This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
前言 | |
1、互联网业务经常会有送券、领红包等活动,通常礼品发放是基于单个用户ID只发放一次原则,同时还会结合是否新用户、是否非常客(熟客不给优惠)等策略。 | |
羊毛党薅羊毛场景:1、编写领礼品(券和红包统称礼品)脚本;2、导入批量用户cookie或手机号,导入批量网络代理(绕基于IP的风控);3、脚本开启,不出意外可以掌握大量的券和红包,接着转卖或代购 | |
互联网厂商对抗羊毛党:1、要求输入图形验证码;2、要求输入短信验证码 | |
然而,图形验证码可以接入云打码平台或者使用基于机器学习的图像识别技术;短信验证码也可以自动通过代码接收到 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
frida -U --no-pause -l xx.js -f pkgname (or -p pid) | |
# PrintStack 输出当前调用堆栈 | |
var Throwable = null; | |
Java.perform(function () { | |
Throwable = Java.use("java.lang.Throwable"); | |
}); | |
function PrintStack() { | |
var stackElements = Throwable.$new().getStackTrace(); |