新版知乎x-zse-96参数101_3_3.0版分析

十点数据 1年前 ⋅ 299 阅读

分析后得到的js文件《x-zse-96.js》:

// Credit: RSSHub
var crypto=require('crypto');
var md5=crypto.createHash("md5");

function get_md5(s) {
    md5.update(s);
    var strs = md5.digest('hex');
    return strs
}


function i(e, t, n) {
    (t[n] = 255 & (e >>> 24)), (t[n + 1] = 255 & (e >>> 16)), (t[n + 2] = 255 & (e >>> 8)), (t[n + 3] = 255 & e);
}
function B(e, t) {
    return ((255 & e[t]) << 24) | ((255 & e[t + 1]) << 16) | ((255 & e[t + 2]) << 8) | (255 & e[t + 3]);
}
function Q(e, t) {
    return ((4294967295 & e) << t) | (e >>> (32 - t));
}
function G(e) {
    const t = new Array(4);
    const n = new Array(4);
    i(e, t, 0), (n[0] = h.zb[255 & t[0]]), (n[1] = h.zb[255 & t[1]]), (n[2] = h.zb[255 & t[2]]), (n[3] = h.zb[255 & t[3]]);
    const r = B(n, 0);
    return r ^ Q(r, 2) ^ Q(r, 10) ^ Q(r, 18) ^ Q(r, 24);
}
const __g = {
    x(e, t) {
	let n = [];
	for (let r = e.length, i = 0; 0 < r; r -= 16) {
	    const a = new Array(16);
	    for (let o = e.slice(16 * i, 16 * (i + 1)), c = 0; c < 16; c++) {
		a[c] = o[c] ^ t[c];
	    }
	    (t = __g.r(a)), (n = n.concat(t)), i++;
	}
	return n;
    },
    r(e) {
	const t = new Array(16);
	const n = new Array(36);
	(n[0] = B(e, 0)), (n[1] = B(e, 4)), (n[2] = B(e, 8)), (n[3] = B(e, 12));
	for (let r = 0; r < 32; r++) {
	    const o = G(n[r + 1] ^ n[r + 2] ^ n[r + 3] ^ h.zk[r]);
	    n[r + 4] = n[r] ^ o;
	}
	return i(n[35], t, 0), i(n[34], t, 4), i(n[33], t, 8), i(n[32], t, 12), t;
    },
};
const h = {
    zk: [
	1170614578, 1024848638, 1413669199, -343334464, -766094290, -1373058082, -143119608, -297228157, 1933479194, -971186181, -406453910, 460404854, -547427574, -1891326262, -1679095901, 2119585428, -2029270069, 2035090028,
	-1521520070, -5587175, -77751101, -2094365853, -1243052806, 1579901135, 1321810770, 456816404, -1391643889, -229302305, 330002838, -788960546, 363569021, -1947871109,
    ],
    zb: [
	20, 223, 245, 7, 248, 2, 194, 209, 87, 6, 227, 253, 240, 128, 222, 91, 237, 9, 125, 157, 230, 93, 252, 205, 90, 79, 144, 199, 159, 197, 186, 167, 39, 37, 156, 198, 38, 42, 43, 168, 217, 153, 15, 103, 80, 189, 71, 191, 97, 84,
	247, 95, 36, 69, 14, 35, 12, 171, 28, 114, 178, 148, 86, 182, 32, 83, 158, 109, 22, 255, 94, 238, 151, 85, 77, 124, 254, 18, 4, 26, 123, 176, 232, 193, 131, 172, 143, 142, 150, 30, 10, 146, 162, 62, 224, 218, 196, 229, 1,
	192, 213, 27, 110, 56, 231, 180, 138, 107, 242, 187, 54, 120, 19, 44, 117, 228, 215, 203, 53, 239, 251, 127, 81, 11, 133, 96, 204, 132, 41, 115, 73, 55, 249, 147, 102, 48, 122, 145, 106, 118, 74, 190, 29, 16, 174, 5, 177,
	129, 63, 113, 99, 31, 161, 76, 246, 34, 211, 13, 60, 68, 207, 160, 65, 111, 82, 165, 67, 169, 225, 57, 112, 244, 155, 51, 236, 200, 233, 58, 61, 47, 100, 137, 185, 64, 17, 70, 234, 163, 219, 108, 170, 166, 59, 149, 52, 105,
	24, 212, 78, 173, 45, 0, 116, 226, 119, 136, 206, 135, 175, 195, 25, 92, 121, 208, 126, 139, 3, 75, 141, 21, 130, 98, 241, 40, 154, 66, 184, 49, 181, 46, 243, 88, 101, 183, 8, 23, 72, 188, 104, 179, 210, 134, 250, 201, 164,
	89, 216, 202, 220, 50, 221, 152, 140, 33, 235, 214,
    ],
    // zm: [120, 50, 98, 101, 99, 98, 119, 100, 103, 107, 99, 119, 97, 99, 110, 111], // not used
};

const encode = (param) => {
    const salt = '6fpLRqJO8M/c3jnYxFkUVC4ZIG12SiH=5v0mXDazWBTsuw7QetbKdoPyAl+hN9rgE';
    let result = '';
    for (const x of [0, 6, 12, 18]) {
	const a = param >>> x;
	const b = a & 63;
	const c = salt.charAt(b);
	result += c;
    }
    return result;
};

const preProcess = (md5Str) => {
    const md5CharCodeAtArr = [];
    for (let i = 0; i < md5Str.length; i++) {
	md5CharCodeAtArr.push(md5Str.charCodeAt(i));
    }

    md5CharCodeAtArr.unshift(0);
    md5CharCodeAtArr.unshift(Math.random() * 127);
    for (let i = 0; i < 15; i++) {
	md5CharCodeAtArr.push(14);
    }

    const md5CharCodeAtFrontArr = md5CharCodeAtArr.slice(0, 16);
    const fixArr = [48, 53, 57, 48, 53, 51, 102, 55, 100, 49, 53, 101, 48, 49, 100, 55];
    const new_md5_charCodeAt_arr = [];
    for (let i = 0; i < md5CharCodeAtFrontArr.length; i++) {
	new_md5_charCodeAt_arr.push(md5CharCodeAtFrontArr[i] ^ fixArr[i] ^ 42);
    }

    const __g_r = __g.r(new_md5_charCodeAt_arr);
    const md5CharCodeAtBackArr = md5CharCodeAtArr.slice(16, 48);
    const __g_x = __g.x(md5CharCodeAtBackArr, __g_r);
    return __g_r.concat(__g_x);
};

const encrypt = (md5Str) => {
    const processed = preProcess(md5Str);

    let current = 0;
    let resultStr = '';
    for (let i = 0; i < processed.length; i++) {
	const pop = processed[processed.length - i - 1];
	const i_mod_4 = i % 4;
	const i_mod_3 = i % 3;

	const a = 8 * i_mod_4;
	const b = 58 >>> a;
	const c = b & 255;
	const d = pop ^ c;
	const e = d << (8 * i_mod_3);

	current |= e;

	if (i_mod_3 === 2) {
	    resultStr += encode(current);
	    current = 0;
	}
    }
    return resultStr;
};


function get_xzse96(d_c0,apiPath){
    const cookie = `d_c0=${d_c0}`;
    const f = `101_3_3.0+${apiPath}+${d_c0}`;
    const xzse96 = '2.0_' + encrypt(get_md5(f));
    console.log(xzse96)
    return xzse96
}

//apiPath = '/api/v4/search_v3?gk_version=gz-gaokao&t=zvideo&q=%E9%80%86%E5%90%91&correction=1&offset=0&limit=20&filter_fields=&lc_idx=0&show_all_topics=0&search_source=Normal'

Python调用DEMO:

import requests
import execjs

domain = 'https://www.zhihu.com'
search_api = '/api/v4/search_v3?gk_version=gz-gaokao&t=zvideo&q=%E9%80%86%E5%90%91&correction=1&offset=0&limit=20&filter_fields=&lc_idx=0&show_all_topics=0&search_source=Normal'
search_url = domain + search_api

with open('x-zse-96.js', 'r', encoding='utf-8') as f:
    js = f.read()
etx = execjs.compile(js)
cookie = "登录后的cookie"
star = 'd_c0='
end = ';'
d_c0 = cookie[cookie.index(star):].replace(star, '')
d_c0 = d_c0[:d_c0.index(end)]
# d_c0 是服务端返回的,自己请求一个
xzse96 = etx.call('get_xzse96', d_c0, search_api)
headers = {
    "cookie":cookie,
    "user-agent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36",
    "x-api-version":"3.0.91",
    "x-zse-93":"101_3_3.0",
    "x-zse-96":xzse96,
}
text = requests.get(search_url, headers=headers).text
print(text)

全部评论: 0

    我有话说: