有一项目,加密由C语言的类库实现, 前端为PHP,逆向了一个SO库文件, DEMO如下:
c库加密代码如下:
// Generate AES 128-bit key key 为 32 --47 对应的ASC码
for (i=0; i<16; ++i) {
key[i] = 32 + i;
}
// Set encryption key IV为空 要搞哪样?
for (i=0; i
iv[i] = 0;
}
if (AES_set_encrypt_key(key, 128, &aes) < 0) {
fprintf(stderr, "Unable to set encryption key in AES\n");
exit(-1);
}
// alloc encrypt_string
encrypt_string = (unsigned char*)calloc(len, sizeof(unsigned char));
if (encrypt_string == NULL) {
fprintf(stderr, "Unable to allocate memory for encrypt_string\n");
exit(-1);
}
// encrypt (iv will change)
AES_cbc_encrypt(input_string, encrypt_string, len, &aes, iv, AES_ENCRYPT);
php 解密代码如下:
$key='';
$iv='';
for($i=0;$i<16;$i++){
$code = $i+32;
$key .= chr($code);
}
echo $key . "\n";
echo strlen($key) . "\n";
for($j=0;$j<16;$j++){
$code = 0;
$iv .= chr($code);
}
echo $iv . "\n";
echo strlen($iv) . "\n";
$cbc1 = base64_decode("3lIz3M9hGbfV2r5JKNGDmFRX3OB8tXKaPYCnOZvOj4Qx0kVze0gpPcEthX4f6v6lLs1KeQWCAWpctNJ8UlK6/ZbEn+WOVVV5FfmudfoHDZg640sPJnA9i3u8Ar7dYzX9
6rxQc38Qeo3lEyBgWevDAweGIYqKrWU3qbE1nhQbj/zhYVK/FW/MWNVt750Nj9X2Ev3wGq9r4Fm9Cp6EhYP9JiODIkV7xscgHlJmR1/Pt0iDlVDaxmFoLZ2tbiNojk+m
3MC900ObBYokr1Vv/vNBBB9Eu8oEzis1IkJv5SbWgz+WLJIWX1eEbyhNqZBEf3bdEvlnQUd5d/cVUI+HZHtiak+EUZkQesxx+o1Bh60DYqStyLbfK19cNSV3PNgykOS+
cZVLXWRjdJfLZ9U5CZlzH4fvBGNUzw9waOk4kdkvvLeFDiXcSwoM7UJVZhhSwSaxPDRi+HoBrpDG4cAr/YggUfjz0UHaIPtGN2BWuhy0rQ/FGPNEIdIstbNcfIpKsF+N
gHDF49lEJ2NbHa0MyXn9JpVeD+X8Z85qsDEAIGZyGNMYBJ07f/pmtWvjRqhnY99JDBOEvsL7kNMI+GbFOsltr6NZyhZb7RFZUdmCFYMI0P16DG3rmMCCq/uRNJcWSCga
ByySRq5G2mdSLSQfgK/hEwRhpnLFIMi5OqaH8KJdf8kz2pedhO7LO61o/IvLSqwhm02/I6GsNfrJUzPf8fCX7kwBb/DNSSM1S2aHCxpFcqPv9baK1heXxVJHKUYCGtgF");
$cbc_dec = mcrypt_decrypt(MCRYPT_RIJNDAEL_128, $key,$cbc1, MCRYPT_MODE_CBC, $iv);
echo "cbc_de:". $cbc_dec."\n";
成功解密。