class="b">https://www toutiao com/a6750138907435745803/</div>-->
<div style="font-size: 30px;text-align: center;padding: 56px 0px 20px 0px;">333.txt</div>
<div class="d2">
<div>
<table width="99%" border="0" align="center" cellspacing="0">
  <tr>
    <td width="330" valign="top">
<span class="p7">文件大小:</span>4.0 B<br>
<span class="p7">上传时间:</span>昨天18:50<br><span class="p7">分享用户:</span><font>13**</font><br>
<span class="p7">运行系统:</span>Win桌面<br>
<span class="p7">文件描述:</span><br>
啊实打实大苏打实打实大苏打的是	  </td>
    <td>&nbsp;</td>
  <td width="315" align="right">
    </td>
  </tr>
</table>
</div>
<div class="d3">
</div>
<div class="load2">
<div class="loader"></div>
</div>
<div class="ifr"><!--<iframe class="ifr2" name="1" src="/fn?v2" frameborder="0" scrolling="no"></iframe>-->
<iframe class="ifr2" name="1654861413" src="/fn?AGYFbwthBGIAYwBnVjtcZVA_bBjNXLgp8AzkDNFc9W29XY1Q7C2AAZVY0AGcCZQIlASxTM1FsC3oDbQZnATNaMABlBSsLawQWAC8AOFZN" frameborder="0" scrolling="no"></iframe>
</div>
<div class="d3">
</div>
</div>
</div>
<script type="text/javascript">
  if (window!=top)
  top.location.href = window.location.href;
</script>
<div style="display:none"><script src="https://s6.cnzz.com/z_stat.php?id=5288474&web_id=5288474" language="JavaScript"></script></div><div class="foot_info"><div style="color: #8a6d3b;background-color: #fcf8e3;padding: 5px;border: 1px solid #faebcc;border-radius: 3px;font-size: 12px;clear: both;width: 400px;margin: auto;text-align: center;line-height: initial;margin-bottom: 10px;">谨防刷单兼职,网贷,金融,裸聊敲诈,赌博等诈骗,请立即举报</div><div class="foot_copy">版权声明:不得利用云存储发布,存储,淫秽,诈骗等违法信息。<a href="/q/jb/?f=72519840&report=1" target="_blank">侵权/违法投诉</a><br>或者投诉邮箱:ta@lanzou.com</div>&copy; 2022 Lanzou A</div>
<div style="display:none"><script src="https://statics.woozooo.com/img/bd.js"></script><script src="https://statics.woozooo.com/img/hm.js"></script></div>
</body>
</html>

网页https://wwd.lanzouw.com/fn?AGYFbwthBGIAYwBnVjtcZVA_bBjNXLgp8AzkDNFc9W29XY1Q7C2AAZVY0AGcCZQIlASxTM1FsC3oDbQZnATNaMABlBSsLawQWAC8AOFZN

<!-- file pages1 -->
<!DOCTYPE HTML>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<script type="text/javascript" src="/includes/js/jquery.js"></script>
<link href="/img/tf.css" rel="stylesheet" type="text/css">
</head>
<body>
<div id="outime">地址超时,请刷新</div>

<div class="load" id="go">
文件加载中...
</div>
<script type="text/javascript">
		var ajaxdata = '?ctdf';
		//var ispostdowns = '';
		var websignkey = 'FynO';
		var websign = '';
		$.ajax({
			type : 'post',
			url : '/ajaxm.php',
			data : { 'action':'downprocess','signs':ajaxdata,'sign':'B2FUag08V2ZUXQE_bCjpdYVo3VGNTOVRnV2laZAdvADFQdlV2D28FYAdnAWIAYFJrVDgGM1A3ADVRZQ_c_c','ves':1,'websign':websign,'websignkey':websignkey },
			//data : { 'action':'downprocess','sign':sign,'sign':sign,'ves':1},
			dataType : 'json',
			success:function(msg){
				var date = msg;
				if(date.zt == '1'){
										$("#go").html("<a href="+date.dom+"/file/"+ date.url +" target=_blank rel=noreferrer><span class=txt>电信下载</span><span class='txt txtc'>联通下载</span><span class=txt>普通下载</span></a>");
					setTimeout('$("#outime").css("display","block");',1800000);
									}else{
					$("#go").html("网页超时,请刷新");
				};
				
			},
			error:function(){
				$("#go").html("获取失败,请刷新");
			}
	
		});
</script>
</body>
</html>

网页https://wwd.lanzouw.com/ajaxm.php

{"zt":1,"dom":"https:\/\/developers.lanzoug.com","url":"?VDIHOQo7BzZSWwc\/BjMHa1ZpBz9RPVZnBTEGLlx0VC0CdlsqWWJTblZsCjlXXAJqAT8AOFM7ADBVZwcwVzJVbFRgB2AKcQc1UncHbAZmByBWfAdyUTNWZgUyBjJcMlR6AjJbOlkrUzdWOQpzVzsCMAE5ADJTPgA2VTQHNFdtVWJUZAdjCjYHYFJiBzAGYgc\/Vm0HN1FvVmEFMwZjXDdUYAJmW25ZZ1MyVmEKOVctAncBIwBxUyoAd1UhB2RXeVU9VDAHbQpvB2BSNgdoBmEHNlYqB3ZRZ1Y5BWcGZlw9VGQCNFs5WTBTP1Y2Cm1XOwIyAWgAK1MiACRVNAdtV3xVaVRlB2YKYgdnUjMHZgZgBz9WPAc2UShWIQVyBndcPVRkAjRbOVkwUzBWNwptVzsCMwFrACNTeQBrVSIHPFc6VWxUZwd+Cm4HZ1IqB2MGawcoVj0HMlE4","inf":0}

i269V065bmza

fn

ajaxm.php

以上三个网页是比较重要的页面

我们针对该信息进行分析

首先分析一号网页

重要的东西 就一个

<iframe class="ifr2" name="1654861413" src="/fn?AGYFbwthBGIAYwBnVjtcZVA_bBjNXLgp8AzkDNFc9W29XY1Q7C2AAZVY0AGcCZQIlASxTM1FsC3oDbQZnATNaMABlBSsLawQWAC8AOFZN" frameborder="0" scrolling="no"></iframe>

得到了第二个页面的地址

然后Get继续访问

<script type="text/javascript">
		var ajaxdata = '?ctdf';
		//var ispostdowns = '';
		var websignkey = 'FynO';
		var websign = '';
		$.ajax({
			type : 'post',
			url : '/ajaxm.php',
			data : { 'action':'downprocess','signs':ajaxdata,'sign':'B2FUag08V2ZUXQE_bCjpdYVo3VGNTOVRnV2laZAdvADFQdlV2D28FYAdnAWIAYFJrVDgGM1A3ADVRZQ_c_c','ves':1,'websign':websign,'websignkey':websignkey },
			//data : { 'action':'downprocess','sign':sign,'sign':sign,'ves':1},
			dataType : 'json',
			success:function(msg){
				var date = msg;
				if(date.zt == '1'){
										$("#go").html("<a href="+date.dom+"/file/"+ date.url +" target=_blank rel=noreferrer><span class=txt>电信下载</span><span class='txt txtc'>联通下载</span><span class=txt>普通下载</span></a>");
					setTimeout('$("#outime").css("display","block");',1800000);
									}else{
					$("#go").html("网页超时,请刷新");
				};
				
			},
			error:function(){
				$("#go").html("获取失败,请刷新");
			}
	
		});
</script>

可以看到 比较重要的信息,就是这个 js了,js post 接口 ajaxm.php

提交的信息是

action=downprocess&signs=%3Fctdf&sign=B2FUag08V2ZUXQE_bCjpdYVo3VGNTOVRnV2laZAdvADFQdlV2D28FYAdnAWIAYFJrVDgGM1A3ADVRZQ_c_c&ves=1&websign=&websignkey=FynO

根据提交的信息 分析第二个页面的代码

找到关键信息为:

		var ajaxdata = '?ctdf';
		//var ispostdowns = '';
		var websignkey = 'FynO';
		var websign = '';
		$.ajax({
			type : 'post',
			url : '/ajaxm.php',
			data : { 'action':'downprocess','signs':ajaxdata,'sign':'B2FUag08V2ZUXQE_bCjpdYVo3VGNTOVRnV2laZAdvADFQdlV2D28FYAdnAWIAYFJrVDgGM1A3ADVRZQ_c_c','ves':1,'websign':websign,'websignkey':websignkey },

将data内的变量替换

1、替换 ajaxdata

var ajaxdata = '?ctdf';

此时,data数据信息:

'action':'downprocess','signs':'?ctdf','sign':'B2FUag08V2ZUXQE_bCjpdYVo3VGNTOVRnV2laZAdvADFQdlV2D28FYAdnAWIAYFJrVDgGM1A3ADVRZQ_c_c','ves':1,'websign':websign,'websignkey':websignkey

2、替换 websignkey

var websignkey = 'FynO';

此时,data数据信息:

'action':'downprocess','signs':'?ctdf','sign':'B2FUag08V2ZUXQE_bCjpdYVo3VGNTOVRnV2laZAdvADFQdlV2D28FYAdnAWIAYFJrVDgGM1A3ADVRZQ_c_c','ves':1,'websign':websign,'websignkey':'FynO'

3、替换 websign

var websign = '';

此时,data数据信息:

'action':'downprocess','signs':'?ctdf','sign':'B2FUag08V2ZUXQE_bCjpdYVo3VGNTOVRnV2laZAdvADFQdlV2D28FYAdnAWIAYFJrVDgGM1A3ADVRZQ_c_c','ves':1,'websign':'','websignkey':'FynO'

自此,data的数据就算是整合完了。

然后 根据抓包得到的提交数据我们需要将整合好的data数据变为 url格式

action=downprocess&signs=%3Fctdf&sign=B2FUag08V2ZUXQE_bCjpdYVo3VGNTOVRnV2laZAdvADFQdlV2D28FYAdnAWIAYFJrVDgGM1A3ADVRZQ_c_c&ves=1&websign=&websignkey=FynO

然后提交该信息给 ajaxm.php

协议头:

:authority: wwd.lanzouw.com
:method: POST
:path: /ajaxm.php
:scheme: https
accept: application/json, text/javascript, */*
accept-encoding: gzip, deflate, br
accept-language: zh-CN,zh;q=0.9
content-length: 152
content-type: application/x-www-form-urlencoded
cookie:
origin: https://wwd.lanzouw.com
referer: https://wwd.lanzouw.com/fn?AGYFbwthBGIAYwBnVjtcZVA_bBjNXLgp8AzkDNFc9W29XY1Q7C2AAZVY0AGcCZQIlASxTM1FsC3oDbQZnATNaMABlBSsLawQWAC8AOFZN
sec-fetch-mode: cors
sec-fetch-site: same-origin
user-agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36 Core/1.77.119.400 QQBrowser/10.9.4817.400
x-requested-with: XMLHttpRequest

访问协议头中带有一个 referer

referer: https://wwd.lanzouw.com/fn?AGYFbwthBGIAYwBnVjtcZVA_bBjNXLgp8AzkDNFc9W29XY1Q7C2AAZVY0AGcCZQIlASxTM1FsC3oDbQZnATNaMABlBSsLawQWAC8AOFZN

所以写的时候需要加上 referer

访问该接口以后 得到信息

{"zt":1,"dom":"https:\/\/developers.lanzoug.com","url":"?VDIHOQo7BzZSWwc\/BjMHa1ZpBz9RPVZnBTEGLlx0VC0CdlsqWWJTblZsCjlXXAJqAT8AOFM7ADBVZwcwVzJVbFRgB2AKcQc1UncHbAZmByBWfAdyUTNWZgUyBjJcMlR6AjJbOlkrUzdWOQpzVzsCMAE5ADJTPgA2VTQHNFdtVWJUZAdjCjYHYFJiBzAGYgc\/Vm0HN1FvVmEFMwZjXDdUYAJmW25ZZ1MyVmEKOVctAncBIwBxUyoAd1UhB2RXeVU9VDAHbQpvB2BSNgdoBmEHNlYqB3ZRZ1Y5BWcGZlw9VGQCNFs5WTBTP1Y2Cm1XOwIyAWgAK1MiACRVNAdtV3xVaVRlB2YKYgdnUjMHZgZgBz9WPAc2UShWIQVyBndcPVRkAjRbOVkwUzBWNwptVzsCMwFrACNTeQBrVSIHPFc6VWxUZwd+Cm4HZ1IqB2MGawcoVj0HMlE4","inf":0}

根据第二个页面的代码:

if(date.zt == '1'){
										$("#go").html("<a href="+date.dom+"/file/"+ date.url +" target=_blank rel=noreferrer><span class=txt>电信下载</span><span class='txt txtc'>联通下载</span><span class=txt>普通下载</span></a>");
					setTimeout('$("#outime").css("display","block");',1800000);
									}else{
					$("#go").html("网页超时,请刷新");
				};

先判断 zt值是否为1,为1则拼接下载地址

if(date.zt == '1')

然后拼接信息得到下载地址

date.dom+"/file/"+ date.url

下载地址

https://developers.lanzoug.com/file/?VDIHOQo7BzZSWwc/BjMHa1ZpBz9RPVZnBTEGLlx0VC0CdlsqWWJTblZsCjlXXAJqAT8AOFM7ADBVZwcwVzJVbFRgB2AKcQc1UncHbAZmByBWfAdyUTNWZgUyBjJcMlR6AjJbOlkrUzdWOQpzVzsCMAE5ADJTPgA2VTQHNFdtVWJUZAdjCjYHYFJiBzAGYgc/Vm0HN1FvVmEFMwZjXDdUYAJmW25ZZ1MyVmEKOVctAncBIwBxUyoAd1UhB2RXeVU9VDAHbQpvB2BSNgdoBmEHNlYqB3ZRZ1Y5BWcGZlw9VGQCNFs5WTBTP1Y2Cm1XOwIyAWgAK1MiACRVNAdtV3xVaVRlB2YKYgdnUjMHZgZgBz9WPAc2UShWIQVyBndcPVRkAjRbOVkwUzBWNwptVzsCMwFrACNTeQBrVSIHPFc6VWxUZwd+Cm4HZ1IqB2MGawcoVj0HMlE4

需要注意 这个地址是有时效性的

setTimeout('$("#outime").css("display","block");',1800000);

至此 基本就算是分析完了,有兴趣的可以根据该思路写成代码,直接下载文件。

问:为什么会分析这玩意,写这玩意?
答:穷逼租不起服务器云存储啥的,所以用蓝奏网盘来作为更新文件的存储。
我的操作思路是:利用gitee保存更新信息,程序打开时获取更新信息,如需更新,则下载用于解析蓝奏的dll,进行下载地址的解析,成功解析则直接更新,不成功则提示用户手动更新。
问:既然gitee可以下载dll为什么不直接用gitee更新?
答:gitee有文件大小限制,大文件不登录时无法下载的!
问:为什么把解析这块封装成dll?
答:防止蓝奏规则变更,封装成DLL,蓝奏规则变更,我更新DLL即可。

浏览器协议头(这是QQ浏览器协议头 电脑是win10系统)

user-agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36 Core/1.77.119.400 QQBrowser/10.9.4817.400

则直接更新,不成功则提示用户手动更新。
问:既然gitee可以下载dll为什么不直接用gitee更新?
答:gitee有文件大小限制,大文件不登录时无法下载的!
问:为什么把解析这块封装成dll?
答:防止蓝奏规则变更,封装成DLL,蓝奏规则变更,我更新DLL即可。


浏览器协议头(这是QQ浏览器协议头 电脑是win10系统)

user-agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36 Core/1.77.119.400 QQBrowser/10.9.4817.400
# php # html # 开发语言
Logo
GitCode 开源社区

旨在为数千万中国开发者提供一个无缝且高效的云端环境,以支持学习、使用和贡献开源项目。

更多推荐

cover

GitTalk | 使用面向业务的狮偶编程语言提升开发效率

avatar GitCode 开源社区
cover

GitTalk | DevUI Suits 场景解决方案

avatar GitCode 开源社区
cover

GitTalk | DevUI Admin 前端项目构建

avatar GitCode 开源社区