From 8bf632da2f976a2eaf1088e04193ee296dd19a71 Mon Sep 17 00:00:00 2001 From: CHERWIN Date: Sun, 14 Apr 2024 18:01:53 +0800 Subject: [PATCH] =?UTF-8?q?=E6=96=B0=E5=A2=9E=E8=9C=9C=E9=9B=AA=E5=86=B0?= =?UTF-8?q?=E5=9F=8E=E5=B0=8F=E7=A8=8B=E5=BA=8F?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- MXBC.py | 327 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 327 insertions(+) create mode 100644 MXBC.py diff --git a/MXBC.py b/MXBC.py new file mode 100644 index 0000000..175c4b9 --- /dev/null +++ b/MXBC.py @@ -0,0 +1,327 @@ +# !/usr/bin/python3 +# -- coding: utf-8 -- +# ------------------------------- +# @Author CHERWIN✨✨✨ +# ------------------------------- +# cron "30 9 * * *" script-path=xxx.py,tag=匹配cron用 +# const $ = new Env('蜜雪冰城小程序') +import json +import base64 +import os +import time + +import requests +from urllib.parse import quote_plus +from Crypto.PublicKey import RSA +from Crypto.Signature import PKCS1_v1_5 +from Crypto.Hash import SHA256 + +from requests.packages.urllib3.exceptions import InsecureRequestWarning + +# 禁用安全请求警告 +requests.packages.urllib3.disable_warnings(InsecureRequestWarning) +if os.path.isfile('DEV_ENV.py'): + import DEV_ENV +if os.path.isfile('notify.py'): + from notify import send + print("加载通知服务成功!") +else: + print("加载通知服务失败!") +send_msg = '' +one_msg='' +def Log(cont=''): + global send_msg,one_msg + print(cont) + if cont: + one_msg += f'{cont}\n' + send_msg += f'{cont}\n' + +class RUN: + def __init__(self,info,index): + global one_msg + one_msg = '' + split_info = info.split('@') + token = split_info[0] + len_split_info = len(split_info) + last_info = split_info[len_split_info - 1] + self.send_UID = None + if len_split_info > 0 and "UID_" in last_info: + print('检测到设置了UID') + print(last_info) + self.send_UID = last_info + self.index = index + 1 + self.s = requests.session() + self.s.verify = False + self.unionid = token + self.headers = { + 'Host': 'mxsa.mxbc.net', + 'Content-Type': 'application/json', + 'xweb_xhr': '1', + 'User-Agent': 'Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36 MicroMessenger/7.0.20.1781(0x6700143B) NetType/WIFI MiniProgramEnv/Windows WindowsWechat/WMPF WindowsWechat(0x6309080f) XWEB/9105', + 'version': '2.2.5', + 'Accept': '*/*', + 'Sec-Fetch-Site': 'cross-site', + 'Sec-Fetch-Mode': 'cors', + 'Sec-Fetch-Dest': 'empty', + 'Referer': 'https://servicewechat.com/wx7696c66d2245d107/105/page-frame.html', + 'Accept-Language': 'zh-CN,zh;q=0.9'} + self.accessToken ='' + self.base_url = 'https://mxsa.mxbc.net' + + + def getSign(self,params): + privateKeyString = '''-----BEGIN PRIVATE KEY----- + MIIEvwIBADANBgkqhkiG9w0BAQEFAASCBKkwggSlAgEAAoIBAQCtypUdHZJKlQ9L + L6lIJSphnhqjke7HclgWuWDRWvzov30du235cCm13mqJ3zziqLCwstdQkuXo9sOP + Ih94t6nzBHTuqYA1whrUnQrKfv9X4/h3QVkzwT+xWflE+KubJZoe+daLKkDeZjVW + nUku8ov0E5vwADACfntEhAwiSZUALX9UgNDTPbj5ESeII+VztZ/KOFsRHMTfDb1G + IR/dAc1mL5uYbh0h2Fa/fxRPgf7eJOeWGiygesl3CWj0Ue13qwX9PcG7klJXfToI + 576MY+A7027a0aZ49QhKnysMGhTdtFCksYG0lwPz3bIR16NvlxNLKanc2h+ILTFQ + bMW/Y3DRAgMBAAECggEBAJGTfX6rE6zX2bzASsu9HhgxKN1VU6/L70/xrtEPp4SL + SpHKO9/S/Y1zpsigr86pQYBx/nxm4KFZewx9p+El7/06AX0djOD7HCB2/+AJq3iC + 5NF4cvEwclrsJCqLJqxKPiSuYPGnzji9YvaPwArMb0Ff36KVdaHRMw58kfFys5Y2 + HvDqh4x+sgMUS7kSEQT4YDzCDPlAoEFgF9rlXnh0UVS6pZtvq3cR7pR4A9hvDgX9 + wU6zn1dGdy4MEXIpckuZkhwbqDLmfoHHeJc5RIjRP7WIRh2CodjetgPFE+SV7Sdj + ECmvYJbet4YLg+Qil0OKR9s9S1BbObgcbC9WxUcrTgECgYEA/Yj8BDfxcsPK5ebE + 9N2teBFUJuDcHEuM1xp4/tFisoFH90JZJMkVbO19rddAMmdYLTGivWTyPVsM1+9s + tq/NwsFJWHRUiMK7dttGiXuZry+xvq/SAZoitgI8tXdDXMw7368vatr0g6m7ucBK + jZWxSHjK9/KVquVr7BoXFm+YxaECgYEAr3sgVNbr5ovx17YriTqe1FLTLMD5gPrz + ugJj7nypDYY59hLlkrA/TtWbfzE+vfrN3oRIz5OMi9iFk3KXFVJMjGg+M5eO9Y8m + 14e791/q1jUuuUH4mc6HttNRNh7TdLg/OGKivE+56LEyFPir45zw/dqwQM3jiwIz + yPz/+bzmfTECgYATxrOhwJtc0FjrReznDMOTMgbWYYPJ0TrTLIVzmvGP6vWqG8rI + S8cYEA5VmQyw4c7G97AyBcW/c3K1BT/9oAj0wA7wj2JoqIfm5YPDBZkfSSEcNqqy + 5Ur/13zUytC+VE/3SrrwItQf0QWLn6wxDxQdCw8J+CokgnDAoehbH6lTAQKBgQCE + 67T/zpR9279i8CBmIDszBVHkcoALzQtU+H6NpWvATM4WsRWoWUx7AJ56Z+joqtPK + G1WztkYdn/L+TyxWADLvn/6Nwd2N79MyKyScKtGNVFeCCJCwoJp4R/UaE5uErBNn + OH+gOJvPwHj5HavGC5kYENC1Jb+YCiEDu3CB0S6d4QKBgQDGYGEFMZYWqO6+LrfQ + ZNDBLCI2G4+UFP+8ZEuBKy5NkDVqXQhHRbqr9S/OkFu+kEjHLuYSpQsclh6XSDks + 5x/hQJNQszLPJoxvGECvz5TN2lJhuyCupS50aGKGqTxKYtiPHpWa8jZyjmanMKnE + dOGyw/X4SFyodv8AEloqd81yGg== + -----END PRIVATE KEY-----''' + sorted_params = sorted(params.items()) + param_str = "&".join( + f"{k}={quote_plus(json.dumps(v)) if isinstance(v, dict) else quote_plus(str(v))}" for k, v in sorted_params) + key = RSA.importKey(privateKeyString) + # 创建一个SHA256哈希对象 + hash_obj = SHA256.new(param_str.encode()) + # 创建一个签名者 + signer = PKCS1_v1_5.new(key) + # 对哈希对象进行签名 + signature = signer.sign(hash_obj) + # 对签名进行Base64编码,并替换"/"和"+"字符 + signature = base64.b64encode(signature).decode() + signature = signature.replace("/", "_").replace("+", "-") + # print(signature) + return signature + + def login(self): + Log(f'开始登陆----->>>') + params = { + 'third': 'wxmini', + 'unionid': 'o0GLKv7aPboGafM_zMVcuuWzu8MY', + 't': int(time.time() * 1000), # 获取当前13位时间戳 + 'appId': 'd82be6bbc1da11eb9dd000163e122ecb' + } + sign = self.getSign(params) + params['sign'] = sign + try: + response = self.s.post(f'{self.base_url}/api/v1/app/loginByUnionid', headers=self.headers, json=params) + + if response.status_code == 200: + res_json = response.json() + code = res_json.get('code', None) + if code == 0: + data = res_json.get('data', {}) + accessToken = data.get('accessToken', '') + + if accessToken: + self.accessToken = accessToken + self.headers['Access-Token'] = accessToken + Log('登陆成功🎉') + return True + else: + Log('登录失败😢,accessToken未找到。') + return False + else: + print('登录请求未成功😢,返回的code不为0') + return False + else: + print('登录请求失败😢,状态码:', response.status_code) + print('响应内容:', response.text) + return False + except Exception as e: + print('登录过程中出错😢,错误信息:', str(e)) + return False + + def get_userInfo(self,END = False): + # Log(f'获取用户信息----->>>') + params = { + 't': int(time.time() * 1000), # 获取当前13位时间戳 + 'appId': 'd82be6bbc1da11eb9dd000163e122ecb' + } + sign = self.getSign(params) + params['sign'] = sign + try: + response = self.s.get(f'{self.base_url}/api/v1/customer/info', headers=self.headers, params=params) + + if response.status_code == 200: + res_json = response.json() + code = res_json.get('code', None) + if code == 0: + data = res_json.get('data', {}) + mobilePhone = data.get('mobilePhone', '') + customerPoint = data.get('customerPoint', '') + isSignin = data.get('isSignin', 0) + if END: + Log(f'[执行后]雪王币:【{customerPoint}】') + return + Log(f'获取用户信息成功🎉\n手机号:【{mobilePhone}】\n[执行前]雪王币:【{customerPoint}】') + if isSignin == 0: + Log('今日未签到') + self.signin() + else: + Log('今日已签到') + + else: + print('获取用户信息请求未成功😢,返回的code不为0') + return False + else: + print('获取用户信息请求失败😢,状态码:', response.status_code) + print('响应内容:', response.text) + return False + except Exception as e: + print('获取用户信息过程中出错😢,错误信息:', str(e)) + return False + + def signin(self): + Log(f'签到----->>>') + params = { + 't': int(time.time() * 1000), # 获取当前13位时间戳 + 'appId': 'd82be6bbc1da11eb9dd000163e122ecb' + } + sign = self.getSign(params) + params['sign'] = sign + try: + response = self.s.get(f'{self.base_url}/api/v1/customer/signin', headers=self.headers, params=params) + + if response.status_code == 200: + res_json = response.json() + code = res_json.get('code', None) + if code == 0: + data = res_json.get('data', {}) + ruleValuePoint = data.get('ruleValuePoint', '') + Log(f'签到成功🎉\n获得:【{ruleValuePoint}】雪王币') + elif code == 5020 : + Log('今日已签到') + else: + print('签到请求未成功😢,返回的code不为0') + return False + else: + print('签到请求失败😢,状态码:', response.status_code) + print('响应内容:', response.text) + return False + except Exception as e: + print('签到过程中出错😢,错误信息:', str(e)) + return False + + + + def main(self): + Log(f"\n开始执行第{self.index}个账号--------------->>>>>") + if self.login(): + self.get_userInfo() + self.get_userInfo(True) + return True + else: + return False + + + def sendMsg(self, help=False): + if self.send_UID: + push_res = CHERWIN_TOOLS.wxpusher(self.send_UID, one_msg, APP_NAME, help) + print(push_res) + + +def down_file(filename, file_url): + print(f'开始下载:{filename},下载地址:{file_url}') + try: + response = requests.get(file_url, verify=False, timeout=10) + response.raise_for_status() + with open(filename + '.tmp', 'wb') as f: + f.write(response.content) + print(f'【{filename}】下载完成!') + + # 检查临时文件是否存在 + temp_filename = filename + '.tmp' + if os.path.exists(temp_filename): + # 删除原有文件 + if os.path.exists(filename): + os.remove(filename) + # 重命名临时文件 + os.rename(temp_filename, filename) + print(f'【{filename}】重命名成功!') + return True + else: + print(f'【{filename}】临时文件不存在!') + return False + except Exception as e: + print(f'【{filename}】下载失败:{str(e)}') + return False + +def import_Tools(): + global CHERWIN_TOOLS,ENV, APP_INFO, TIPS, TIPS_HTML, AuthorCode + import CHERWIN_TOOLS + ENV, APP_INFO, TIPS, TIPS_HTML, AuthorCode = CHERWIN_TOOLS.main(APP_NAME, local_script_name, ENV_NAME,local_version) + +if __name__ == '__main__': + APP_NAME = '蜜雪冰城小程序' + ENV_NAME = 'MXBC' + CK_NAME = 'unionid' + CK_URL = 'https://mxsa.mxbc.net/api/v1/app/loginByUnionid' + print(f''' +✨✨✨ {APP_NAME}签到✨✨✨ +✨ 功能: + 积分签到 +✨ 抓包步骤: + 打开抓包工具 + 打开{APP_NAME} + 授权登陆 + 找{CK_URL}的URl(如果已经授权登陆先退出登陆) + 复制里面的{CK_NAME}参数值 +参数示例:o0GLKv7aPboGaxxxxxxxxx +✨ ✨✨wxpusher一对一推送功能, + ✨需要定义变量export WXPUSHER=wxpusher的app_token,不设置则不启用wxpusher一对一推送 + ✨需要在{ENV_NAME}变量最后添加@wxpusher的UID +✨ 设置青龙变量: +export {ENV_NAME}='{CK_NAME}参数值【不要】前面的Bearer'多账号#或&分割 +export SCRIPT_UPDATE = 'False' 关闭脚本自动更新,默认开启 +✨ ✨ 注意:抓完CK没事儿别打开小程序,重新打开小程序请重新抓包 +✨ 推荐cron:30 9 * * * +✨✨✨ @Author CHERWIN✨✨✨ +''') + local_script_name = os.path.basename(__file__) + local_version = '2024.04.14' + if os.path.isfile('CHERWIN_TOOLS.py'): + import_Tools() + else: + if down_file('CHERWIN_TOOLS.py', 'https://py.cherwin.cn/CHERWIN_TOOLS.py'): + print('脚本依赖下载完成请重新运行脚本') + import_Tools() + else: + print('脚本依赖下载失败,请到https://py.cherwin.cn/CHERWIN_TOOLS.py下载最新版本依赖') + exit() + print(TIPS) + token = '' + token = ENV if ENV else token + if not token: + print(f"未填写{ENV_NAME}变量\n青龙可在环境变量设置 {ENV_NAME} 或者在本脚本文件上方将{CK_NAME}填入token =''") + exit() + tokens = CHERWIN_TOOLS.ENV_SPLIT(token) + # print(tokens) + if len(tokens) > 0: + print(f"\n>>>>>>>>>>共获取到{len(tokens)}个账号<<<<<<<<<<") + access_token = [] + for index, infos in enumerate(tokens): + run_result = RUN(infos, index).main() + if not run_result: continue + if send: send(f'{APP_NAME}挂机通知', send_msg + TIPS_HTML)