中国网络渗透测试联盟

标题: web.Config加密解密最简单实用方法 [打印本页]
作者: admin    时间: 2013-8-5 15:33
标题: web.Config加密解密最简单实用方法
web.config的文件多数的时候不希望别人看到,下面提供一个加密,解密的语句,简洁方便实用,先看到效果,至于加密的原理其他的网页上做了很多说明,这里只演示效果。
/ }) l+ [2 j9 P& o/ B  加密前的connectionStrings节点
% H5 n7 ]) i2 v" }- G7 r$ {  代码
$ R. P1 ]$ }; G8 u$ k- P+ P6 P  <connectionStrings>
" p: j( [+ c, @9 }8 h' I  <add name="SQLConnString1" connectionString="server=WJW-PC\SQL2008;user id=sa;password=12345;Initial Catalog=dbFASH;min pool size=4;max pool size=400;" />
4 Y* ?' a/ ], r) N! e( `8 s  <add name="eziyaConnectionString1" connectionString="Data Source=HOME-COMPUTER;Initial Catalog=dbFASH;Integrated Security=True;MultipleActiveResultSets=Falseacket Size=4096;Application Name=&quot;Microsoft SQL Server Management Studio&quot;"1 T' Q: R: W0 x3 Q! U' q$ V, N
  providerName="System.Data.SqlClient" />
4 v. L6 x" O7 n& i9 y: _  <add name="eziyaConnectionString2" connectionString="Data Source=192.168.1.200;Initial Catalog=dbFASHersist Security Info=True;User ID=taoka;MultipleActiveResultSets=Falseacket Size=4096;Application Name=&quot;Microsoft SQL Server Management Studio&quot;"7 G* K. A( X& M9 L
  providerName="System.Data.SqlClient" />. G! _8 c1 c5 t; d# X
  <add name="eziyaConnectionString3" connectionString="Data Source=192.168.61.160;Initial Catalog=dbFASHersist Security Info=True;User ID=sa;MultipleActiveResultSets=Falseacket Size=4096;Application Name=&quot;Microsoft SQL Server Management Studio&quot;"
$ \# g! w+ K) r8 V  providerName="System.Data.SqlClient" />' J$ z0 {3 }* C; \/ S9 ]+ h5 k
  </connectionStrings>
  S0 r3 S* f$ Y0 E" w) }" ~9 P0 q0 `  加密后的connectionStrings的节点4 l0 b/ H6 `3 D) ^3 r  K2 p
  代码# E/ h# w8 w) \' \
  <connectionStrings configProtectionProvider="RsaProtectedConfigurationProvider">+ X* V# l5 \( S
  <EncryptedData Type="http://www.w3.org/2001/04/xmlenc#Element"
% z6 _, u. c" V1 q  xmlns="http://www.w3.org/2001/04/xmlenc#"&gt;
% H& P4 E' K3 q# F  <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc" />
  t/ ?5 K. u1 M6 H  <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"&gt;
$ z* a6 x. E) X6 w& S, L# |  s  <EncryptedKey xmlns="http://www.w3.org/2001/04/xmlenc#"&gt;; Y# Z, Q4 B! J) O
  <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5" />: S0 V! [$ T( O( F! e" f
  <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"&gt;$ z9 p9 x0 G7 K5 |' i' J
  <KeyName>Rsa Key</KeyName>
; v" m2 ~7 a+ M7 ]" |  </KeyInfo>, ^) m! G9 w% x; |: u
  <CipherData>7 `7 |  O9 [% E) Q! @2 U' E
  <CipherValue>FOkydQFNniZvq71ua4XapuVCUrJFOARkXeqqwyKFoP+NGXGewehxYW0zTzIn/j+YCvH/r6ABoE/AfWMMEDyr81R1mhi4ckXbiJ2BvW612/W7f7Wkqj+FDwse+lgAISHZ5HfspaY1LBvKYAu1VEm6Iu6NlT35TPnjxFf+p5Apf0E=</CipherValue>2 L2 l7 ~9 U5 V9 J* k# |
  </CipherData>8 Z  _, x2 b/ I7 d% U% I5 X- r0 f  u0 W
  </EncryptedKey>
, U0 s" j0 [' T& n  </KeyInfo>3 }5 H; R8 v$ V  y# I6 q2 V
  <CipherData>
- n# H0 X- Q0 m  <CipherValue>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</CipherValue>7 |" \" D# M+ s# v2 D( d
  </CipherData>, v4 U, c3 y+ l% V% c; v
  </EncryptedData>
3 m) s' ?2 i% O& u4 g& c3 n  </connectionStrings>
* i$ l4 L. P8 V- j. s) d  完全看不到连接的信息!6 Q( j9 S3 O5 n% o
  下面是两个.bat批处理文件# y2 L* N+ ?5 l' C+ I; K+ G
  加密:* g" A7 m" Y6 A& L: F& B+ K% x" E
  @echo off9 Z4 Q* o& A. l6 Z# S
  C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_regiis.exe -pef "connectionStrings" "E:\code\proj\Web"7 ]. C1 d9 q  L  b& P' W: @/ f
  解密:
: u7 @( r  }) H  p  @echo off2 k5 c; C6 w5 u; x' h1 d
  C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_regiis.exe -pdf "connectionStrings" "E:\code\proj\Web"
3 H9 y4 w+ _, p  Y! Y: i  PAUSE
; ^7 `' W' F/ K9 x2 _6 d0 t% M7 g  直接将语句拷贝到.BAT文件中,E:\code\proj\Web为相应的web.config所在的路径,只能在一台电脑上操作,否则不可逆
作者: Anthony~    时间: 2013-8-5 19:31
好方法。我正好刚遇到这个问题



欢迎光临 中国网络渗透测试联盟 (https://www.cobjon.com/) Powered by Discuz! X3.2