请注意,本文编写于 120 天前,最后修改于 120 天前,其中某些信息可能已经过时。
目录
前言
现在电商数据采集越来越卷,像shopee这类头号电商平台,web参数已经变成日多更了,对于纯算还原的难度越来越大,一个人的精力是有限的,我们必须寻求一些其他方法获取虾皮的数据。
补环境是一个可行的方案,在补环境之前,我们可以现在浏览器上分析,有些什么参数是虾皮收集的,我们可以在调试之前,先把浏览器框架搭起来,这样方便我们调试也方便我们补环境。
参数分析
显然的是,我们想要的参数是这两组
前者是签名参数,后者是浏览器指纹上报,我们分别走进两个方法分析:
签名参数
新版虾皮协议已经变了,所有的数据都是在n这个大数组中,但是主要的流程还是没有变,我们可以看到上一篇文章的插桩点,进行插桩分析,发现收集了什么参数,同时在日志中也可以协助分析检测点。
浏览器指纹
大概看一下,混淆和签名算法一样,还是找插桩点分析,这里就不再赘述,唯一需要注意的是,浏览器的环境因子是加密的,我们先找到他加密前收集的东西就可以了。
指纹汇总
| 名称 | 示例 |
|---|---|
| window的属性和方法数 | Object.keys(window).length |
| screen.width | 375 |
| screen.height | 812 |
| screen.colorDepth | 24 |
| innerWidth | 980 |
| innerHeight | 812 |
| screenLeft | 10 |
| screenTop | 32 |
| timeZone | -540 |
| navigator.language | ja-JP |
| navigator下.hardwareConcurrency | 8 |
| navigator.userAgentData.platform | IOS |
| navigator.maxTouchPoints | 5 |
| navigator.userAgent | "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) |
| navigator. vendor | "Google Inc." |
| navigator. product | "Gecko" |
| navigator. productSub | "20030107" |
| navigator. connection | {downlink: 10, effectiveType: "4g", rtt:100} |
| document的img标签数 | 81 |
| document的script标签数 | 86 |
| document的link标签数 | 50 |
| document的style标签数 | 4 |
| document的button标签数 | 0 |
| document的svg-icon标签数 | 4 |
| document的shopee-search标签数 | 10 |
| document的div标签数 | 478 |
| performance.memory.jsHeapSizeLimit | 4294705152 |
| canvas指纹(parameter,renderingContext) | {parameter: "Apple Inc.",renderingContext: "Apple GPU"} |
| 字体指纹 | 111111111111111111111111111111111111111111111111111111111111111111001111111111111111011111111111 |
| 插件指纹 | Chrome PDF Viewer;Chromium PDF Viewer;Microsoft Edge PDF Viewer;PDF Viewer;WebKit built-in PDF |
| 音频指纹 | ogg;wav;xm4a |
| 电池指纹 | {"charging","chargingTime":0,"dischargingTime":"Infinity","level":1,"onchargingchange","onchargingtimechange","ondischargingtimechange","onlevelchange"} |
| 代码完整性指纹 | 代码生成hash值 |
| webgl指纹 | ANGLE (Intel, Intel(R) HD Graphics 4000 Direct3D9Ex vs_3_0 ps_3_0, aticfx32.dll-8.17.10.1401) |
| audio信息 | {"deviceId":"","kind":"audioinput","label":"","groupId":""} |
| video信息 | {"deviceId":"","kind":"videoinput","label":"","groupId":""} |
| chrome语音信息 | Microsoft Joana Online (Natural) - Catalan (Spain);Microsoft Athina Online (Natural) - Greek (Greece);Microsoft Orla Online (Natural) - Irish(Ireland);Microsoft Huihui - Chinese (Simplified, PRC);Microsoft Kangkang - Chinese (Simplified, PRC);Microsoft Yaoyao - Chinese (Simplified, PRC);Google 普通话(中国大陆);Google 粤語(香港);Google 國語(臺灣);Google 日本語;Google Deutsch;Google US English;Google UK English Female;Google UK English Male;Google español;Google español de Estados Unidos;Google français;Google हिन्दी;Google Bahasa Indonesia;Google polski;Google русский;Google português do Brasil;Google italiano;Google 한국의 |
| 是否selenium | false |
| 是否webdriver | false |
| 是否playwright | false |
| 是否无头浏览器 | false |
| 是否drissinPage | false |
| 是否开启开发者工具 | false |
| 是否Puppeteer | false |
| 是否使用vpn | false |
| nodejs检测 | false |
| vm2检测 | false |
| window属性篡改监测 | XMLHttpRequest.prototype.send:252 |
| loaction检测 | https://shopee.sg/v |
| 堆栈检测 | 0,1,0,1... |
| 运行环境检测 | {"1":1,"2":0,"3":0,"4":0,"5":0,"6":0,"7":0,"8":0,"9":0,"10":0,"11":1,"12":0,"13":0,"14":0,"15":0,"16":0,"17":0,"18":3,"19":0,"20":12,"21":0,"22":0,"23":1,"24":0,"25":0,"26":0,"27":0,"28":0,"29":0,"30":0,"31":0,"32":0,"33":0,"34":0,"35":0,"36":0,"37":1,"38":0,"39":0,"40":0,"41":0,"42":0,"43":0,"44":0,"45":0,"46":0,"47":0,"48":0,"49":0,"50":0,"51":1,"52":0,"53":0,"54":0,"55":0,"56":7,"57":5,"58":4,"59":0,"60":0,"62":302,"63":12,"64":20,"65":400,"66":252,"67":19,"68":301,"69":377,"70":3,"71":3,"72":0,"73":0,"74":385,"75":0,"76":0,"77":502,"78":17,"79":2,"80":502,"81":0,"82":1,"83":1,"84":0,"85":3,"86":0,"87":0,"88":0,"89":0} |
| 版本信息 | {"mobile","model":"","platform":"Windows","platformVersion":"13.0.0","uaFullVersion":"124.0.6367.79"} |
如果对你有用的话,可以打赏哦
打赏
本文作者:回锅炒辣椒
本文链接:
版权声明:本博客所有文章除特别声明外,均采用 BY-NC-SA 许可协议。转载请注明出处!
目录