测试 BAIDU 的竞价商盾点击防御系统~

2018-05-19 22:32:55 +08:00
 FuckP

ios9 iphone 已越狱~ 浏览器 Safari。

已经实现每次点击更换浏览器 UA,ip,UUID,IEMI..清空 cookie。

每次搜索点击间隔随机 1-2 分钟,测试点击大概 100 次,百度账号账户显示 75 次展现,1 次点击.1 次点击.1 次点击.

点击广告后抓包查看了下 提交统计的网址数据应该是 https://hm.baidu.com/hm.js?5257fbd0ed83ff9e6ed95d71759bd50d

Cookie: HMACCOUNT=CCE65835A7F7D900; BAIDUID=B743A3003861BA2047356F0A41DFD05F:FG=1; BCLID=8794842963692317955; BDORZ=AE84CDB3A529C0F8A2B9DCDD1D18B695; BDSFRCVID=f6PsJeC62rmJjDr70a74KlFOVeK5ugoTH6amfyQLow1AbMirOLFlEG0PDM8g0KubLa34ogKKQgOTHRnP; H_BDCLCKID_SF=tJuO_K8XJI03Djrd2ROsMRcH-UnLq-KqLT7Z0l8KttoVORceK6t2-jb3yUvlWh5-WbTt0b7mWIQHDJQw0fvo5T_F-4c0bfRr3DJ4KKJx3pCWeIJo5t5d-jJ3hUJiBhoMBan7bJrxfJOKHIClDj8-jfK; H_WISE_SIDS=110315_122156_123321_104885_123291_122852_123094_120167_123018_118889_118862_118845_118832_118805_120549_107317_123284_117336_117436_122789_123573_122959_121142_123699_110085_123289_100458; PSINO=6; SE_LAUNCH=5%3A25445638_0%3A25445638

https://hm.baidu.com/hm.gif?cc=0&ck=1&cl=32-bit&ds=375x667&vl=559&et=0&ja=0&ln=zh-cn&lo=0&rnd=1416515928&si=5257fbd0ed83ff9e6ed95d71759bd50d&su=https%3A%2F%2Fm.baidu.com%2Fbaidu.php%3Fsc.a000000pGFTBfqUxh13S-ekmurK0oiAsUJzDRuoKxTJndGoPX1tkpc0Gjee0HdUIPfrCIyLnDtBgfbtz5erX5P7k4CCYGyhHYfCyiA-Lw1MCoKt3ovKJ4koM8xKlOtBuKoxaJ1QLAWvdmnH_BgtCsjWvTzn7EZ0jKHhKDqhM_3MwhV2Uhf.7b_ipx2o9CNuIaccYlXxx6Y_gLpQ8gvp8g6ClrWosdnmx5_sS81j_q8Z1lT5o8sSEW9tqvZvqhZvet5M33IqhZve88yGWj4tTrz1jE_OeZz13x5ksSEzselt5M33xgdseO9sSX1jE_sSLI9tqSZxvmI-hZ133I-hZxg9tqvZu8sSLu9tqvZxl3xg4mx5I9LOj9qUn5M8se59sSEVlLpAn5M33xUl3IOM9tS1jlS8ZdtTSZ1tT5VqTrO1sSxu9qxgjlSrxj4e_rOl3xgx9tqhZvSXZvOQj4e_5VSyZvqrZ1lT5V_sSvE59tSMj_ttrOF9tqvZxu9vxQoBmsSxW9qEo9LSXZ1en5ol3xgksSxH9vXXZxbsSXejE_se5-demyn5M33xUl3IOM9tS1jlS8ZdtXEweAn5M8sePvZven5M8seOgjlOQoeQhn5M33ISOjlSXZ1Lmxgv3xUYqX7Wv3x5ksSEo9vIMyeVmOeZzyFWuvI-OQswojPakvXPhO_R.U1Yk0ZDqEoJtvtg7sO_0mywkXHvS8o1UkTgjSsK9uZ7Y5Hc0XMK85HfsnaY3rjnVnHnkP6Kspynqn0KY5UllEPE7kT5e0A-V5Hczn6KM5gI-TZnk0ZNG5fKspyfqnW00mv-b5HTL0AdY5HDsnH-xnH0kPdtznjmzg1csnWIxn1msnfKopHYs0ZFY5HTzrfK-pyfqnHDsn1Ddg1DznWDdP-tknWn1nW7xnH0Yrj6dg1Dzn1c4nNtknWc3PHFxnHc1njbYg1DznjDvPdtknWnsnH9xnHD3rj64g1Dkrj6vn-tknH63PjNxnHD3rjnzg1Dkrj6sPNtknW0dPj-xnH0Ln1DL0AFG5HcsP-tYnjFxnW0snj7xnW0sPWn0UynqP1fdPHmdrHnsg1TYPHRLrHc1nNtznWTkn1nkPNtznWcYrjRkg100TgKGujYs0Z7Wpyfqn0KzuLw9u1Ys0A7B5HKxn0K-ThTqn0KsTjYs0A4vTjYsQW0snj0snj0s0AdYTjYs0AwbUL0qn0KzpWYs0Aw-IWdLpgP-0AuY5Hc0TA6qn0KET1Yk0AFL5HR0UMfqnfK1XWYkn1csg1csnjD0IZN15Hf4rHf4n1f4PjTLrjT1njm1rj60ThNkIjYkPHcvP1n4nWbsnHcv0ZPGujYzmHfsPj7-nWRYm1R3ujT10AP1UHdKwWD3wjFKnRmswDnkPWm30A7W5HD0TA3qn0KkUgfqn0KkUgnqn0KlIjYs0AdWgvuzUvYqn7tsg1Kxn7ts0Aw9UMNBuNqsUA78pyw15HKxn7tsg1Kxn0Ksmgwxuhk9u1Ys0AwWpyfqn0K-IA-b5HT0mgPsmvnqn0KdTA-8mvnqn0KkUymqnHm0uhPdIjYs0AulpjYs0Au9IjYs0ZGsUZN15H00mywhUA7M5HD0UAuW5H00IvuzUvYqrjfYm6K3TLwd5HczrjT1rHfL0APzm1YvPHcsn0%26qid%3D2a4041e254c58d73%26rank%3D1%26shh%3Dm.baidu.com%26word%3D%25E7%25AB%259E%25E4%25BB%25B7%25E6%258E%2592%25E5%2590%258D%26sourceid%3D160%26placeid%3D1%26ck%3D5304.67.289.177.375.212.0.0.9.289.177%26xst%3DmWdaP1f1fHnsnjn3PW7afHcsPjT1PHuAnDDYnRwAwj0dw6715HnsPjfdnjRLrj6YPjnknjcdP1-xnWczg10KI1vS8o1UkTgjSs7k5UllEPE7kT5e0gRqnWc3P1n4PjTKnWbvrHcYPHnsPf%26sht%3D844b%26us%3D0.0.0.0.0.0.0.103&v=1.2.30&lv=1&ct=!!&tt=%E4%BA%92%E8%81%94%E7%BD%91%E8%A7%86%E8%A7%89%E8%90%A5%E9%94%80%E6%8E%A8%E5%B9%BF%E8%AF%BE%E7%A8%8B-%E5%A4%A9%E7%90%A5%E8%AE%BE%E8%AE%A1%E5%AD%A6%E6%A0%A1_%E5%A4%A9%E7%90%A5%E8%AE%BE%E8%AE%A1%E4%B8%AD%E5%BF%83_%E8%AE%BE%E8%AE%A1%E5%AE%98%E7%BD%91-%E8%AE%BE%E8%AE%A1%E5%9F%B9%E8%AE%AD%E4%B8%93%E5%AE%B6&sn=35937

https://hm.baidu.com/hm.gif?cc=0&ck=1&cl=32-bit&ds=375x667&vl=559&ep=%7B%22netAll%22%3A11%2C%22netDns%22%3A0%2C%22netTcp%22%3A7%2C%22srv%22%3A406%2C%22dom%22%3A969%2C%22loadEvent%22%3A1572%7D&et=87&ja=0&ln=zh-cn&lo=0&rnd=2011483834&si=5257fbd0ed83ff9e6ed95d71759bd50d&su=https%3A%2F%2Fm.baidu.com%2Fbaidu.php%3Fsc.a000000pGFTBfqUxh13S-ekmurK0oiAsUJzDRuoKxTJndGoPX1tkpc0Gjee0HdUIPfrCIyLnDtBgfbtz5erX5P7k4CCYGyhHYfCyiA-Lw1MCoKt3ovKJ4koM8xKlOtBuKoxaJ1QLAWvdmnH_BgtCsjWvTzn7EZ0jKHhKDqhM_3MwhV2Uhf.7b_ipx2o9CNuIaccYlXxx6Y_gLpQ8gvp8g6ClrWosdnmx5_sS81j_q8Z1lT5o8sSEW9tqvZvqhZvet5M33IqhZve88yGWj4tTrz1jE_OeZz13x5ksSEzselt5M33xgdseO9sSX1jE_sSLI9tqSZxvmI-hZ133I-hZxg9tqvZu8sSLu9tqvZxl3xg4mx5I9LOj9qUn5M8se59sSEVlLpAn5M33xUl3IOM9tS1jlS8ZdtTSZ1tT5VqTrO1sSxu9qxgjlSrxj4e_rOl3xgx9tqhZvSXZvOQj4e_5VSyZvqrZ1lT5V_sSvE59tSMj_ttrOF9tqvZxu9vxQoBmsSxW9qEo9LSXZ1en5ol3xgksSxH9vXXZxbsSXejE_se5-demyn5M33xUl3IOM9tS1jlS8ZdtXEweAn5M8sePvZven5M8seOgjlOQoeQhn5M33ISOjlSXZ1Lmxgv3xUYqX7Wv3x5ksSEo9vIMyeVmOeZzyFWuvI-OQswojPakvXPhO_R.U1Yk0ZDqEoJtvtg7sO_0mywkXHvS8o1UkTgjSsK9uZ7Y5Hc0XMK85HfsnaY3rjnVnHnkP6Kspynqn0KY5UllEPE7kT5e0A-V5Hczn6KM5gI-TZnk0ZNG5fKspyfqnW00mv-b5HTL0AdY5HDsnH-xnH0kPdtznjmzg1csnWIxn1msnfKopHYs0ZFY5HTzrfK-pyfqnHDsn1Ddg1DznWDdP-tknWn1nW7xnH0Yrj6dg1Dzn1c4nNtknWc3PHFxnHc1njbYg1DznjDvPdtknWnsnH9xnHD3rj64g1Dkrj6vn-tknH63PjNxnHD3rjnzg1Dkrj6sPNtknW0dPj-xnH0Ln1DL0AFG5HcsP-tYnjFxnW0snj7xnW0sPWn0UynqP1fdPHmdrHnsg1TYPHRLrHc1nNtznWTkn1nkPNtznWcYrjRkg100TgKGujYs0Z7Wpyfqn0KzuLw9u1Ys0A7B5HKxn0K-ThTqn0KsTjYs0A4vTjYsQW0snj0snj0s0AdYTjYs0AwbUL0qn0KzpWYs0Aw-IWdLpgP-0AuY5Hc0TA6qn0KET1Yk0AFL5HR0UMfqnfK1XWYkn1csg1csnjD0IZN15Hf4rHf4n1f4PjTLrjT1njm1rj60ThNkIjYkPHcvP1n4nWbsnHcv0ZPGujYzmHfsPj7-nWRYm1R3ujT10AP1UHdKwWD3wjFKnRmswDnkPWm30A7W5HD0TA3qn0KkUgfqn0KkUgnqn0KlIjYs0AdWgvuzUvYqn7tsg1Kxn7ts0Aw9UMNBuNqsUA78pyw15HKxn7tsg1Kxn0Ksmgwxuhk9u1Ys0AwWpyfqn0K-IA-b5HT0mgPsmvnqn0KdTA-8mvnqn0KkUymqnHm0uhPdIjYs0AulpjYs0Au9IjYs0ZGsUZN15H00mywhUA7M5HD0UAuW5H00IvuzUvYqrjfYm6K3TLwd5HczrjT1rHfL0APzm1YvPHcsn0%26qid%3D2a4041e254c58d73%26rank%3D1%26shh%3Dm.baidu.com%26word%3D%25E7%25AB%259E%25E4%25BB%25B7%25E6%258E%2592%25E5%2590%258D%26sourceid%3D160%26placeid%3D1%26ck%3D5304.67.289.177.375.212.0.0.9.289.177%26xst%3DmWdaP1f1fHnsnjn3PW7afHcsPjT1PHuAnDDYnRwAwj0dw6715HnsPjfdnjRLrj6YPjnknjcdP1-xnWczg10KI1vS8o1UkTgjSs7k5UllEPE7kT5e0gRqnWc3P1n4PjTKnWbvrHcYPHnsPf%26sht%3D844b%26us%3D0.0.0.0.0.0.0.103&v=1.2.30&lv=1

以上数据 cookie 有个 BDORZ 不知道是什么值,每次值都一样。其他数据每次都不一样 屏幕信息 32-bit,375x667...这个也只能判断是 iPhone6...也不能判断是同一个手机吧. 以上抓包的数据其他的我就看不懂了.....

6729 次点击
所在节点    程序员
47 条回复
soho176
2018-05-19 22:49:04 +08:00
你的手机只要没换就不行,应该是有啥办法记录了硬件信息了
CFO
2018-05-19 22:50:04 +08:00
http get 请求最长多少来着?这个怎么这么长
tukela
2018-05-19 23:03:22 +08:00
ip 为啥不换一下?
FuckP
2018-05-19 23:07:44 +08:00
@soho176 已经更换了手机的序列号,设备名称 IDFA IDFV UUID mac wifi 名称 内网 IP Token...连 Apple 的 iCloud 账号都提示要重新输入密码了,一个网页还能获取什么更多的信息呢。。。。
FuckP
2018-05-19 23:08:42 +08:00
@tukela ip 用 VPN 全国地区换也是了,手机卡也试了...
alvinbone88
2018-05-19 23:13:38 +08:00
还有一个屏幕尺寸一直没改过吧
FuckP
2018-05-19 23:14:04 +08:00
随机更换 iPhone ios 的浏览器 ua,全是真实的 ua 信息,抓包看了 ua 是成功更换了的。
FuckP
2018-05-19 23:17:58 +08:00
@alvinbone88 对,屏幕分辨率没改。就算他判定都是 iPhone6,6s,7,也不能确定是同一个手机吧。应该还有什么信息?
qsnow6
2018-05-19 23:44:02 +08:00
我记得有某种特殊的借口 可以拿到 mac 地址
azh7138m
2018-05-20 00:15:40 +08:00
@CFO 2k 个字符就很安全了,兼容到 IE6
alvinbone88
2018-05-20 00:18:06 +08:00
想了一下,建议到这个网址检查一下测试用的浏览器是否容易被识别
https://panopticlick.eff.org/
likai
2018-05-20 00:34:37 +08:00
这是要搞啥?既然是防御系统,自然有黑科技,这么容易被破,就会有人开发 emu 软件自动点击百度广告赚钱了。
EarthChild
2018-05-20 06:27:03 +08:00
127.0.0.1 hm.baidu.com 已加入 hosts 豪华套餐展出地位
hanbing135
2018-05-20 07:47:08 +08:00
同疑问到底怎么百度意识到是重复点击的 难道是靠 mac 么
Showfom
2018-05-20 08:06:07 +08:00
IP 换了没啊
FuckP
2018-05-20 08:18:41 +08:00
WiFimac 是已经改了的,还有一个就是百度的 WiFi 三角定位~
prasanta
2018-05-20 09:34:45 +08:00
@EarthChild 还有类似的的么,各大统计平台集合版
bestkayle
2018-05-20 09:46:41 +08:00
你说的这些是每个人都知道的,如果靠这些应该算不上防御系统
realpg
2018-05-20 10:18:49 +08:00
@EarthChild #13
建议使用 255.255.255.255 或者 255.255.255.254 或者 0.0.0.0
EarthChild
2018-05-20 10:25:39 +08:00
@prasanta #17 https://github.com/vokins/yhosts 这里…自己看着加吧。没有整理

这是一个专为移动设备优化的页面(即为了让你能够在 Google 搜索结果里秒开这个页面),如果你希望参与 V2EX 社区的讨论,你可以继续到 V2EX 上打开本讨论主题的完整版本。

https://www.v2ex.com/t/456204

V2EX 是创意工作者们的社区,是一个分享自己正在做的有趣事物、交流想法,可以遇见新朋友甚至新机会的地方。

V2EX is a community of developers, designers and creative people.

© 2021 V2EX