About JScript Encryption

Text/figure taking a snail walk
==========================================
 
I wonder if you have had this Hacking experience? After you successfully log on to a bunch of ADSL Modem, a line of asterisks and passwords are displayed, when we tried to copy this string of asterisks with Ctrl + C, we found that the password was not copied at all, because Windows prevented us from copying this asterisks. Sometimes some websites may have been registered and automatically completed during login. After a long time, I forgot my original password ...... What we need to do today is to get the original content of the asterisk password. The asterisk password in the browser is quite special. Its Acquisition principle is quite different from that in Windows. The "asterisk password detection" function of Super Rabbit cannot obtain the password, because the asterisks and passwords on the Web page are elements in the IE form, which cannot be found by common software, I came up with a small tool to solve such headaches.
Recently, I have just studied browser plug-ins, but it seems a little troublesome to compile ActiveX plug-ins, and the current plug-ins are a bit confusing (in fact, my COM is too bad technology, it's not enough ^-^ ), find a practical implementation method. It is no longer convenient to use VBScript to control the browser. It is simple and powerful, and everyone has an ASP foundation. It is easy to make an HTM.
First, we should consider how to locate the Password box. By analyzing the VBScript library functions, we did not find a function that is as rich as a Windows program. Finally, we chose a shortcut menu similar to thunder to get the mouse coordinates. Open the text editor. UltraEdit is recommended here. It supports highlight of HTM syntax. After all, it is not easy to see spelling errors using notepad. The following code is streamlined and optimized by layers, and the comments are also very detailed. You can directly enter the code to use it.
<Script language = "VBScript">
On Error Resume Next setting Error traps
Dim ObjDocument, ObjEvent, ObjElement object Declaration
Set ObjDocument = external.menuArguments.doc ument
Enumerate Elements Using DOM
Set ObjEvent = external. menuArguments. event
Set ObjElement = ObjDocument. elementFromPoint (ObjEvent. clientX, ObjEvent. clientY)
Use the coordinates of the current mouse pointer to obtain the webpage Elements
If ObjElement. type = "password" then
If the webpage element type is password
If ObjElement. value = "" then
Alert ("Empty retrieved text ")
Else
Alert ("Get text:" + ObjElement. value) display Password
End If
End If
</Script>

Save this code as the "ht.htm" file, which is saved in the root directory of drive C. Open the Registry Editor (regedit), locate the "HKEY_CURRENT_USERSoftwareMicrosoftInternet assumermenuext" branch, right-click the branch, and create an "item" in the pop-up menu ", name "view asterisk password" here, and create a "string value" on the right. The value is the complete path for saving the "show password" file, that is, "C: Display password .htm ", 1.
 
Figure 1
The above is the method for adding the Browser Helper Program (BHO. Right-click the browser and you will find that the "view asterisk password" option is added to the menu. In order to let everyone know the actual results, we will test it on the logon page of the Baidu space. In the password input box, right-click the password, and click "view asterisk password" to see that the entered real password is successfully obtained, as shown in figure 2.

Figure 2
Using the VBScript program to implement this function is almost the simplest method. The first step is to compile the VBScript webpage without using the complex COM technology. The second step is to register the BHO object in the registry. The creation method is simple and efficient. You may wish to give it a try. It is really hard to get the asterisks and passwords on the webpage.