Trang chủ Khám phá Trợ giúp
Đăng ký Đăng nhập
par7133
/
GrandePuffo
1
0
Fork 0
Các tập tin Các vấn đề 0 Yêu cầu kéo về 0 Wiki
Branch: main
Branches Tags
GrandePuffo
/
index.html

index.html 8.2 KB
Permalink Lịch sử Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342 
  1. <!DOCTYPE html>
    2. 

  2. <html lang="en-US">
    3. 

  3. <head>
    4. 

  4. 	
    5. 

  5.     <meta charset="UTF-8"/>
    6. 

  6.   
    7. 

  7.     <meta name="viewport" content="width=device-width, user-scalable=no, initial-scale=1.0, minimum-scale=1.0, maximum-scale=1.0">
    8. 

  8. 

  9.     <TITLE>Grande Puffo</TITLE>
    10. 

  10. 	  
    11. 

  11.     <meta http-equiv="Content-Type" content="text/html; charset=windows-1252">
    12. 

  12.     <meta name="description" content="web security demo from the server round trip to the user client">
    13. 

  13. 

  14.     <link rel="shortcut icon" href="./favicon.ico">
    15. 

  15. 	  
    16. 

  16.     <style>
    17. 

  17.       html {
    18. 

  18.         height:100%;
    19. 

  19.       }
    20. 

  20.       body {
    21. 

  21.         margin: 0px; 
    22. 

  22.         padding: 25px;
    23. 

  23.         background: #000000;
    24. 

  24.         color: #FFFFFF;
    25. 

  25.         font-size: 14px;
    26. 

  26.       }
    27. 

  27.       a {
    28. 

  28.         color: green;
    29. 

  29.         text-decoration: underline;
    30. 

  30.       }
    31. 

  31.       a:focus {
    32. 

  32.         color: green;
    33. 

  33.       }
    34. 

  34.       a:hover {
    35. 

  35.         color: green;
    36. 

  36.       }
    37. 

  37.       .aaa {
    38. 

  38.         color: green;
    39. 

  39.         text-decoration: underline;
    40. 

  40.       }
    41. 

  41.       .aaa:focus {
    42. 

  42.         color: green;
    43. 

  43.       }
    44. 

  44.       .aaa:hover {
    45. 

  45.         color: green;
    46. 

  46.       }
    47. 

  47.       #footerCont {
    48. 

  48.         position: relative;
    49. 

  49.         top: +34.5px;
    50. 

  50.         left:-15px;
    51. 

  51.         width: 111%; 
    52. 

  52.         height:50px;  
    53. 

  53.         border: 1px solid #C2DBF2; 
    54. 

  54.         padding: 7px; 
    55. 

  55.         opacity: 0.6;
    56. 

  56.         background: #b2dba1;
    57. 

  57.         color:#000000; 
    58. 

  58.         font-family: Sans;
    59. 

  59.         font-size: 12px; 
    60. 

  60.         text-align: center; 
    61. 

  61.         z-index: 99998;
    62. 

  62.         display:none;
    63. 

  63.       }
    64. 

  64.       #footer {
    65. 

  65.         position: relative;
    66. 

  66.         top: 15px;
    67. 

  67.         left: -20px;
    68. 

  68.         float: right;
    69. 

  69.         width: fit-content; 
    70. 

  70.         height: 24px;
    71. 

  71.         border: 0px solid #C2DBF2; 
    72. 

  72.         padding: 2px; 
    73. 

  73.         opacity: 0.7;
    74. 

  74.         color: #FFFFFFF;
    75. 

  75.         font-family: Sans;
    76. 

  76.         font-size: 12px; 
    77. 

  77.         font-weight: 400;
    78. 

  78.         text-align: right; 
    79. 

  79.         z-index: 99999;
    80. 

  80.         vertical-align:middle;
    81. 

  81.       }
    82. 

  82.       H1 {
    83. 

  83.         font-size:17px;
    84. 

  84.       }  
    85. 

  85.     </style>
    86. 

  86. 

  87. </head>
    88. 

  88. <body>
    89. 

  89. <h1>Welcome to Grande Puffo !</h1>
    90. 

  90. <br>
    91. 

  91. Grande Puffo wants to demo the given possibility to defend web resources from 
    92. 

  92. the server round trip until the user client side, with an eventual sha256 client check, 
    93. 

  93. with a suggestable one more defence given by a same element instance counter.<br>
    94. 

  94. <br>
    95. 

  95. You can grab the lab code from <a href="https://github.com/par7133/GrandePuffo">https://github.com/par7133/GrandePuffo</a>.
    96. 

  96. <br><br>
    97. 

  97. Here follows a brief documentation about the ideas behind it. 
    98. 

  98. <br>
    99. 

  99. <br>
    100. 

  100. <pre>
    101. 

  101. [init.inc]
    102. 

  102. 

  103. require("config.inc");
    104. 

  104. 

  105. [config.inc]
    106. 

  106. 

  107.   'RES_ROUTER_PREFIX' => [
    108. 

  108.      0 => [1000000, 1199999],
    109. 

  109.      1 => [1200000, 1399999],
    110. 

  110.      2 => [1400000, 1599999],
    111. 

  111.      3 => ...
    112. 

  112.    ];
    113. 

  113. 

  114.   'RES_ROUTER' => [ 
    115. 

  115.      0 => "idxpage1img.php",
    116. 

  116.      1 => "idxpage1html.php",
    117. 

  117.      2 => "idxpage1js.php",
    118. 

  118.      3 => "..."
    119. 

  119.    ];
    120. 

  120. 

  121.   'RES_PASSWORD' => [
    122. 

  122.      0 => "res_password1",
    123. 

  123.      1 => "res_password2",
    124. 

  124.      2 => "res_password3",
    125. 

  125.      3 => "res_password4",
    126. 

  126.      4 => "res_password5",
    127. 

  127.      5 => "..."
    128. 

  128.   ];
    129. 

  129. 

  130.   'RES_SALT' => [
    131. 

  131.      0 => "res_salt1",
    132. 

  132.      1 => "res_salt2",
    133. 

  133.      2 => "res_salt3",
    134. 

  134.      3 => "res_salt4",
    135. 

  135.      4 => "res_salt5",
    136. 

  136.      5 => "..."
    137. 

  137.   ];
    138. 

  138. 

  139.   'RES_TYPE' => [
    140. 

  140.      0 => "image",
    141. 

  141.      1 => "image",
    142. 

  142.      2 => "image",
    143. 

  143.      3 => "script",
    144. 

  144.      4 => "image",
    145. 

  145.      5 => "..."
    146. 

  146.   ];
    147. 

  147. 

  148.   'RES' => [
    149. 

  149.      0 => "/res/topbanner1.png",
    150. 

  150.      1 => "/res/logo.png",
    151. 

  151.      2 => "/res/sidebanner3.png",
    152. 

  152.      3 => "/res/scriplet1.js",
    153. 

  153.      4 => "/res/pix5.png"
    154. 

  154.   ],
    155. 

  155. 

  156.   'RES_DISPLAIED_SHA' => [
    157. 

  157.      0 => "bdb4538753314562a8eb520e446d568cbdb4538753314562a8eb520e446d568c",
    158. 

  158.      1 => "ba78c55eae177c8e6749fa6aded78757ccfb10c85121cb4fbbb76b9ce3ef4db2",
    159. 

  159.      2 => "6a3c96e2c94f49f3a59b672768716e866a3c96e2c94f49f3a59b672768716e86",
    160. 

  160.      3 => "c91de3449c1c46eaa8dd2eef025a2eb2c91de3449c1c46eaa8dd2eef025a2eb2",
    161. 

  161.      4 => "82f3c59ab4db488f867cd0db9b143cbd82f3c59ab4db488f867cd0db9b143cbd",
    162. 

  162.      5 => "..."
    163. 

  163.   ];
    164. 

  164. 

  165.   'RES_SHA' => [
    166. 

  166.      0 => "67d67dc36f87471194e7cf94d30a571367d67dc36f87471194e7cf94d30a5713",
    167. 

  167.      1 => "ba78c55eae177c8e6749fa6aded78757ccfb10c85121cb4fbbb76b9ce3ef4db2",
    168. 

  168.      2 => "b27d6e61f49746fb9df0c1102900a029b27d6e61f49746fb9df0c1102900a029",
    169. 

  169.      3 => "7db5663f808a4acf94c82ac314f84bf87db5663f808a4acf94c82ac314f84bf8",
    170. 

  170.      4 => "ada5fcd9a2a343e2af3b555d7dae6fabada5fcd9a2a343e2af3b555d7dae6fab",
    171. 

  171.      5 => "..."
    172. 

  172.   ];
    173. 

  173. 

  174.   'WEBPAGE_ELEMENT' => [
    175. 

  175.      0 => "funnyctrl1",
    176. 

  176.      1 => "funnyctrl2",
    177. 

  177.      2 => "funnyctrl3",
    178. 

  178.      3 => "funnyctrl4",
    179. 

  179.      4 => "funnyctrl5",
    180. 

  180.      5 => "..."
    181. 

  181.  ];
    182. 

  182. 

  183. 

  184. [page.php]
    185. 

  185. 

  186. $myPrefix = mt_rand(1000000, 1199999);
    187. 

  187. $myImageSha = "ba78c55eae177c8e6749fa6aded78757ccfb10c85121cb4fbbb76b9ce3ef4db2";
    188. 

  188. 

  189. &lt;html&gt;
    190. 

  190. &lt;head&gt;
    191. 

  191. &lt;link src="style1.css" type="text/css" rel="stylesheet"&gt;
    192. 

  192. &lt;/head&gt;
    193. 

  193. &lt;body&gt;
    194. 

  194. &lt;img src='/&lt;?PHP echo($myPrefix.$myImageSha);?&gt;'&gt;
    195. 

  195. &lt;img src='/&lt;?PHP echo($myPrefix.$myImageSha);?&gt;'&gt;
    196. 

  196. &lt;img src='/&lt;?PHP echo($myPrefix.$myImageSha);?&gt;'&gt;
    197. 

  197. &lt;img src='/&lt;?PHP echo($myPrefix.$myImageSha);?&gt;'&gt;
    198. 

  198. &lt;img src='/&lt;?PHP echo($myPrefix.$myImageSha);?&gt;'&gt;
    199. 

  199. &lt;/body&gt;
    200. 

  200. &lt;/html&gt;
    201. 

  201. 

  202. 

  203. [mainrouter, /mrouter.php]
    204. 

  204. 

  205. require("init.inc");
    206. 

  206. 

  207. $url=filter_input(INPUT_GET, "url")??"";
    208. 

  208. 

  209. $myRndPrefix = substr($url, 0, 6);
    210. 

  210. 

  211. $myResRouter = getResRouter($myRndPrefix):
    212. 

  212. 

  213. function getResRouter(string $myPrefix):  string
    214. 

  214. {
    215. 

  215.     global $ROUTING;
    216. 

  216.  
    217. 

  217.     $i=0;
    218. 

  218.     foreach($ROUTING['RES_ROUTER_PREFIX'] as $prefix) {
    219. 

  219.       if ($prefix[0]>=$myPrefix && $myPrefix<=$prefix[1]) {
    220. 

  220.         return $ROUTING['RES_ROUTER'][$i];
    221. 

  221.       }
    222. 

  222.       $i++;
    223. 

  223.     }
    224. 

  224. }
    225. 

  225. 

  226. require("/$myResRouter?url=" . substr($url,7));
    227. 

  227. 

  228. 

  229. [resrouter, /idxpage1img.php]
    230. 

  230. 

  231. $url=filter_input(INPUT_GET, "url")??"";
    232. 

  232. $myDisplaiedSha = substr($url,7);
    233. 

  233. $myres=getRes($myDisplaiedSha):
    234. 

  234. 

  235. function getRes(string $displaiedSha): int
    236. 

  236. {
    237. 

  237.     global $ROUTING;
    238. 

  238. 

  239.     $tot = count($ROUTING['RES_PASSWORD'])-1;
    240. 

  240.     $i=0;
    241. 

  241.     while ($i<=$tot) {
    242. 

  242.       if (hash("sha256", $ROUTING['RES_PASSWORD'][i].$ROUTING['RES_SALT'][i]) === $displaiedSha);
    243. 

  243.         return $i; 
    244. 

  244.       }
    245. 

  245.       $i++;
    246. 

  246.     } 
    247. 

  247. }
    248. 

  248. 

  249. $mySha = $ROUTING['RES_SHA'][$myres];
    250. 

  250. 

  251. [[ $myShaCounter = Cookie::get($mySha, 0); ]]
    252. 

  252. 

  253. $myPageElementID = $ROUTING['WEBPAGE_ELEMENT'][$myres]; // Replace $myres with $myShaCounter to get an element instance based algothytm
    254. 

  254. $myResType = $ROUTING['RES_TYPE'][$myres]; // Replace $myres with $myShaCounter to get an element instance based algothytm
    255. 

  255. 

  256. if ($myResType==="image") {
    257. 

  257.   $myTmpResRoot = APP_PATH . DIRECTORY_SEPARATOR . "tmpres";
    258. 

  258. } else {  
    259. 

  259.   $myTmpResRoot = APP_PATH . DIRECTORY_SEPARATOR . "tmpjs";
    260. 

  260. }
    261. 

  261. 

  262. $myTmpResPath = getNewTmpFileName($myTmpResRoot):
    263. 

  263. 

  264. function getNewTmpFileName(string $tempResRoot): string
    265. 

  265. {
    266. 

  266.     chdir($tempResRoot);
    267. 

  267.     $tmpFileName = "tmp". mt_rand(1000000000, 9999999999) . ".$ext";
    268. 

  268.     while (isReadable($tmpFileName)) {
    269. 

  269.       $tmpFileName = "tmp". mt_rand(1000000000, 9999999999) . ".$ext";
    270. 

  270.     }
    271. 

  271.     return $tempResRoot . DIRECTORY_SEPARATOR . $tmpFileName;
    272. 

  272. }
    273. 

  273. 

  274. 

  275. 

  276. [...]
    277. 

  277. 

  278. 

  279. //clientxmlreq;
    280. 

  280. //doclientshacheck();
    281. 

  281. 

  282. genTmpRes($myRes, $myTmpResPath):
    283. 

  283. 

  284. function genTmpRes(string $myRes, string $myTmpResPath): string
    285. 

  285. {
    286. 

  286.   if (is_readable($myRes)) {
    287. 

  287.     cp($myRes,$myTmpResPath);
    288. 

  288.     chmod($myTmpResPath, 0755);  
    289. 

  289.   }
    290. 

  290. }
    291. 

  291. 

  292. 

  293. parent.document.getElementByID(&lt;?PHP echo($myPageElementID); ?&gt;).innerHTML = "&lt;img src='&lt;?PHP echo($myTmpResPath);?&gt;'&gt;";
    294. 

  294. 

  295. or
    296. 

  296. 

  297. header("Content-Type: image/png");
    298. 

  298. echo(file_get_contents($myTmpResPath));
    299. 

  299. 

  300. 

  301. [[
    302. 

  302. 

  303. Finally for an element instance based algothytm:
    304. 

  304. 

  305. setCookieCounter():
    306. 

  306. 

  307. // Increment element instance counter..
    308. 

  308. function setCookieCounter() {
    309. 

  309. 

  310.     // set iteraction counter..    
    311. 

  311. 

  312.    global $ROUTING;
    313. 

  313.    global $myShaCounter;
    314. 

  314.    global $mySha;
    315. 

  315. 

  316.    while(true) {
    317. 

  317.       $myShaCounter++;    
    318. 

  318. 

  319.       if (!defined("ROUTING_RES".$myShaCounter)) {
    320. 

  320.          Cookie::set($mySha, 0, Cookie::EXPIRE_ONEDAY, "/", APP_HOST);  
    321. 

  321.          break;
    322. 

  322.       }  
    323. 

  323.                                                          
    324. 

  324.       if ($ROUTING['RES_TYPE'][$myShaCounter]==="image") {
    325. 

  325.           Cookie::set($mySha, $myShaCounter, Cookie::EXPIRE_ONEDAY, "/", APP_HOST);
    326. 

  326.           break;
    327. 

  327.       }
    328. 

  328.   }
    329. 

  329. }
    330. 

  330. 

  331. ]]
    332. 

  332. 

  333. 	    
    334. 

  334. Feedback: <a href="mailto:code@gaox.io">code@gaox.io</a>
    335. 

  335. 	    
    336. 

  336. </pre>
    337. 

  337. 

  338. <div id="footerCont">&nbsp;</div>
    339. 

  339. <div id="footer">&nbsp;&nbsp;<a href="http://5mode.com/dd.html" class="aaa">Disclaimer</a>.&nbsp;&nbsp;A <a href="http://5mode.com" class="aaa">5 Mode</a> project and <a href="http://demo.5mode.com" class="aaa">WYSIWYG</a> system. CC</div>
    340. 

  340. 

  341. <body>
    342. 

  342. <html>
    343.