phpWiFi万能钥匙查询接口（亲测可用）！

虐死周丽焕

代码：
<form action="" method="post">
3 z0 ]! z& P, i  <p>ssid: <input type="text" name="ssid" /></p>
  <p>bssid: <input type="text" name="bssid" /></p>
  <input type="submit" value="提交" />
</form>

<?php
$bssid = $_POST["bssid"] ;
$ssid = $_POST["ssid"] ;
if (isset( $bssid ) && isset( $ssid )){
//update salt
8 w8 s; D* Y3 y' ]# j$ w   $ret = request( $bssid , $ssid , md5(rand(1, 10000)));
+ [7 r% j% p& O& H1 V   $ret = json_decode( $ret );
   $ret = request( $bssid , $ssid , $ret ->retSn);
3 i, K! y. K8 _3 A4 ^4 N; I) E   $ret = json_decode( $ret );
' E  l  X* M1 K3 G% M: u4 o% Q   if ( $ret ->retCd == 0){
/ [! T) t- v5 y1 ~: u     if ( $ret ->qryapwd->retCd == 0){
9 m% H) }/ ?; A2 q       $list = $ret ->qryapwd->psws;
* _6 n7 h- f0 H8 x3 c       foreach ( $list as $wifi ){
         echo 'SSID: ' . $wifi ->ssid. "<br>" ;
9 l$ U: K. x. {5 T  }         echo 'PWD: ' .decryptStrin( $wifi ->pwd). "<br>" ;
         echo 'BSSID: ' . $wifi ->bssid. "<br>" ;
* U2 E  W: N& y7 a/ B+ g( }         if ( $wifi ->xUser){
           echo 'xUser: ' . $wifi ->xUser. "<br>" ;
           echo 'xPwd: ' . $wifi ->xPwd. "<br>" ;
$ E8 ^8 ?; S1 a& f         }
& D6 Y/ n3 h7 n4 E% T# S       }
* s. V" t4 b6 H     }
; d! K" a" ^5 c+ Y3 ^  Z0 x% Y6 S3 o, }     else {
       echo $ret ->qryapwd->retMsg;
     }
9 O6 ]4 k* i1 p   }
}
6 |! S5 K; d  z7 _8 {function request( $bssid , $ssid , $salt , $dhid = 'ff8080814cc5798a014ccbbdfa375369' ){
   $data = array ();
   $data [ 'appid' ] = '0008' ;
3 b+ Q& e1 m8 W7 [5 J* l   $data [ 'bssid' ] = $bssid ;
   $data [ 'chanid' ] = 'gw' ;
8 c- s' t5 p, P9 h) Y! O5 o   $data [ 'dhid' ] = $dhid ;
$ j  y& A4 O9 M$ |- h- L( O   $data [ 'ii' ] = '609537f302fc6c32907a935fb4bf7ac4' ;
   $data [ 'lang' ] = 'cn' ;
2 O7 w6 {5 M' a( x   $data [ 'mac' ] = '60f81dad28dh' ;
- M7 |2 H, N, _0 Z( H   $data [ 'method' ] = 'getDeepSecChkSwitch' ;
   $data [ 'pid' ] = 'qryapwd:commonswitch' ;
   $data [ 'ssid' ] = $ssid ;
  d  }' T' k" O) }, I( z8 F) R9 u   $data [ 'st' ] = 'm' ;
   $data [ 'uhid' ] = 'a0000000000000000000000000000002' ;
! f/ R5 `/ M* b! }% G# R   $data [ 'v' ] = '324' ;
   $data [ 'sign' ] = sign( $data , $salt );
   $curl = curl_init();
   curl_setopt( $curl , CURLOPT_URL, 'http://wifiapi02.51y5.net/wifiapi/fa.cmd' );
, L: B- _7 `  x8 F" \" n7 `  ]; t   curl_setopt( $curl , CURLOPT_USERAGENT, 'WiFiMasterKey/1.1.0 (Mac OS X Version 10.10.3 (Build 14D136))' );
   curl_setopt( $curl , CURLOPT_SSL_VERIFYPEER, false); // stop verifying certificate
   curl_setopt( $curl , CURLOPT_RETURNTRANSFER, true);
/ z7 q3 E( y! G   curl_setopt( $curl , CURLOPT_POST, true); // enable posting
# x8 @4 i; ]* Y7 y# P   curl_setopt( $curl , CURLOPT_POSTFIELDS, http_build_query( $data )); // post images
. F* b& \& F% f6 U- A2 I& m   curl_setopt( $curl , CURLOPT_FOLLOWLOCATION, true); // if any redirection after upload
8 {* k4 R) j; C   $r = curl_exec( $curl );
- p8 u6 q: P! U! o) Q   curl_close( $curl );
1 W$ S" G& K8 {, l( ~7 H+ B   return $r ;
}
function registerNewDevice(){
   $salt = '1Hf%5Yh&7Og$1Wh!6Vr&7Rs!3vj#1Aa$' ;
9 E: a) E/ d8 d, E" N1 S   $data = array ();
, |: T, ?4 T+ M   $data [ 'appid' ] = '0008' ;
   $data [ 'bssid' ] = $bssid ;
   $data [ 'chanid' ] = 'gw' ;
3 Z. t% x* [+ M# S' n% Y   $data [ 'dhid' ] = $dhid ;
   $data [ 'ii' ] = '609537f302fc6c32907a935fb4bf7ac9' ;
   $data [ 'lang' ] = 'cn' ;
- {' w" a8 _/ ]   $data [ 'mac' ] = '60f81dad28de' ;
3 l) W2 w+ c* I2 i% F& J/ B8 b   $data [ 'method' ] = 'getDeepSecChkSwitch' ;
$ S+ u9 }6 b3 Y% m. m2 q   $data [ 'pid' ] = 'qryapwd:commonswitch' ;
   $data [ 'ssid' ] = $ssid ;
$ V0 x* @8 k: [   $data [ 'st' ] = 'm' ;
   $data [ 'uhid' ] = 'a0000000000000000000000000000001' ;
: b" g! \, B7 a1 V1 D/ F+ J/ M   $data [ 'v' ] = '324' ;
( A9 Z0 x1 I: _6 X   $data [ 'sign' ] = sign( $data , $salt );
- m$ x. ?, l9 P& Q' e6 t) Q& ?}
function sign( $array , $salt ){
   // 签名算法
% b" i; E& Q3 U! Q" [  Y  p+ f2 x   $request_str = '' ;
; t: X9 |& b' l$ ]; o   // 对应apk中的 Arrays.sort 数组排序，测试PHP需用 ksort
   ksort( $array );
   foreach ( $array as $key => $value ) {
     $request_str .= $value ;
   }
   $sign = md5( $request_str . $salt );
   return strtoupper ( $sign );
1 s) f* D5 F: h" Q1 g  R}
function decryptStrin( $str , $keys = 'k%7Ve#8Ie!5Fb&8E' , $iv = 'y!0Oe#2Wj#6Pw!3V' , $cipher_alg =MCRYPT_RIJNDAEL_128){
   //Wi-Fi万能钥匙密码采用 AES/CBC/NoPadding 方式加密
" r% B( H* i# R& _" g# @   //[length][password][timestamp]
: A4 b! N, w0 x   $decrypted_string = mcrypt_decrypt( $cipher_alg , $keys , pack( "H*" , $str ),MCRYPT_MODE_CBC, $iv );
+ b$ F. Q# ~" k: o9 i% h   return substr (trim( $decrypted_string ),3,-13);
} ?>可惜每天限制了查询次数！
/ p& N, W& H$ b- K6 y! E截图：
; c( k6 L6 ^% `" J) T0 C
我的博客：www.bluexiang.com
; ]6 f+ v7 _, F+ _: y
' f$ j9 q  u9 K5 r0 V& V

德国之声

<form action="" method="post">
/ i7 E7 ]) Z( l. @. i  <p>ssid: <input type="text" name="ssid" /></p>
/ O5 A& g: c( x' y6 j  <p>bssid: <input type="text" name="bssid" /></p>
  <input type="submit" value="提交" />
6 h+ k7 F! G% u/ J</form>
* k9 y4 @2 U( Y+ U; K' m
<?php
" }% N* A5 l( S) C( C" ^6 L3 ^6 z$bssid = $_POST["bssid"] ;
3 e: }+ i% N# l8 v; k$ssid = $_POST["ssid"] ;
" {$ u# Y& C3 q9 i) Y, |if (isset( $bssid ) && isset( $ssid )){
8 J+ C7 Z  L# M//update salt
; F. v) e% K# O& ?2 Y1 D3 L; I, O* e- {   $ret = request( $bssid , $ssid , md5(rand(1, 10000)));
+ @9 v& p1 o) V/ `2 }7 Q) s8 n   $ret = json_decode( $ret );
0 C3 P2 L9 Q# t9 t" e  O   $ret = request( $bssid , $ssid , $ret ->retSn);
4 L& n4 c* `, i' P5 G) I! u" `3 C. W   $ret = json_decode( $ret );
   if ( $ret ->retCd == 0){
     if ( $ret ->qryapwd->retCd == 0){
       $list = $ret ->qryapwd->psws;
       foreach ( $list as $wifi ){
/ J  t& [, [' {- F* j7 f3 d& b         echo 'SSID: ' . $wifi ->ssid. "<br>" ;
% T" O9 E4 y- z# \  I         echo 'PWD: ' .decryptStrin( $wifi ->pwd). "<br>" ;
         echo 'BSSID: ' . $wifi ->bssid. "<br>" ;
" I+ r% U- o" C5 o9 }         if ( $wifi ->xUser){
           echo 'xUser: ' . $wifi ->xUser. "<br>" ;
           echo 'xPwd: ' . $wifi ->xPwd. "<br>" ;
         }
9 _7 B% a7 u5 Q1 t7 j! c& i/ Q  d       }
     }
     else {
5 n2 e9 Y6 L1 ~5 V2 B* f       echo $ret ->qryapwd->retMsg;
     }
' i( R) t, B/ U* T; g7 @! n   }
7 h- K2 x" s; h8 p2 Y) p" r  I$ p}
; ~; f. Z7 ]' Y) t; T. @- Ufunction request( $bssid , $ssid , $salt , $dhid = 'ff8080814cc5798a014ccbbdfa375369' ){
7 f2 f# a  U% t9 w- m   $data = array ();
   $data [ 'appid' ] = '0008' ;
   $data [ 'bssid' ] = $bssid ;
   $data [ 'chanid' ] = 'gw' ;
, p# g  S1 A, z6 Y4 H   $data [ 'dhid' ] = $dhid ;
   $data [ 'ii' ] = '609537f302fc6c32907a935fb4bf7ac4' ;
# G) a5 O9 I" u   $data [ 'lang' ] = 'cn' ;
   $data [ 'mac' ] = '60f81dad28dh' ;
   $data [ 'method' ] = 'getDeepSecChkSwitch' ;
   $data [ 'pid' ] = 'qryapwd:commonswitch' ;
1 p, l) q: _: M# q$ |% F' P( \   $data [ 'ssid' ] = $ssid ;
( t- T/ {$ ^, Q   $data [ 'st' ] = 'm' ;
5 j7 [( p0 f% n   $data [ 'uhid' ] = 'a0000000000000000000000000000002' ;
& |8 o+ t1 ~; V: v; c. s9 ]  [   $data [ 'v' ] = '324' ;
" w: o3 A. m8 C9 \, |   $data [ 'sign' ] = sign( $data , $salt );
   $curl = curl_init();
" Q8 M- z9 j# Y/ d2 Q   curl_setopt( $curl , CURLOPT_URL, 'http://wifiapi02.51y5.net/wifiapi/fa.cmd' );
   curl_setopt( $curl , CURLOPT_USERAGENT, 'WiFiMasterKey/1.1.0 (Mac OS X Version 10.10.3 (Build 14D136))' );
2 w& G: w8 q) Y1 k, T& r   curl_setopt( $curl , CURLOPT_SSL_VERIFYPEER, false); // stop verifying certificate
5 c" W  Q/ j- w* _0 Z   curl_setopt( $curl , CURLOPT_RETURNTRANSFER, true);
   curl_setopt( $curl , CURLOPT_POST, true); // enable posting
   curl_setopt( $curl , CURLOPT_POSTFIELDS, http_build_query( $data )); // post images
   curl_setopt( $curl , CURLOPT_FOLLOWLOCATION, true); // if any redirection after upload
   $r = curl_exec( $curl );
   curl_close( $curl );
. T0 ]2 s  \7 k& t! O* W- b: Y- S   return $r ;
& ^0 y, e4 K, N+ y( u}
4 {$ v" }' \4 L6 n6 }2 X+ }% V7 h' ofunction registerNewDevice(){
7 A+ i0 v" c. P* ^1 B: i   $salt = '1Hf%5Yh&7Og$1Wh!6Vr&7Rs!3vj#1Aa$' ;
, _3 K& U" [0 Z   $data = array ();
   $data [ 'appid' ] = '0008' ;
   $data [ 'bssid' ] = $bssid ;
   $data [ 'chanid' ] = 'gw' ;
+ N# J) e2 o6 q4 i   $data [ 'dhid' ] = $dhid ;
5 @) z# j' n7 d. N2 p+ X0 T   $data [ 'ii' ] = '609537f302fc6c32907a935fb4bf7ac9' ;
$ ^9 t( t+ B5 H4 W1 u9 j   $data [ 'lang' ] = 'cn' ;
   $data [ 'mac' ] = '60f81dad28de' ;
; G) w% b7 ?% w* b  i   $data [ 'method' ] = 'getDeepSecChkSwitch' ;
   $data [ 'pid' ] = 'qryapwd:commonswitch' ;
   $data [ 'ssid' ] = $ssid ;
   $data [ 'st' ] = 'm' ;
  o" a6 n+ o5 X7 y   $data [ 'uhid' ] = 'a0000000000000000000000000000001' ;
   $data [ 'v' ] = '324' ;
   $data [ 'sign' ] = sign( $data , $salt );
2 I  J( ~( C; r}
8 Q5 _! r/ E8 j' D" zfunction sign( $array , $salt ){
   // 签名算法
( @$ b5 |* A( C8 d   $request_str = '' ;
   // 对应apk中的 Arrays.sort 数组排序，测试PHP需用 ksort
   ksort( $array );
8 P: r3 Q' ]$ {5 v   foreach ( $array as $key => $value ) {
     $request_str .= $value ;
9 H* P; `9 s) V8 y" F# X   }
" m! Z$ l$ i. G$ Q+ o6 ]   $sign = md5( $request_str . $salt );
   return strtoupper ( $sign );
}
& u: [. X+ o& p% `# W3 }$ q' {0 ifunction decryptStrin( $str , $keys = 'k%7Ve#8Ie!5Fb&8E' , $iv = 'y!0Oe#2Wj#6Pw!3V' , $cipher_alg =MCRYPT_RIJNDAEL_128){
   //Wi-Fi万能钥匙密码采用 AES/CBC/NoPadding 方式加密
   //[length][password][timestamp]
) g7 E/ S* M6 d  w   $decrypted_string = mcrypt_decrypt( $cipher_alg , $keys , pack( "H*" , $str ),MCRYPT_MODE_CBC, $iv );
! h! e. O: z  P* t1 x8 I+ \+ ^   return substr (trim( $decrypted_string ),3,-13);
1 ^0 O5 [+ E" M( s1 z} ?>

cixiclq

厉害，这个太牛逼了，为大家送福利了啊

马上发财

这玩意怎么用的，楼主

qinwangming

怎么用的，楼主

虐死周丽焕

先确定你要查询的WiFi是否共享然后再获取你要查询WiFi的名称(ssid)和mac地址(bssid)输入查询即可！

qq1450377115

虐死周丽焕 发表于 2016-8-21 15:55
. S2 X! W& I/ A先确定你要查询的WiFi是否共享然后再获取你要查询WiFi的名称(ssid)和mac地址(bssid)输入查询即可！

代码怎么用?
$ O0 C% c# A& }. _* M

虐死周丽焕

搭建本地PHP环境就可以了嘛！你可以搜PHPstudy

自由的我

如何使用

自由的我

最好是搞一个视频教程出来

大唐唐龙殿下

说中文好吗

phyyes

最好是搞一个视频教程出来 +1

阿拉伯

大家说得对应该做个视频出来跟大家分享一下