navicat 密码查看技巧

甜饮铺。

已于 2022-10-24 09:11:03 修改

阅读量870

点赞数

文章标签： 1024程序员节

于 2022-10-24 08:56:52 首次发布

本文链接：https://blog.csdn.net/weixin_51687288/article/details/127484879

版权

本文介绍了两种方法来查看和解密Navicat的连接密码。方法一是通过PHP代码在在线解密网站上进行解密，方法二是使用Python的Crypto库进行解密。这两种方法都需要对导出的connections.ncx文件中的密码进行处理，然后通过特定的加密算法进行解密操作。

摘要由CSDN通过智能技术生成

navicat 密码查看技巧

时间久了，当我们以前连上了navicat 之后，密码忘记了，但是依然能连接，此时我们想查看密码，应该如何操作呢

步骤一

点击Navicat文件选项，勾选需要导出的数据库，导出的时候一定要勾选导出密码
在这里插入图片描述

导出之后，我们会得到一个connections.ncx文件中找到password，然后复制出来

复制出来password内容需要对密码进行破解
打开以下链接破解网站
https://tool.lu/coderunner
将如下PHP代码复制进去，替换解密部分为复制出来的password内容

<?php
class NavicatPassword
{
	protected $version = 0;
	protected $aesKey = 'libcckeylibcckey';
	protected $aesIv = 'libcciv libcciv ';
	protected $blowString = '3DC5CA39';
	protected $blowKey = null;
	protected $blowIv = null;

	public function __construct($version = 12)
	{
		$this->version = $version;
		$this->blowKey = sha1('3DC5CA39', true);
		$this->blowIv = hex2bin('d9c7c3c8870d64bd');
	}

	public function encrypt($string)
	{
		$result = FALSE;
		switch ($this->version) {
			case 11:
				$result = $this->encryptEleven($string);
				break;
			case 12:
				$result = $this->encryptTwelve($string);
				break;
			default:
				break;
		}

		return $result;
	}

	protected function encryptEleven($string)
	{
		$round = intval(floor(strlen($string) / 8));
		$leftLength = strlen($string) % 8;
		$result = '';
		$currentVector = $this->blowIv;

		for ($i = 0; $i < $round; $i++) {
			$temp = $this->encryptBlock($this->xorBytes(substr($string, 8 * $i, 8), $currentVector));
			$currentVector = $this->xorBytes($currentVector, $temp);
			$result .= $temp;
		}

		if ($leftLength) {
			$currentVector = $this->encryptBlock($currentVector);
			$result .= $this->xorBytes(substr($string, 8 * $i, $leftLength), $currentVector);
		}

		return strtoupper(bin2hex($result));
	}

	protected function encryptBlock($block)
	{
		return openssl_encrypt($block, 'BF-ECB', $this->blowKey, OPENSSL_RAW_DATA|OPENSSL_NO_PADDING);
	}

	protected function decryptBlock($block)
	{
		return openssl_decrypt($block, 'BF-ECB', $this->blowKey, OPENSSL_RAW_DATA|OPENSSL_NO_PADDING);
	}

	protected function xorBytes($str1, $str2)
	{
		$result = '';
		for ($i = 0; $i < strlen($str1); $i++) {
			$result .= chr(ord($str1[$i]) ^ ord($str2[$i]));
		}

		return $result;
	}

	protected function encryptTwelve($string)
	{
		$result = openssl_encrypt($string, 'AES-128-CBC', $this->aesKey, OPENSSL_RAW_DATA, $this->aesIv);
		return strtoupper(bin2hex($result));
	}

	public function decrypt($string)
	{
		$result = FALSE;
		switch ($this->version) {
			case 11:
				$result = $this->decryptEleven($string);
				break;
			case 12:
				$result = $this->decryptTwelve($string);
				break;
			default:
				break;
		}

		return $result;
	}

	protected function decryptEleven($upperString)
	{
		$string = hex2bin(strtolower($upperString));

		$round = intval(floor(strlen($string) / 8));
		$leftLength = strlen($string) % 8;
		$result = '';
		$currentVector = $this->blowIv;

		for ($i = 0; $i < $round; $i++) {
			$encryptedBlock = substr($string, 8 * $i, 8);
			$temp = $this->xorBytes($this->decryptBlock($encryptedBlock), $currentVector);
			$currentVector = $this->xorBytes($currentVector, $encryptedBlock);
			$result .= $temp;
		}

		if ($leftLength) {
			$currentVector = $this->encryptBlock($currentVector);
			$result .= $this->xorBytes(substr($string, 8 * $i, $leftLength), $currentVector);
		}

		return $result;
	}

	protected function decryptTwelve($upperString)
	{
		$string = hex2bin(strtolower($upperString));
		return openssl_decrypt($string, 'AES-128-CBC', $this->aesKey, OPENSSL_RAW_DATA, $this->aesIv);
	}
};

//需要指定版本两种，11或12
//$navicatPassword = new NavicatPassword(11);
//这里我指定的12的版本，原先指定的11，执行之后的密码是乱码
$navicatPassword = new NavicatPassword(12);

//解密
//$decode = $navicatPassword->decrypt('9A6343FBE4FCD440352A083A51094C68');
$decode = $navicatPassword->decrypt('9A6343FBE4FCD440352A083A51094C68');
echo $decode."\n";
?>

点击执行，右边运行得到密码
在这里插入图片描述

方法二:使用Python代码实现

from Crypto.Cipher import AES
from binascii import b2a_hex, a2b_hex

# 如果text不足16位的倍数就用空格补足为16位
def add_to_16(text):
    if len(text.encode('utf-8')) % 16:
        add = 16 - (len(text.encode('utf-8')) % 16)
    else:
        add = 0
    text = text + ('\0' * add)
    return text.encode('utf-8')

# 加密函数
def encrypt(text):
    key = 'libcckeylibcckey'.encode('utf-8')
    mode = AES.MODE_CBC
    iv = b'libcciv libcciv '
    text = add_to_16(text)
    cryptos = AES.new(key, mode, iv)
    cipher_text = cryptos.encrypt(text)
    print(b2a_hex(cipher_text))
    # 因为AES加密后的字符串不一定是ascii字符集的，输出保存可能存在问题，所以这里转为16进制字符串
    return b2a_hex(cipher_text)

# 解密后，去掉补足的空格用strip() 去掉
def decrypt(text):
    key = 'libcckeylibcckey'.encode('utf-8')
    iv = b'libcciv libcciv '
    mode = AES.MODE_CBC
    cryptos = AES.new(key, mode, iv)
    plain_text = cryptos.decrypt(a2b_hex(text))
    return bytes.decode(plain_text).rstrip('\0').replace('','')



if __name__ == '__main__':
    d = decrypt('9A6343FBE4FCD440352A083A51094C68')  # 解密
    print("解密:", d)