中国网络渗透测试联盟

标题: web.Config加密解密最简单实用方法 [打印本页]
作者: admin    时间: 2013-8-5 15:33
标题: web.Config加密解密最简单实用方法
web.config的文件多数的时候不希望别人看到,下面提供一个加密,解密的语句,简洁方便实用,先看到效果,至于加密的原理其他的网页上做了很多说明,这里只演示效果。! x  D+ y1 _# G6 _
  加密前的connectionStrings节点
" }) M. z* t/ ^( q: K1 X  代码
2 E% O' p2 w; o" K  <connectionStrings>
+ _: T7 A' G+ h$ S1 }& l  <add name="SQLConnString1" connectionString="server=WJW-PC\SQL2008;user id=sa;password=12345;Initial Catalog=dbFASH;min pool size=4;max pool size=400;" />1 t& p5 N! U7 Q5 D. `0 s6 S
  <add name="eziyaConnectionString1" connectionString="Data Source=HOME-COMPUTER;Initial Catalog=dbFASH;Integrated Security=True;MultipleActiveResultSets=Falseacket Size=4096;Application Name=&quot;Microsoft SQL Server Management Studio&quot;"
0 O" l5 S4 H2 n) x  providerName="System.Data.SqlClient" />
4 J- B& p% z# O  A2 Z  <add name="eziyaConnectionString2" connectionString="Data Source=192.168.1.200;Initial Catalog=dbFASHersist Security Info=True;User ID=taoka;MultipleActiveResultSets=Falseacket Size=4096;Application Name=&quot;Microsoft SQL Server Management Studio&quot;"
0 J- j) U7 D* H! E  providerName="System.Data.SqlClient" />/ i. X! [$ C/ _  P$ c0 g0 S
  <add name="eziyaConnectionString3" connectionString="Data Source=192.168.61.160;Initial Catalog=dbFASHersist Security Info=True;User ID=sa;MultipleActiveResultSets=Falseacket Size=4096;Application Name=&quot;Microsoft SQL Server Management Studio&quot;"$ J! T$ O8 L# c$ j! k" k6 q2 b
  providerName="System.Data.SqlClient" />6 Y: s" z) \5 M5 F  T! w
  </connectionStrings>
! h0 `* D7 l! n7 X: r  加密后的connectionStrings的节点# P0 d# w2 x3 j7 V# W" {6 N9 H
  代码
3 \* ~5 a  m- W, n' N  <connectionStrings configProtectionProvider="RsaProtectedConfigurationProvider">. G, y; }# K0 W: \/ a% o; Q
  <EncryptedData Type="http://www.w3.org/2001/04/xmlenc#Element"' y& A4 _5 V7 h/ j+ k! D
  xmlns="http://www.w3.org/2001/04/xmlenc#"&gt;
: R% p3 {* N: d; J8 A5 R  <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc" />
/ V, A+ E2 ^- \/ F$ H  <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"&gt;
2 v' k( _8 L& U  <EncryptedKey xmlns="http://www.w3.org/2001/04/xmlenc#"&gt;
5 t: S- R1 L! ~; y  <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5" />  [8 |) A6 V6 q
  <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"&gt;! E6 K4 A, n+ i# K2 q
  <KeyName>Rsa Key</KeyName>0 ~1 W' `. \6 X; Y
  </KeyInfo>  [9 p! |0 h, Z* h9 Y+ h
  <CipherData>
/ k6 K& \: i8 J9 P) {1 `) D  <CipherValue>FOkydQFNniZvq71ua4XapuVCUrJFOARkXeqqwyKFoP+NGXGewehxYW0zTzIn/j+YCvH/r6ABoE/AfWMMEDyr81R1mhi4ckXbiJ2BvW612/W7f7Wkqj+FDwse+lgAISHZ5HfspaY1LBvKYAu1VEm6Iu6NlT35TPnjxFf+p5Apf0E=</CipherValue>3 x5 c' ~. J' h. N$ O/ s+ m
  </CipherData>1 b8 e& f2 p% U, ~7 f  D6 d2 P0 F
  </EncryptedKey>9 K7 O4 e3 Q5 n. {# ~1 [# V
  </KeyInfo>
9 x" h% C: g; ^5 A4 ?6 V. l' T  <CipherData>
' V7 f1 `* Z9 ?7 i2 Y/ m% b5 Y  <CipherValue>s3PKarSQ/tlnG5YcE/z/KLbnSLljw/nOj+aoafGD9eJRlZ092f5Ywx9IDRaKMqNQ6+OM3f0WOh57evnWqL8tjULwNHviMAP3RU/5CTCGfZ/k0u+jWAGYYuOxlT6/iKsMbceBGh5jmcwIG+d3itc+h+Qq5B3g8Jjbt8Y+IulmOYWEnp2xwC+Sm/IX8vjiT7jlAqUeikNYXCEcakv8GmuA0DvWBX2tuR0Iyjv8fPcyo//eRDIqKKQB22F2ikbT0/42qmgBfOCoC3M4IMRLS7rVpEUu6JYNuoXPtvaKZhQZxNmE3zIlVPyBbPOd4VatPDCWWO9VivTbMMV+ekEDhohHbeFGHBlSi75FSXCMEz1O53gbg1LDC5nJvZUAU2+suQeEoumoMEYkH27J+p5H2xCOivPnQuPx+xRFT9btNWm/P8wpw7FUdxwqRh6JJbUYnpKc5unC76OXhAAYK+5cp+oISOyMMkFYvzCstKpYYYwQ/xW/v9Kx4XgmRKRht6lgBdbiTJhVTTzWwybVx1laOrvIYL5UR3XuqdVhH8rQYx2M3acTh5zvUKmeha6DsOVngWzm0NQ6jX3pQHOP43hZddg6di6lTNdhRRnSxaYcDVhB+n9scjHtGqAXCTJw9agz2En2P9hSZnzMbaS9Qdq9MoJK3h7plJWwIyPhPktA4qXYQCBVDV+aPLyPrBjsVddfnO/yJixaO2alcH8UuTPrACzzHRKn0YwtQFHt/I4/Vb7vsX2VoaFc0BrMxzYe6z/klVope9h6uOUReSbA5E7AGNPh8OaUW8GqzFY/5/N46gofk7g/W/Egz2o9YFGUbWQduh3VK2jF0xy/cbwE0qm7tI8mmlyUnGBfy7GuHK7YM32C4g3ZUsOv38kZoiHMjjHuzfS1lMPwTS6FPBS71UN8mdK58pakcZB2rqq3ysDPkgYvGs+E98j8v9P58rEXPW99uipSRvQeQXflp7DElEuqxVh29NuxJBkOaUaR1qPd2wepRH51MS6b3RlsTpGFEEBOw4/sNt90hzaSWeydleag9mo6803wC5DDp5hJAFBJH4+jiJwfKVzKFp133OfFoGy5ea8T6RruIVMiQRWCH/zCh3FuhkOwUcc25tPfeIZgAgFlmrzCg0E4pfIfHoni//x12kuwXYefJ5IUk6BizOPP2zul831o+Irx8MfWR8n64ZAHZvKfa6BXksN+0HLAsBsPzLRrppHyFMqIBuNe1iWxBM+j3PQUeN+oXJog79YoFxdd4cf1+jMZn0+ee7aOvEu4WGv3WT25FFiYLdO99uzXOPn7UTolUqmkYlYelgh5n5QmFd4WsqOt4oYE5CFadI/n/MsLpVJmJTzA+8CAD26cpuOmloyHzsEpqUWZb5lAO9jfDVu9F6SznBr0iaCkko5jw2kZw4tqRx2B+9eUNPTQGRPRVgc5stAFVf13w974sRrwCvGRSq0U/71cBSE8KSLOj/aGf2p4UBSUPRk=</CipherValue>: S& _6 P! j, q& @6 w: C
  </CipherData>; O8 P9 {& i5 L2 X% T8 I" O% ^+ V
  </EncryptedData>
6 d6 h$ l  w& I7 `0 |9 H  </connectionStrings>& R$ n* z- S  D
  完全看不到连接的信息!" O9 S7 e* I1 e7 i# ]
  下面是两个.bat批处理文件
9 X( \$ r4 o2 _! C+ K7 G  加密:
4 @' [5 S2 x0 c  @echo off0 L: A* }) r- F0 c1 s
  C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_regiis.exe -pef "connectionStrings" "E:\code\proj\Web"
0 B7 a# ~% Q; h3 a+ m  解密:
  H/ [8 i1 c/ T- L! p5 |5 b  @echo off" C1 ~2 W& q( _' L
  C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_regiis.exe -pdf "connectionStrings" "E:\code\proj\Web"
) [' j+ f, S8 t& t! M  PAUSE) i: @/ h! f' h
  直接将语句拷贝到.BAT文件中,E:\code\proj\Web为相应的web.config所在的路径,只能在一台电脑上操作,否则不可逆
作者: Anthony~    时间: 2013-8-5 19:31
好方法。我正好刚遇到这个问题



欢迎光临 中国网络渗透测试联盟 (https://www.cobjon.com/) Powered by Discuz! X3.2