add

malinkang · malinkang · commit c276fcccd299 · 2024-08-22T14:02:59.000+08:00
diff --git a/SUMMARY.md b/SUMMARY.md
@@ -4,9 +4,9 @@
 * [Android知识点梳理](interview-questions.md)
 * [Android Studio](tools/android-studio/android-studio.md)
 * [aop](aop.md)
-* [界面](ui/README.md)
+* UI
   * [ViewPager2](ui/viewpager2.md)
-  * [\[View\]](ui/view/README.md)
+  * [View](ui/view/README.md)
     * [View.post()分析](ui/view/view.post-fen-xi.md)
     * [自定义View](ui/view/custom-views/README.md)
       * [Canvas使用](ui/view/custom-views/canvas.md)
@@ -50,7 +50,7 @@
   * [保存键值对数据](data-storage/shared-preferences.md)
 * [编译时注解](annotation/README.md)
   * [Untitled](annotation/untitled.md)
-  * [\[译\]Java注解处理器\](annotation/annotation-processing.md)](annotation/yi-java-zhu-jie-chu-li-qi-annotationannotationprocessing.md.md)
+  * [Java注解处理器\](annotation/annotation-processing.md)](annotation/yi-java-zhu-jie-chu-li-qi-annotationannotationprocessing.md.md)
   * [JavaPoet 文档翻译](annotation/javapoet-wen-dang-fan-yi.md)
 * [图形和图像](graphics/README.md)
   * [Drawable使用](graphics/drawable.md)
@@ -132,3 +132,6 @@
   * [Choreographer原理](aosp/choreographer.md)
   * [Handler使用](aosp/handler-shi-yong.md)
   * [Handler源码分析](aosp/handler-yuan-ma-fen-xi.md)
+* 逆向
+  * [Android抓包](reverse-engineering/capture.md)
+  * [网易云音乐逆向](reverse-engineering/netease-cloud-music-reverse.md)
diff --git a/reverse-engineering/capture.md b/reverse-engineering/capture.md
@@ -0,0 +1,40 @@
+---
+title: Android抓包
+comments: true
+---
+
+## 使用HttpCanary抓包
+
+### 工具
+
+* [MT管理器](https://mt2.cn/)
+* [HttpCanary安装包](https://drive.malinkang.com/api/raw/?path=/Files/HttpCanary_3.3.5.apk)
+* [HttpCanary根证书](https://drive.malinkang.com/api/raw/?path=/Files/HttpCanary%E6%A0%B9%E8%AF%81%E4%B9%A6.zip)
+* [TrustMe安装包](https://drive.malinkang.com/api/raw/?path=/Files/TrustMeAlready_1.11.apk)
+
+### 安装证书
+
+1. MT管理器打开`/data/user/0/com.guoshi.httpcanary/cache`，新建名为`HttpCanary.jks`的空文件；然后把`HttpCanary.p12` 和 `HttpCanary.pem`两个文件复制到其他文件夹里（比如 Download 文件夹）。
+2. 打开手机设置→安全→加密与凭据→安装证书
+    1. 点击 CA 证书，它会提示您的数据将不再是私密的，点仍然安装。找到刚才放证书的文件夹，选择 HttpCanary.pem 。 显示已安装CA证书。
+    2. 点击 xxx和应用用户证书，选择`HttpCanary.p12` ，密码为`HttpCanary`。
+    3. 点击WLAN证书，选择 HttpCanary.p12 ，密码为 HttpCanary，证书名称为 WiFi。
+
+### Magisk移动根证书
+
+1. 安装完用户证书后会在`/data/misc/user/0/cacerts-added/`目录下生成一个以`.0`结尾的整数文件，复制到`HttpCanary根证书.zip/system/etc/security/cacerts/`目录下。
+2. 打开 Magisk→模块→从本地安装→选择“HttpCanary根证书.zip”→确定安装，安装完成后重启手机。
+
+### 固定证书无法抓包
+
+安装TrustMe，并勾选要抓包的App。
+
+
+
+## 参考
+* [安卓14 + HttpCanary 抓包设置](https://yuqi.fun/posts/5fb4c97d.html)
+* [mitmproxy](https://github.com/mitmproxy/mitmproxy)
+* [r0capture](https://github.com/r0ysue/r0capture)
+* [JustTrustMe](https://github.com/Fuzion24/JustTrustMe)
+* [XposedOkHttpCat](https://github.com/w296488320/XposedOkHttpCat)
+* [安卓高版本HTTPS抓包：终极解决方案](https://juejin.cn/post/7360242772303577125)
diff --git a/reverse-engineering/netease-cloud-music-reverse.md b/reverse-engineering/netease-cloud-music-reverse.md
@@ -0,0 +1,18 @@
+---
+title: 网易云音乐逆向
+comments: true
+---
+
+## 收听数据抓取
+
+
+
+* url：https://interface.music.163.com/weapi/content/activity/listen/data/report?csrf_token=966c1ee1e9da11e0e2c8220fa1d5e575
+* 参数 params=lSKtRzLGiioFPbYdBTeCFpDXEilL2dhM2CFtDx4J6sBA44%2BVtmU1IdkeiAw4eVo2ZPfOHm9CHAQsHr2mvEas6rz42bqv%2FFdDLYsM4QshtSTaFBR4D%2BG7ihzCIvtXxXdaZ493qGgPi5U8iIR5jQqy6%2FFEWGdYn7sxHNZbbm8OAjmtwUwuDjpumkdtQFt9wyBe&encSecKey=985c1ac9eed9c584ec78914024b44d28560b7a077f27cf8f3927cf7eec843502c54f3fb00b1ed7b0a864bf0a8eba7872b48f30ae9785c2771628c5771253f6b3742b8d7b1656a33dd0f84a64abffac2f7e7005899c26915bfc9f8cad1bf6a03d5b641f131fa5428002ffad9588bba81a3671df32b1866ed8f5bab9359f7bb086 
+params目前无法解密，无法知道参数格式
+
+## 参考
+* [网易云音乐听歌识曲 API 逆向 (一)](https://nazuki.moe/netease-eapi-music-recognize-reverse-1/)
+* [尝鲜抓包工具Reqable，巧用脚本解密网易云音乐](https://shakaianee.top/archives/944/#%E7%BC%96%E5%86%99%E8%A7%A3%E5%AF%86%E8%84%9A%E6%9C%AC)
+* [LDDC](https://github.com/chenmozhijin/LDDC/blob/be7b7d9dd5500d433f5626a4344166b0c8b217b8/backend/api.py#L89)
+* [网易云音乐api params和encSecKey抓取分析-2024_](https://blog.bingyue.top/2024/06/08/wyy_sign/)
