Cookie encryption 3+rpc solution

Reference video js Inverse Rayleigh number 5 Explanation of decryption and pile insertion _ Bili, Bili _bilibili, This involves fidder New usage of .

1. stay F12 Refresh can be done in Network The loading process of the discovery network , In fact, it can also be in Application See in cookie Field loading process .

2. In the verification of cookie When , The first time I visited the home page , Empty cookie, Find out cookie One of the fields does not know where to encrypt , Constantly refresh , Then I found that I still couldn't figure out the source , Finally, turn off the main page tab , Re clearing cookie open , Find out cookie That field is one of the asynchronous requests , The previous asynchronous request does not appear , Because the website cookie There are still problems in the browser that have not been cleaned up , therefore , It is best to close the tab when refreshing , Then open it again .

3.session It's a conversation , be based on cookie The role of confidentiality . server setting cookie Yes. setcookie Field ,session The time of conversation is different for each website . The browser gets set-Cookie It will be saved to cookie, until cookie Set the failure position .

4.fiddler Display Chinese random code , Click... Directly on the toolbar decode, as follows ：

  test cookie Is it changing all the time , Requests can be constructed manually , Right click directly on the link ,replay=》 Restructure requirements , Then click on the right to restructure .

fidder Determine the need for cookie Has been The operation of change ：

then , Equivalent to reissue request, If the required parameters are variable , Then an error will be reported when returning

Some fixed fields are returned by the request , Set the browser to traceless mode for access ,fidder Global search , You will see .

Many of the first requests return , I will always take it with me , unchanged . So this can be copied directly . Focus on changing fields .

Turn the page and compare the two requests ,cookie A field in is changing

Load carried = The request URL is changing

Click the next page , Open the browser's own packet capture xhr Options , choice xhr, Click the launcher

jquery.min,js of use open Function to generate url, A certain number this is through url To change . stay jquery And the lower breakpoint of the previous function , Go back to the parameters , It is found that the function has become send 了 ,jquery.min.js Of open in url Is the target url. Here we can learn from . Follow that generation url Function of , Define a window. Global variable name , Then lead it out .

cook The generation of needs to be in

Supplemented as follows ：