一 WordPress网站
闲来无事,随便写个自动签到程序
先搞定自动登录:
用fiddler找到登录入口
https://***.com/wp-json/jwt-auth/v1/token
发现登录请求为post,body为明文用户名密码,返回了一个token故:
import requests,re,sys,json
ssion = requests.session()
data = {
'username': 'xxx@163.com',
'password': '123456',
}
res = ssion.post("https://***.com/wp-json/jwt-auth/v1/token", data = data)
j = json.loads(res.text)
token = j['token']
获得token,fiddler查看token的使用方法,发现是加在请求头里,故:
headers = {}
headers['Authorization'] = 'Bearer '+token
ssion.headers = headers
尝试请求用户信息,获得成功:
res = ssion.get("https://***.com/wp-json/b2/v1/getUserInfo")
if re.findall(r'error',res.text):
print("登录失败")
sys.exit()
else:
print("登录成功")
fiddler下断点找到签到urlhttps://***.com/wp-json/b2/v1/userMission请求为post,
第二天发现先要get一下mission:https://***/wp-json/b2/v1/getUserMission,body如下
mission = {
'count':'1',
'paged':'1'
}
ssion.post('https://***/wp-json/b2/v1/getUserMission',data = mission)
res = ssion.post("https://***.com/wp-json/b2/v1/userMission")
try:
j = json.loads(res.text)
print("签到成功!获得",j['mission']['credit'],"积分!,目前总共积分:",j['mission']['my_credit'])
except:
print("已签到,今天获得积分",res.text)
完结,前后不过1h
二 论坛类?
一样,先找到登录地址:
http://***/member.php?mod=logging&action=login&loginsubmit=yes&infloat=yes&lssubmit=yes&inajax=1
fiddler发现为post类,带一个body:
data = {
'fastloginfield':'username',
'username': '***',
'password': '***',
'quickforward':'yes',
'handlekey':'ls'
}
故:
import requests,re,sys
ssion = requests.session()
ssion.post("http://***/member.php?mod=logging&action=login&loginsubmit=yes&infloat=yes&lssubmit=yes&inajax=1", data = data)
print("login")
fiddler查得登录信息在cookies里,故登录后不做处理,直接跳转主页:
response = ssion.get("http://***/forum.php")
接着定位到签到标签并判断是否签到过
sign = re.findall("(?<=sign&)[a-z|0-9]*?(?=')",response.text)
#判断是否已签到
if sign:
print(sign)
else:
print("已签到")
sys,exit()
fiddler拦截签到请求,并定位到签到urlhttp://***/plugin.php?id=dsu_paulsign:sign&operation=qiandao&infloat=1&sign_as=1&inajax=1
发现请求为post,带一个body,body内为签到id,每次登录页面都会变,但明文保存在主页内,即上面的sign字段内,故:
data2 = {
'formhash': sign[0],
'qdxq':'kx'
}
用该body签到:
response = ssion.post("http://***/plugin.php?id=dsu_paulsign:sign&operation=qiandao&infloat=1&sign_as=1&inajax=1",data = data2)
输出结果:
print(re.findall("(?<=成功!).*?(?=