抖音 记一次 X-bogus 逆向分析

记录一次抖音 X-Bogus 研究过程

将X-Bogus放入实际案例中测试

导入js库

import execjs
with open("1.js") as f:
    js_code = f.read()
f.close()
js_compile = execjs.compile(js_code)

接口 -> 获取粉丝列表

https://www.douyin.com/aweme/v1/web/user/follower/list/

Cookie

cookies = {
    "stream_player_status_params": "",
    "sid_guard": "",
}

参数

params = {
    "device_platform": "webapp",
    "aid": "6383",
    "channel": "channel_pc_web",
    "user_id": "XXXX",
    "sec_user_id": "XXX",
    "offset": "0",
    "min_time": "0",
    "max_time": "1710210938",
    "count": "20",
    "source_type": "1",
    "gps_access": "0",
    "address_book_access": "0",
    "pc_client_type": "1",
    "version_code": "170400",
    "version_name": "17.4.0",
    "cookie_enabled": "true",
    "screen_width": "1440",
    "screen_height": "900",
    "browser_language": "zh-CN",
    "browser_platform": "MacIntel",
    "browser_name": "Chrome",
    "browser_version": "122.0.0.0",
    "browser_online": "true",
    "engine_name": "Blink",
    "engine_version": "122.0.0.0",
    "os_name": "Mac OS",
    "os_version": "10.15.7",
    "cpu_core_num": "4",
    "device_memory": "8",
    "platform": "PC",
    "downlink": "10",
    "effective_type": "4g",
    "round_trip_time": "100",
    "webid": "XXX",
    "msToken": "1",
}

请求结果 成功

总结

1. 这里的粉丝分页不是 offset ，而是 max_time 。这个值可以取返回参数中的 min_time
2. cookie只用到了 stream_player_status_params 和 sid_guard
3. msToken不校验，但是参与生成XB。其他参数没有测试

小白研究，欢迎大佬指教

小白研究，欢迎大佬指教

小白研究，欢迎大佬指教