龍門渕透華

https://github.com/avenirer/CodeIgniter-MY_Model/issues/273

刚刚的事情, max_parallel设置是1, 也user is not authorized

从来就只使用1线程....这样也被封.... > 如果账号已被判定为作弊账号得话，线程改多少都是没用的，改小线程只是能避免被判定为作弊

想问一下被封了要等多久才解封?

唉...看来要搞个rdesktop的docker然后装个客户端去下载了...

> 获取下载地址这个，在app.js 里62行吧大概，有个 ownCookie 强行改为1的，去掉就行了，但是现在公用cookie有封号的风险，所以不太建议，如果传入的是带了cookie的那不会有问题。加密的会研究一下，但是最近可能没空，主要现在也不太急😂 研究了两天, 最新的zzb签名 把提交的json使用md5加密 json ```json {"comm":{"cv":4747474,"ct":24,"format":"json","inCharset":"utf-8","outCharset":"utf-8","notice":0,"platform":"yqq.json","needNewCode":1,"uin":"0","g_tk_new_20200303":208185208,"g_tk":208185208},"req_0":{"module":"vkey.GetVkeyServer","method":"CgiGetVkey","param":{"guid":"551399144","songmid":["000HXOpL2GGYPf","000HXOpL2GGYPf","000HXOpL2GGYPf","000HXOpL2GGYPf","000HXOpL2GGYPf","000HXOpL2GGYPf","000HXOpL2GGYPf"],"filename":["F000000Xx7FB0O2szE.flac","M800000Xx7FB0O2szE.mp3","C600000Xx7FB0O2szE.m4a","M500000Xx7FB0O2szE.mp3","C400000Xx7FB0O2szE.m4a","C200000Xx7FB0O2szE.m4a","C100000Xx7FB0O2szE.m4a"],"songtype":[0,0,0,0,0,0,0],"uin":"0","loginflag":1,"platform":"20","ctx":1,"musicfile":["F000000HXOpL2GGYPf.flac","M800000HXOpL2GGYPf.mp3","C600000HXOpL2GGYPf.m4a","M500000HXOpL2GGYPf.mp3","C400000HXOpL2GGYPf.m4a","C200000HXOpL2GGYPf.m4a","C100000HXOpL2GGYPf.m4a"]}}} ``` md5 ``` 7bb760eb0b3c7af620d75bd263335f21 ``` 然后md5字符串的[21, 4, 9, 26, 16, 20, 27, 30]这几位存为a ``` b6b32532 ``` md5字符串的[18, 11, 3,...

> > > 获取下载地址这个，在app.js 里62行吧大概，有个 ownCookie 强行改为1的，去掉就行了，但是现在公用cookie有封号的风险，所以不太建议，如果传入的是带了cookie的那不会有问题。加密的会研究一下，但是最近可能没空，主要现在也不太急😂 > > > > > > 研究了两天, 最新的zzb签名 > > 把提交的json使用md5加密 > > json > > ```json > > {"comm":{"cv":4747474,"ct":24,"format":"json","inCharset":"utf-8","outCharset":"utf-8","notice":0,"platform":"yqq.json","needNewCode":1,"uin":"0","g_tk_new_20200303":208185208,"g_tk":208185208},"req_0":{"module":"vkey.GetVkeyServer","method":"CgiGetVkey","param":{"guid":"551399144","songmid":["000HXOpL2GGYPf","000HXOpL2GGYPf","000HXOpL2GGYPf","000HXOpL2GGYPf","000HXOpL2GGYPf","000HXOpL2GGYPf","000HXOpL2GGYPf"],"filename":["F000000Xx7FB0O2szE.flac","M800000Xx7FB0O2szE.mp3","C600000Xx7FB0O2szE.m4a","M500000Xx7FB0O2szE.mp3","C400000Xx7FB0O2szE.m4a","C200000Xx7FB0O2szE.m4a","C100000Xx7FB0O2szE.m4a"],"songtype":[0,0,0,0,0,0,0],"uin":"0","loginflag":1,"platform":"20","ctx":1,"musicfile":["F000000HXOpL2GGYPf.flac","M800000HXOpL2GGYPf.mp3","C600000HXOpL2GGYPf.m4a","M500000HXOpL2GGYPf.mp3","C400000HXOpL2GGYPf.m4a","C200000HXOpL2GGYPf.m4a","C100000HXOpL2GGYPf.m4a"]}}} > > ```...

> 大佬，最终签名‘zzb’ + a + b + c，我一直卡在b这里。请问这一步操作是怎么看出来的，可以给个提示吗？非常感谢！！ ```php

> 哦哦，非常感谢哈！我前面说的卡在b那里，是调试的时候，一直看不出来b是怎么生成，我太菜了。 我也是坑了一天, 主要是base64干扰了, 后来看了一下, 发现好像是base64, 然后就省了很多东西了

不想麻烦, 我最后选择了 ysrc/AndroidObfuseDictionary + StringFog + Dex2C + 腾讯壳