I kekahi lā, hāpai ka luna i ka nīnau: "No ke aha i loaʻa ai i kekahi poʻe ke komo mamao i ka kamepiula hana, me ka loaʻa ʻole o nā ʻae hou no ka hoʻohana?"
Ke ala nei ka hana e "pani" i ka loophole.
Nui nā noi no ka mana mamao ma luna o ka pūnaewele: Chrome papapihi mamao, AmmyAdmin, LiteManager, TeamViewer, Anyplace Control, a me nā mea ʻē aʻe. mai ka pūnaewele a me nā mea hoʻohana e "wili i ko lākou mau niho" ma kekahi ala a i ʻole "alohi" me nā mea hoʻokele, a laila ka punahele o nā mea he nui no ka hoʻohana pilikino - ʻo AnyDesk ke koi nei i ka nānā kūikawā, ʻoiai inā ʻōlelo ka luna "ʻAʻole!"
Inā ʻike ʻoe i ke ʻano o ka pale ʻana i kahi ʻeke pūnaewele ma kāna ʻike a ua māʻona ʻoe iā ia, a laila ke koena o nā mea
ʻaʻole i manaʻo ʻia nāu.
Ke ho'āʻo nei e hele mai kahi ʻē aʻe, ʻoiaʻiʻo ʻōlelo ʻo ia i ka mea e ʻae ʻia no ka hana ʻana o ka papahana; no laila, ua pāpā ʻia ka moʻolelo DNS *.net.anydesk.com. Akā ʻaʻole maʻalahi ʻo AnyDesk; ʻaʻole ia e mālama i ka pale ʻana i kahi inoa inoa.
I kekahi manawa, ua hoʻoponopono wau i ka pilikia o ka pale ʻana i ka "Anyplace Control", i hiki mai iā mākou me kekahi polokalamu kānalua, a ua hoʻoholo ʻia ma ke kāohi ʻana i kekahi mau IP (ua kākoʻo wau i ka antivirus). ʻO ka pilikia me AnyDesk, ma hope o koʻu hōʻiliʻili lima ʻana i nā helu IP he ʻumikūmālua, ua hoʻokuʻu mai iaʻu e haʻalele i ka hana lima maʻamau.
Ua ʻike ʻia ma "C: ProgramDataAnyDesk" aia kekahi mau faila me nā hoʻonohonoho, a me nā mea ʻē aʻe, a ma ka faila. ad_svc.trace ʻOhi ʻia nā hanana e pili ana i nā pilina a me nā hemahema.
1. Nānā
E like me ka mea i haʻi mua ʻia, ʻaʻole i hāʻawi ʻia nā hopena i ka hana ʻana o ka papahana i ka pale ʻana i *.anydesk.com, ua hoʻoholo ʻia e nānā. ka hana o ka papahana ma nā kūlana pilikia. TCPView mai Sysinternals ma kou mau lima a hele!
1.1. Hiki ke ʻike ʻia he nui nā kaʻina hoihoi iā mākou e "kau ana", a ʻo ka mea e kamaʻilio me ka helu mai waho mai ka mea hoihoi iā mākou. Ua koho ʻia nā awa e pili ai, mai kaʻu i ʻike ai: 80, 443, 6568. 🙂 ʻAʻole hiki iā mākou ke hoʻopaʻa i ka 80 a me 443.
1.2. Ma hope o ka hoʻopaʻa ʻana i ka helu wahi ma o ke alalai, koho mālie ʻia kahi helu ʻē aʻe.
1.3. ʻO ka console kā mākou mea āpau! Hoʻoholo mākou i ka PID a laila ua laki iki wau i hoʻokomo ʻia ʻo AnyDesk e ka lawelawe, no laila ʻo ka PID a mākou e ʻimi nei ʻo ia wale nō.
1.4. Hoʻoholo mākou i ka helu IP o ka kikowaena lawelawe mai ke kaʻina PID.
2. Hoʻomākaukau
No ka mea e hana wale ana ka papahana no ka ʻike ʻana i nā helu IP ma kaʻu PC, ʻaʻohe oʻu kapu i ka ʻoluʻolu a me ka palaualelo, no laila ʻo C#.
2.1. Ua ʻike mua ʻia nā ala āpau no ka ʻike ʻana i ka helu IP i koi ʻia, e hoʻokō ʻia.
string pid1_;//узнаем PID сервиса AnyDesk
using (var p = new Process())
{p.StartInfo.FileName = "cmd.exe";
p.StartInfo.Arguments = " /c "tasklist.exe /fi "imagename eq AnyDesk.exe" /NH /FO CsV | findstr "Services""";
p.StartInfo.UseShellExecute = false;
p.StartInfo.RedirectStandardOutput = true;
p.StartInfo.CreateNoWindow = true;
p.StartInfo.StandardOutputEncoding = Encoding.GetEncoding("CP866");
p.Start();
string output = p.StandardOutput.ReadToEnd();
string[] pid1 = output.Split(',');//переводим ответ в массив
pid1_ = pid1[1].Replace(""", "");//берем 2й элемент без кавычек
}Pēlā nō, ʻike mākou i ka lawelawe i hoʻokumu i ka pilina, e hāʻawi wau i ka laina nui wale nō
p.StartInfo.Arguments = "/c " netstat -n -o | findstr /I " + pid1_ + " | findstr "ESTABLISHED""";ʻO ka hopena o ia mea:
Mai ka lālani, e like me ka pae mua, e wehe i ke kolamu 3 a wehe i nā mea āpau ma hope o ka ":". ʻO ka hopena, loaʻa iā mākou kā mākou IP makemake.
2.2. Kāohi IP ma Windows. Inā loaʻa iā Linux ka Blackhole a me nā iptables, a laila ʻo ke ʻano o ka pale ʻana i kahi leka uila IP i hoʻokahi laina, me ka ʻole o ka hoʻohana ʻana i kahi pā ahi, ma Windows ua lilo i mea maʻamau,
akā he aha ke ʻano o nā mea hana i laila...
route add наш_найденный_IP_адрес mask 255.255.255.255 10.113.113.113 if 1 -pKa palena kī "ina 1"E hoʻouna i ke ala i Loopback (Hiki iā ʻoe ke hōʻike i nā loulou i loaʻa ma ka holo ʻana i ke ala paʻi). A ME KA MEA! me nā kuleana luna hoʻomalu, no ka mea, pono ke hoʻololi i ke ala i ke kiʻekiʻe.
2.3. ʻO ka hōʻike ʻana a me ka mālama ʻana i nā helu IP i ʻike ʻia he hana liʻiliʻi a ʻaʻole pono e wehewehe. Inā noʻonoʻo ʻoe, hiki iā ʻoe ke hana i ka faila ad_svc.trace ʻO AnyDesk pono'ī, akā ʻaʻole wau i noʻonoʻo e pili ana iā ia i kēia manawa + aia paha kahi palena ma luna.
2.4. ʻO ka ʻano like ʻole o ka papahana ʻo ia ka "taskkilling" i ke kaʻina hana i loko o Windows 10, hoʻomaka hou ia, ma Windows 8 e pau, waiho wale i ke kaʻina console a me ka hoʻopili ʻole ʻana, ma ke ʻano he kūpono ʻole a pololei ʻole kēia.
ʻO ka wehe ʻana i kahi kaʻina i pili i ke kikowaena hiki iā ʻoe ke "hoʻoikaika" i ka hoʻohui hou ʻana i ka helu aʻe. Hoʻokō ʻia ma ke ʻano like me nā kauoha mua, no laila e hāʻawi wale wau:
p.StartInfo.Arguments = "/c taskkill /PID " + pid1_ + " /F";Eia hou, e hoʻomaka i ka papahana AnyDesk.
//запускаем программу которая расположена по пути path_pro
if (File.Exists(path_pro)){
Process p1 = Process.Start(path_pro);}2.5. E nānā mākou i ke kūlana o AnyDesk i hoʻokahi minuke (a i ʻole pinepine?), A inā pili ia, ʻo ia. hoʻopaʻa ʻia - e hoʻopaʻa i kēia IP, a hoʻi hou - kali a hiki i ka hoʻopili ʻana, poloka a kali.
3. Hoouka
Ua "sketched" ka code a ua hoʻoholo ʻia e nānā i ke kaʻina hana "+" e hōʻike i ka IP i loaʻa a ālai ʻia, a "."-e hana hou i ka helu me ka ʻole o ka pilina pili hoa mai AnyDesk.
→
Ma ka hopena…
Ua hana ka papahana ma kekahi mau kamepiula me Windows OS like ʻole, me nā mana o AnyDesk 5 a me 6. Ma luna o 500 iterations, ma kahi o 80 mau helu i hōʻiliʻili ʻia. No 2500 - 87 a pēlā aku...
I ka wā lōʻihi, hiki i ka helu o nā IP i hoʻopaʻa ʻia i 100+.
loulou i ka hope waihona kikokikona me nā helu wahi: и
Ua hana ʻia! Ua hoʻohui ʻia ka wai o nā IP address i nā lula o ka mea ala nui ma o ka palapala a ʻaʻole hiki iā AnyDesk ke hana i kahi pilina o waho.
Aia kahi ʻano ʻē, mai nā moʻolelo mua e maopopo ai ke komo ka helu wahi i ka hoʻoili ʻana o ka ʻike boot-01.net.anydesk.com. ʻOiaʻiʻo, ua pāpā mākou i nā mea hoʻokipa *.net.anydesk.com ma ke ʻano he kānāwai maʻamau, akā ʻaʻole ia ka mea ʻē. I kēlā me kēia manawa me ka ping maʻamau mai nā kamepiula like ʻole, hāʻawi kēia inoa inoa i kahi IP ʻokoʻa. Ke nānā nei ma Linux:
host boot-01.net.anydesk.com
e like me DNSLookup hāʻawi lākou i hoʻokahi IP address, akā he loli kēia helu. I ka nānā ʻana i kahi pilina TCPView, ua hoʻihoʻi ʻia mākou i nā moʻolelo PTR o nā helu IP o ke ʻano relay-*.net.anydesk.com.
ʻO ka manaʻo: no ka mea, hele ʻo ping i kahi host i ʻike ʻole ʻia boot-01.net.anydesk.com hiki iā mākou ke loaʻa i kēia mau ips a pale iā lākou, e hana i kēia hoʻokō i kahi palapala maʻamau ma lalo o Linux OS, ma aneʻi ʻaʻohe pono e hoʻokomo iā AnyDesk. Ua hōʻike ka hōʻike i kēia mau IP pinepine "e hui aku"me nā mea i loaʻa mai kā mākou papa inoa. Malia paha ʻo kēia host wale nō kahi e hoʻopili ai ka papahana ma mua o ka hoʻomaka ʻana e "hoʻokaʻawale" i nā IP i ʻike ʻia. ʻAʻole hoʻokomo ʻia ka polokalamu ponoʻī i loko o ka hui ʻana i waho ma ka laulā.
Manaʻo wau ʻaʻole ʻoe i ʻike i kekahi mea ʻaʻole hewa i luna, a e hana nā mea hana o AnyDesk i kaʻu mau hana ma ke ʻano haʻuki.
Source: www.habr.com