android 使用Frida检测加密密钥生成/类型

ie3xauqp  于 2024-01-04  发布在  Android
关注(0)|答案(1)|浏览(233)

我想知道这个应用程序是怎么工作的。
在注册开始时,它会向服务器发送两个名为“keyA”和“keyB”的参数,服务器会回复两个名为“signe”和“data”的参数,然后应用程序会使用RSA/ECB/PKCS 1解密“data”。
要求:

  1. {"keyA":"MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz8Hb9tbjtYAxNQi19h75CGBdsAuSCenn/t9p0DjLUOfh75qCvqJzkrE9gv6fXo1GcyMrfVAgRxjR37F3gOzilWVJiUk9VGq/1mGV/UXI8cK6Lkae+Zie3l5L1Qc0YjeBmkQiSjSkq3zo9AVgom473TFerQpcvukzqzQFN0k2sYBQWxpN3SDnpNSeiiHIEStw25WNPkSjQlrJB4RMiO2bKeBfTPjKFAG5/iSZVzRZ/P8fdv10m/D/F5AbIFgl4OXKzbLriAsBpmcXOPV3+LQ5OUfNgKFj1khs6JMo2GT5xMfAeIw4eqo77e7RSkQxocIg9ed4GNHvC9KDKXt6rBZJfQIDAQAB","keyB":"JhDGG3QVjn6Nosxg/kTfTR40MV1XetdZ2m/i314XFoUkA8f6Mgb/lQ38iVnEZpKULZ5y3ShnPa9lR1ZP/xhkttI9e0F67UTj/FNM2837qHMbNK7ZGtFCfuXfE6bokDci6eptIVIgsSL3Is9PFlc47g5E179jjeB8Bhtr4H+6CRoB5R+Ru82XfCI1xH45EbKVqEL+it2/NoiT0EzL892jKOd8qOMvrNxjRnl14TJrdY2KBsRzgVExSX03Bzg/+QLuMa1fBBPtONZjRSIBNK40z9rDBy9Ibdc1xBESWcZMZh2glPhaZe4oy3LQa8XFrEgKJolIMznA6UGdnVck0rXP9w=="}

字符串
回应:

  1. {"signe":"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","data":"hzo3Y3biJ1+YKsmKL+pwiuBIUC332dEbV/ooy2ilb5yem5kF75fLKXCNjVdPUPZgQbx0wHTuQsjFgIIeabmUqzegKebxqtUOtDVIMEj54cmfJ1itDhZIJxivb42/x1LbBYuUi91hZy/xRx2opwA+gULMyJwbNlQlcp016KLCh9AiNFYtE77hSlbriO72G3ukD8s/7uMQfpdNcDwl7wWh4L4oIZCji3G/YPJW49CMvmsTnuUhK34E2ka1h9dfwMUvZT+CFEv/anC6gXktMzqmhI6enZB9bb33bwIBiF6k+MkI11Ea9wYdvlwVhbEvOLDYYt41L5UgTCBR5pH01MY06Q=="}


我知道keyA是RSA公钥(2048位),但我不知道keyB是什么。
我尝试使用https://codeshare.frida.re/@ensingerphilipp/frinja-crypto-fixed/来查看这些键是如何生成的,但它没有显示任何生成的键。
我已经尝试了很多次,我的观察结果是,

  1. KeyA和KeyB之间存在某种关联,如果它们不匹配,服务器会返回一个错误。
    1.它可以用相同的KeyA发送不同的KeyB。
    1.如果我多次发送相同的请求,signe不会改变,但数据会改变(我猜这只是因为填充)。
    我猜它使用了另一种方法来生成这些键,但我不是Java开发人员。
    我无法访问这些应用程序的源代码,它们被严重混淆,所以从源代码中找到任何东西都不是一个选择。
    任何帮助将不胜感激。
android

1条答案

按热度按时间
8wtpewkr

8wtpewkr1#

我在一个中文网站上找到了一些frida js代码,它帮助我挖掘了更多
KeyB是一个singature,我还可以看到使用此代码签名的字符串:

  1. function showStacks2() {
  2.         return;
  3.         console.log(
  4.             Java.use("android.util.Log")
  5.             .getStackTraceString(
  6.                 Java.use("java.lang.Throwable").$new()
  7.             )
  8.         );
  9.     }
  10.     var ByteString = Java.use("com.android.okhttp.okio.ByteString");
  11.     
  12.     function toBase64(tag, data) {
  13.         console.log(tag + " Base64: ", ByteString.of(data).base64());
  14.     }
  15.     
  16.     function toHex(tag, data) {
  17.         console.log(tag + " Hex: ", ByteString.of(data).hex());
  18.     }
  19.     
  20.     function toUtf8(tag, data) {
  21.         console.log(tag + " Utf8: ", ByteString.of(data).utf8());
  22.     }
  23.     var messageDigest = Java.use("java.security.MessageDigest");
  24.     messageDigest.update.overload('byte').implementation = function(data) {
  25.         console.log("↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓");
  26.         console.log("MessageDigest.update('byte') is called!");
  27.         showStacks2();
  28.         console.log("↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑");
  29.         return this.update(data);
  30.     }
  31.     messageDigest.update.overload('java.nio.ByteBuffer').implementation = function(data) {
  32.         console.log("↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓");
  33.         console.log("MessageDigest.update('java.nio.ByteBuffer') is called!");
  34.         showStacks2();
  35.         console.log("↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑");
  36.         return this.update(data);
  37.     }
  38.     messageDigest.update.overload('[B').implementation = function(data) {
  39.         console.log("↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓");
  40.         console.log("MessageDigest.update('[B') is called!");
  41.         var algorithm = this.getAlgorithm();
  42.         var tag = algorithm + " update data";
  43.         toUtf8(tag, data);
  44.         toHex(tag, data);
  45.         toBase64(tag, data);
  46.         console.log("↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑");
  47.         return this.update(data);
  48.     }
  49.     messageDigest.update.overload('[B', 'int', 'int').implementation = function(data, start, length) {
  50.         console.log("↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓");
  51.         console.log("MessageDigest.update('[B', 'int', 'int') is called!");
  52.         var algorithm = this.getAlgorithm();
  53.         var tag = algorithm + " update data";
  54.         toUtf8(tag, data);
  55.         toHex(tag, data);
  56.         toBase64(tag, data);
  57.         console.log("start:", start);
  58.         console.log("length:", length);
  59.         showStacks2();
  60.         console.log("↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑");
  61.         return this.update(data, start, length);
  62.     }
  63.     messageDigest.digest.overload().implementation = function() {
  64.         console.log("↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓");
  65.         console.log("MessageDigest.digest() is called!");
  66.         var result = this.digest();
  67.         var algorithm = this.getAlgorithm();
  68.         var tag = algorithm + " digest result";
  69.         toHex(tag, result);
  70.         toBase64(tag, result);
  71.         showStacks2();
  72.         console.log("↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑");
  73.         return result;
  74.     }
  75.     messageDigest.digest.overload('[B').implementation = function(data) {
  76.         console.log("↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓");
  77.         console.log("MessageDigest.digest('[B') is called!");
  78.         var algorithm = this.getAlgorithm();
  79.         var tag = algorithm + " digest data";
  80.         toUtf8(tag, data);
  81.         toHex(tag, data);
  82.         toBase64(tag, data);
  83.         var result = this.digest(data);
  84.         var tags = algorithm + " digest result";
  85.         toHex(tags, result);
  86.         toBase64(tags, result);
  87.         showStacks2();
  88.         console.log("↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑");
  89.         return result;
  90.     }
  91.     messageDigest.digest.overload('[B', 'int', 'int').implementation = function(data, start, length) {
  92.         console.log("↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓");
  93.         console.log("MessageDigest.digest('[B', 'int', 'int') is called!");
  94.         var algorithm = this.getAlgorithm();
  95.         var tag = algorithm + " digest data";
  96.         toUtf8(tag, data);
  97.         toHex(tag, data);
  98.         toBase64(tag, data);
  99.         var result = this.digest(data, start, length);
  100.         var tags = algorithm + " digest result";
  101.         toHex(tags, result);
  102.         toBase64(tags, result);
  103.         console.log("start:", start);
  104.         console.log("length:", length);
  105.         showStacks2();
  106.         console.log("↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑");
  107.         return result;
  108.     }
  109.     var mac = Java.use("javax.crypto.Mac");
  110.     mac.init.overload('java.security.Key', 'java.security.spec.AlgorithmParameterSpec').implementation = function(key, AlgorithmParameterSpec) {
  111.         console.log("↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓");
  112.         console.log("Mac.init('java.security.Key', 'java.security.spec.AlgorithmParameterSpec') is called!");
  113.         showStacks2();
  114.         console.log("↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑");
  115.         return this.init(key, AlgorithmParameterSpec);
  116.     }
  117.     mac.init.overload('java.security.Key').implementation = function(key) {
  118.         console.log("↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓");
  119.         console.log("Mac.init('java.security.Key') is called!");
  120.         var algorithm = this.getAlgorithm();
  121.         var tag = algorithm + " init Key";
  122.         var keyBytes = key.getEncoded();
  123.         toUtf8(tag, keyBytes);
  124.         toHex(tag, keyBytes);
  125.         toBase64(tag, keyBytes);
  126.         showStacks2();
  127.         console.log("↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑");
  128.         return this.init(key);
  129.     }
  130.     mac.update.overload('byte').implementation = function(data) {
  131.         console.log("↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓");
  132.         console.log("Mac.update('byte') is called!");
  133.         showStacks2();
  134.         console.log("↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑");
  135.         return this.update(data);
  136.     }
  137.     mac.update.overload('java.nio.ByteBuffer').implementation = function(data) {
  138.         console.log("↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓");
  139.         console.log("Mac.update('java.nio.ByteBuffer') is called!");
  140.         showStacks2();
  141.         console.log("↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑");
  142.         return this.update(data);
  143.     }
  144.     mac.update.overload('[B').implementation = function(data) {
  145.         console.log("↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓");
  146.         console.log("Mac.update('[B') is called!");
  147.         var algorithm = this.getAlgorithm();
  148.         var tag = algorithm + " update data";
  149.         toUtf8(tag, data);
  150.         toHex(tag, data);
  151.         toBase64(tag, data);
  152.         showStacks2();
  153.         console.log("↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑");
  154.         return this.update(data);
  155.     }
  156.     mac.update.overload('[B', 'int', 'int').implementation = function(data, start, length) {
  157.         console.log("↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓");
  158.         console.log("Mac.update('[B', 'int', 'int') is called!");
  159.         var algorithm = this.getAlgorithm();
  160.         var tag = algorithm + " update data";
  161.         toUtf8(tag, data);
  162.         toHex(tag, data);
  163.         toBase64(tag, data);
  164.         console.log("start:", start);
  165.         console.log("length:", length);
  166.         showStacks2();
  167.         console.log("↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑");
  168.         return this.update(data, start, length);
  169.     }
  170.     mac.doFinal.overload().implementation = function() {
  171.         console.log("↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓");
  172.         console.log("Mac.doFinal() is called!");
  173.         var result = this.doFinal();
  174.         var algorithm = this.getAlgorithm();
  175.         var tag = algorithm + " doFinal result";
  176.         toHex(tag, result);
  177.         toBase64(tag, result);
  178.         showStacks2();
  179.         console.log("↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑");
  180.         return result;
  181.     }
  182.     // DES/DESede/AES/RSA
  183.     var cipher = Java.use("javax.crypto.Cipher");
  184.     cipher.init.overload('int', 'java.security.cert.Certificate').implementation = function() {
  185.         console.log("↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓");
  186.         console.log("Cipher.init('int', 'java.security.cert.Certificate') is called!");
  187.         showStacks2();
  188.         console.log("↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑");
  189.         return this.init.apply(this, arguments);
  190.     }
  191.     cipher.init.overload('int', 'java.security.Key', 'java.security.SecureRandom').implementation = function() {
  192.         console.log("↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓");
  193.         console.log("Cipher.init('int', 'java.security.Key', 'java.security.SecureRandom') is called!");
  194.         showStacks2();
  195.         console.log("↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑");
  196.         return this.init.apply(this, arguments);
  197.     }
  198.     cipher.init.overload('int', 'java.security.cert.Certificate', 'java.security.SecureRandom').implementation = function() {
  199.         console.log("↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓");
  200.         console.log("Cipher.init('int', 'java.security.cert.Certificate', 'java.security.SecureRandom') is called!");
  201.         showStacks2();
  202.         console.log("↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑");
  203.         return this.init.apply(this, arguments);
  204.     }
  205.     cipher.init.overload('int', 'java.security.Key', 'java.security.AlgorithmParameters', 'java.security.SecureRandom').implementation = function() {
  206.         console.log("↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓");
  207.         console.log("Cipher.init('int', 'java.security.Key', 'java.security.AlgorithmParameters', 'java.security.SecureRandom') is called!");
  208.         showStacks2();
  209.         console.log("↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑");
  210.         return this.init.apply(this, arguments);
  211.     }
  212.     cipher.init.overload('int', 'java.security.Key', 'java.security.spec.AlgorithmParameterSpec', 'java.security.SecureRandom').implementation = function() {
  213.         console.log("↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓");
  214.         console.log("Cipher.init('int', 'java.security.Key', 'java.security.spec.AlgorithmParameterSpec', 'java.security.SecureRandom') is called!");
  215.         showStacks2();
  216.         console.log("↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑");
  217.         return this.init.apply(this, arguments);
  218.     }
  219.     cipher.init.overload('int', 'java.security.Key', 'java.security.AlgorithmParameters').implementation = function() {
  220.         console.log("↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓");
  221.         console.log("Cipher.init('int', 'java.security.Key', 'java.security.AlgorithmParameters') is called!");
  222.         showStacks2();
  223.         console.log("↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑");
  224.         return this.init.apply(this, arguments);
  225.     }
  226.     cipher.init.overload('int', 'java.security.Key').implementation = function() {
  227.         console.log("↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓");
  228.         console.log("Cipher.init('int', 'java.security.Key') is called!");
  229.         var algorithm = this.getAlgorithm();
  230.         var tag = algorithm + " init Key";
  231.         var className = JSON.stringify(arguments[1]);
  232.         if (className.indexOf("OpenSSLRSAPrivateKey") === -1) {
  233.             var keyBytes = arguments[1].getEncoded();
  234.             toUtf8(tag, keyBytes);
  235.             toHex(tag, keyBytes);
  236.             toBase64(tag, keyBytes);
  237.         }
  238.         showStacks2();
  239.         console.log("↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑");
  240.         return this.init.apply(this, arguments);
  241.     }
  242.     cipher.init.overload('int', 'java.security.Key', 'java.security.spec.AlgorithmParameterSpec').implementation = function() {
  243.         console.log("↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓");
  244.         console.log("Cipher.init('int', 'java.security.Key', 'java.security.spec.AlgorithmParameterSpec') is called!");
  245.         var algorithm = this.getAlgorithm();
  246.         var tag = algorithm + " init Key";
  247.         var keyBytes = arguments[1].getEncoded();
  248.         toUtf8(tag, keyBytes);
  249.         toHex(tag, keyBytes);
  250.         toBase64(tag, keyBytes);
  251.         var tags = algorithm + " init iv";
  252.         var iv = Java.cast(arguments[2], Java.use("javax.crypto.spec.IvParameterSpec"));
  253.         var ivBytes = iv.getIV();
  254.         toUtf8(tags, ivBytes);
  255.         toHex(tags, ivBytes);
  256.         toBase64(tags, ivBytes);
  257.         showStacks2();
  258.         console.log("↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑");
  259.         return this.init.apply(this, arguments);
  260.     }
  261.     cipher.doFinal.overload('java.nio.ByteBuffer', 'java.nio.ByteBuffer').implementation = function() {
  262.         console.log("↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓");
  263.         console.log("Cipher.doFinal('java.nio.ByteBuffer', 'java.nio.ByteBuffer') is called!");
  264.         showStacks2();
  265.         console.log("↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑");
  266.         return this.doFinal.apply(this, arguments);
  267.     }
  268.     cipher.doFinal.overload('[B', 'int').implementation = function() {
  269.         console.log("↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓");
  270.         console.log("Cipher.doFinal('[B', 'int') is called!");
  271.         showStacks2();
  272.         console.log("↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑");
  273.         return this.doFinal.apply(this, arguments);
  274.     }
  275.     cipher.doFinal.overload('[B', 'int', 'int', '[B').implementation = function() {
  276.         console.log("↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓");
  277.         console.log("Cipher.doFinal('[B', 'int', 'int', '[B') is called!");
  278.         showStacks2();
  279.         console.log("↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑");
  280.         return this.doFinal.apply(this, arguments);
  281.     }
  282.     cipher.doFinal.overload('[B', 'int', 'int', '[B', 'int').implementation = function() {
  283.         console.log("↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓");
  284.         console.log("Cipher.doFinal('[B', 'int', 'int', '[B', 'int') is called!");
  285.         showStacks2();
  286.         console.log("↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑");
  287.         return this.doFinal.apply(this, arguments);
  288.     }
  289.     cipher.doFinal.overload().implementation = function() {
  290.         console.log("↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓");
  291.         console.log("Cipher.doFinal() is called!");
  292.         showStacks2();
  293.         console.log("↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑");
  294.         return this.doFinal.apply(this, arguments);
  295.     }
  296.     cipher.doFinal.overload('[B').implementation = function() {
  297.         console.log("↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓");
  298.         console.log("Cipher.doFinal('[B') is called!");
  299.         var algorithm = this.getAlgorithm();
  300.         var tag = algorithm + " doFinal data";
  301.         var data = arguments[0];
  302.         
  303.         toBase64(tag, data);
  304.         toHex(tag, data);
  305.         toBase64(tag, data);
  306.         var result = this.doFinal.apply(this, arguments);
  307.         var tags = algorithm + " doFinal result";
  308.         toHex(tags, result);
  309.         toBase64(tags, result);
  310.         showStacks2();
  311.         console.log("↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑");
  312.         return result;
  313.     }
  314.     cipher.doFinal.overload('[B', 'int', 'int').implementation = function() {
  315.         console.log("↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓");
  316.         console.log("Cipher.doFinal('[B', 'int', 'int') is called!");
  317.         var algorithm = this.getAlgorithm();
  318.         var tag = algorithm + " doFinal data";
  319.         var data = arguments[0];
  320.         toUtf8(tag, data);
  321.         toHex(tag, data);
  322.         toBase64(tag, data);
  323.         var result = this.doFinal.apply(this, arguments);
  324.         var tags = algorithm + " doFinal result";
  325.         toHex(tags, result);
  326.         toBase64(tags, result);
  327.         console.log("arguments[1]:", arguments[1], );
  328.         console.log("arguments[2]:", arguments[2]);
  329.         showStacks2();
  330.         console.log("↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑");
  331.         return result;
  332.     }
  333.     
  334.     var signature = Java.use("java.security.Signature");
  335.     signature.update.overload('byte').implementation = function(data) {
  336.         console.log("↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓");
  337.         console.log("Signature.update('byte') is called!");
  338.         showStacks2();
  339.         console.log("↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑");
  340.         return this.update(data);
  341.     }
  342.     signature.update.overload('java.nio.ByteBuffer').implementation = function(data) {
  343.         console.log("↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓");
  344.         console.log("Signature.update('java.nio.ByteBuffer') is called!");
  345.         showStacks2();
  346.         console.log("↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑");
  347.         return this.update(data);
  348.     }
  349.     signature.update.overload('[B', 'int', 'int').implementation = function(data, start, length) {
  350.         console.log("↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓");
  351.         console.log("Signature.update('[B', 'int', 'int') is called!");
  352.         var algorithm = this.getAlgorithm();
  353.         var tag = algorithm + " update data";
  354.         toUtf8(tag, data);
  355.         toHex(tag, data);
  356.         toBase64(tag, data);
  357.         console.log("start:", start);
  358.         console.log("length:", length);
  359.         showStacks2();
  360.         console.log("↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑");
  361.         return this.update(data, start, length);
  362.     }
  363.     signature.sign.overload('[B', 'int', 'int').implementation = function() {
  364.         console.log("↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓");
  365.         console.log("Signature.sign('[B', 'int', 'int') is called!");
  366.         showStacks2();
  367.         console.log("↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑");
  368.         return this.sign.apply(this, arguments);
  369.     }
  370.     signature.sign.overload().implementation = function() {
  371.         console.log("↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓↓");
  372.         console.log("Signature.sign() is called!");
  373.         var result = this.sign();
  374.         var algorithm = this.getAlgorithm();
  375.         var tag = algorithm + " sign result";
  376.         toHex(tag, result);
  377.         toBase64(tag, result);
  378.         showStacks2();
  379.         console.log("↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑");
  380.         return result;
  381.     }

字符串
我也可以用我自己生成的密钥对模拟这个过程。当我解密响应数据时,它会给我一些我不知道其用途的二进制数据!!但现在这无关紧要

展开查看全部
赞(0)分享  回复(0)举报  2024-01-04
我来回答

相关问题

    查看更多

    热门标签

    更多
    JavaquerypythonNode开发语言requestUtil数据库Table后端算法LoggerMessageElementParser

    最新问答

    更多
    • 蜀ICP备13028337号-1 大数据知识库 https://www.saoniuhuo.com © All rights reserved
    • 本站内容来源互联网,如果侵犯您的权益请联系我们删除, 联系方式:448109455@qq.com