jsjiami.com V6版本，js解密的方法。

湖南唯凡网络科技有限公司

2024-03-24 帮助3人

我们在爬内容，抓取页面的时候，总会遇到sojson v5，jsjiami.com的v6加密。

jsjiami v6 ： JS加密,JS不可逆加密,JS混淆,JS混淆加密,JS压缩加密 - [JavaScript加密]

我看了下这个js完全有效。废话不多说。直接上代码。

(function (js_body) {
// 脱壳 && 解密
let js_arr = js_body.split("\n").pop().split(';'),
fun_name = /var\s (_0x[a-z0-9] )=/.exec(js_arr[6])[1],
reg_str = fun_name '\$' "'([^'] )',\s*'([^'] )'" '\$',
js_str = js_arr.slice(54, js_arr.length - 4).join(';'),
code_shell = js_arr.slice(0, 34).join(';'),
shell_obj = eval("(function(){" code_shell ";return " fun_name "})()");
js_str = js_str.replace(new RegExp(reg_str, 'g'), function (str, id, key) {
return '"' shell_obj(id, key) '"';
}).replace(/([a-z0-9 \-_A-Z)\]] )\s?\[["']([^"'] )[" ']\]/g, '$1.$2').replace(/(?<!_)(0x[0-9 a-f] )/g, function (hex) {
return parseInt(hex).toString();
});
// 完全还原混淆
let obj = null, name = '';
js_str = js_str.replace(/{(var\s (_0x[0-9a-z] )=(\{(.*)\}));/g, function (str, code_str, _name, obj_str) {
obj = eval("(function () {return " obj_str "})()");
name = _name;
return '{';
});
if (obj) {
let i = 5;
while (js_str.indexOf(name) && --i > 0) {
for (const key in obj) {
if (!obj.hasOwnProperty(key)) continue;
if (typeof obj[key] == 'function') {
let fun_info = /function\s*_0x[0-9a-z] $([^)]*)${return\s*([^;] );}/.exec(obj[key].toString());
js_str = js_str.replace(new RegExp(name '\\.' key '\$([^())]*)\$', 'g'), function (string, args_str) {
let args = args_str.split(','),
fun_args = fun_info[1].split(','),
fun_body = fun_info[2];
fun_args.forEach(function (item, index) {
fun_body = fun_body.replace(item, args[index]);
});
return fun_body;
});
} else if (typeof obj[key] == 'string') {
js_str = js_str.replace(name '.' key, '"' obj[key] '"');
} else {
js_str = js_str.replace(name '.' key, obj[key].toString());
}
}
}
}
//直接解密了
return js_str;
})($('#resultSource').val() || $('#jsdata').val());

解密之前的代码：

var a=['jsjiami.com.v6','ZjsgjilBUDamOPlriw.EVcomBp.lv6==','5p 76Zev6aOL6K2W6ICh57Czw59KXsO7woIUw6fCgMKLw5TCqg==','KFXCvcKCJFM=','IWQXKgw=','Gks8Kg==','w4h1w7oOag=='];(function(c,d,e){var f=function(g,h,i,j){h=h>>0x8;if(h<g){while(--g){j=c['shift']();if(h===g){h=j;i=c['shift']();}else if(i['replace'](/[ZglBUDOPlrwEVBpl=]/g,'')===h){c['push'](j);}}c['push'](c['shift']());}return 0x242ed;};return f(  d,e)>>d^e;}(a,0x1eb,0x1eb00));var b=function(c,d){c=~~'0x'['concat'](c);var e=a[c];if(b['gPvZlv']===undefined){(function(){var f=typeof window!=='undefined'?window:typeof process==='object'&&typeof require==='function'&&typeof global==='object'?global:this;var g='ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789 /=';f['atob']||(f['atob']=function(h){var i=String(h)['replace'](/= $/,'');for(var j=0x0,k,l,m=0x0,n='';l=i['charAt'](m  );~l&&(k=j%0x4?k*0x40 l:l,j  %0x4)?n =String['fromCharCode'](0xff&k>>(-0x2*j&0x6)):0x0){l=g['indexOf'](l);}return n;});}());var o=function(p,d){var r=[],s=0x0,t,u='',v='';p=atob(p);for(var w=0x0,x=p['length'];w<x;w  ){v ='%' ('00' p['charCodeAt'](w)['toString'](0x10))['slice'](-0x2);}p=decodeURIComponent(v);for(var y=0x0;y<0x100;y  ){r[y]=y;}for(y=0x0;y<0x100;y  ){s=(s r[y] d['charCodeAt'](y%d['length']))%0x100;t=r[y];r[y]=r[s];r[s]=t;}y=0x0;s=0x0;for(var z=0x0;z<p['length'];z  ){y=(y 0x1)%0x100;s=(s r[y])%0x100;t=r[y];r[y]=r[s];r[s]=t;u =String['fromCharCode'](p['charCodeAt'](z)^r[(r[y] r[s])%0x100]);}return u;};b['fuFDUP']=o;b['uzmgkx']={};b['gPvZlv']=!![];}var A=b['uzmgkx'][c];if(A===undefined){if(b['GkZZBA']===undefined){b['GkZZBA']=!![];}e=b['fuFDUP'](e,d);b['uzmgkx'][c]=e;}else{e=A;}return e;};(function(c,d){var e={'RAMoq':'\x32\x30\x31\x39\u5e74\x30\x39\u6708\x31\x32\u65e5\x31\x35\x3a\x32\x34\x3a\x32\x39\u66f4\u65b0','EaZaN':'\u8fd9\u4e2a\u662f\u4e00\u4e2a\u672c\u7ad9\u5bf9\x4a\x61\x76\x61\x53\x63\x72\x69\x70\x74 \u811a\u672c\u7684\u4e00\u4e2a\u6700\u725b\u52a0\u5bc6\uff0c\u517c\u5bb9\u6027\u9002\u4e2d\uff0c\u89e3\u5bc6\u96be\u5ea6\u6781\u5927'};c[b('0','ZdTU')]=e[b('1','FnxY')];d[b('2','FnxY')]=e[b('3','jPNw')];d['feedback']=b('4','fS%!');}(window,document));

解密之后：

var g_gotowxtime = 0;
var g_gotowxaction = 0;
var g_status = 0;

window.vis_st = 0;
window.vis_time = 0;

window.onload = function(){
showHiddenListen();
}
function showHiddenListen(){
document.addEventListener("visibilitychange",function(e){
if(document.hidden) {

if(Date.now()-g_gotowxtime<=4500&&g_gotowxaction!=0){

window.vis_st = 1;
window.vis_time = Date.now();

}
}
if (document.visibilityState === 'visible') {
if(window.vis_st==1)
{
var t_time = Date.now()-window.vis_time;
console.log(Date.now()-window.vis_time);
console.log(window.vis_st);

if(t_time>3000)
{
gdt('track', 'RESERVATION', {'key1': 'value1', 'key2': 'value2'});
}
window.vis_st==0;
window.vis_time = 0;

}

}
g_gotowxaction= 0;
g_gotowxtime= 0;
});
}

$(".wxcode").on('longTap',function(){
g_gotowxtime = Date.now();
g_gotowxaction = 1;

});

是不是干干净净，直接还原原来的代码

也可以用这个工具解密：JS解密-JS在线解密-JS脚本解密-JS格式化去注释-JS美化 - [JavaScript加密]

学新通

这篇好文章是转载于：学新通技术网

jsjiami.com V6版本，js解密的方法。

photoshop保存的图片太大微信发不了怎么办

photoshop扩展功能面板显示灰色怎么办

word里面弄一个表格后上面的标题会跑到下面怎么办

《学习通》视频自动暂停处理方法

TikTok加速器哪个好免费的TK加速器推荐

Android 11 保存文件到外部存储，并分享文件

excel下划线不显示怎么办

微信公众号没有声音提示怎么办

excel图片置于文字下方的方法

微信运动停用后别人还能看到步数吗