本文实例讲述了php采用curl实现伪造IP来源的方法。可以实现伪造IP来源, 伪造域名, 伪造用户信息,分享给大家供大家参考。具体实现方法如下:
定义伪造用户浏览器信息HTTP_USER_AGENT
$binfo =array('Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727; InfoPath.2; AskTbPTV/5.17.0.25589; Alexa Toolbar)','Mozilla/5.0 (Windows NT 5.1; rv:22.0) Gecko/20100101 Firefox/22.0','Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET4.0C; Alexa Toolbar)','Mozilla/4.0(compatible; MSIE 6.0; Windows NT 5.1; SV1)',$_SERVER['HTTP_USER_AGENT']);<br />//123.125.68.*<br />//125.90.88.*
定义伪造IP来源段,这里我找的是百度的IP地址
$cip = '123.125.68.'.mt_rand(0,254);<br />$xip = '125.90.88.'.mt_rand(0,254);<br />$header = array( <br />'CLIENT-IP:'.$cip, <br />'X-FORWARDED-FOR:'.$xip, <br />);
利用curl开始向服务器发送伪造信息
function getimgs( $url,$userinfo,$header)<br />{<br /> $ch = curl_init();<br /> $timeout = 5;<br /> curl_setopt ($ch, CURLOPT_URL, "$url");<br /> curl_setopt ($ch, CURLOPT_HTTPHEADER, $header);<br /> curl_setopt ($ch, CURLOPT_REFERER, "http://www.baidu.com/"); <br /> curl_setopt ($ch, CURLOPT_RETURNTRANSFER, 1);<br /> curl_setopt ($ch, CURLOPT_USERAGENT, "$userinfo");<br /> curl_setopt ($ch, CURLOPT_CONNECTTIMEOUT, $timeout); <br /> $contents = curl_exec($ch);<br /> curl_close($ch);<br /> return $contents;<br />}
获取到数据我们再保存
function saveimgs( $handle )<br />{<br /> $fp = fopen('a.jpg',"w");<br /> fwrite($fp,$handle);<br /> unset($fp);<br /> unset($handle);<br />}
测试伪造IP实例
$url ='http://www.bitsCN.com/images/logo<strong style="color:transparent">本文来源gao@daima#com搞(%代@#码@网&</strong><strong>搞gaodaima代码</strong>.gif';<br />$u = $binfo[mt_rand(0,3)];<br />saveimgs(getimgs($url,$u,$header));
这样就在你当前目录保存成功了一个文件a.jpg文件,我现可以查看服务器日志是不是我们自定的用户信息呢
192.168.1.108 – – [22/Jul/2013:10:29:37 +0800] “GET /test.php HTTP/1.1” 200 1244 “-” “Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727; InfoPath.2; AskTbPTV/5.17.0.25589; Alexa Toolbar)”
192.168.1.108 – – [22/Jul/2013:10:29:37 +0800] “GET / HTTP/1.1” 200 40538 “http://www.baidu.com/” “Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET4.0C; Alexa Toolbar)”
192.168.1.108 – – [22/Jul/2013:10:29:37 +0800] “GET /test.php HTTP/1.1” 200 1244 “-” “Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727; InfoPath.2; AskTbPTV/5.17.0.25589; Alexa Toolbar)”
192.168.1.108 – – [22/Jul/2013:10:29:37 +0800] “GET / HTTP/1.1” 200 40538 “http://www.baidu.com/” “Mozilla/5.0 (Windows NT 5.1; rv:22.0) Gecko/20100101 Firefox/22.0”
看出来了吧,完全正确啊,只是IP地址我怎么没测试出来,这个使用php获取ip地址时就会显示我伪造IP地址了。
希望本文所述对大家的PHP程序设计有所帮助。
转载请注明原文链接:php采用curl实现伪造IP来源的方法_PHP
