これでした
初回アクセスでこのjsが含まれたhtmlを返しててcookieを計算した後にそのcookieつけてたらちゃんとファイル返すハックを置くことで外部アクセス遮断してるっぽいにゃあ
```html
<html><body><script type="text/javascript" src="/aes.js" ></script><script>function toNumbers(d){var e=[];d.replace(/(..)/g,function(d){e.push(parseInt(d,16))});return e}function toHex(){for(var d=[],d=1==arguments.length&&arguments[0].constructor==Array?arguments[0]:arguments,e="",f=0;f<d.length;f++)e+=(16>d[f]?"0":"")+d[f].toString(16);return e.toLowerCase()}var a=toNumbers("f655ba9d09a112d4968c63579db590b4"),b=toNumbers("98344c2eee86c3994890592585b49f80"),c=toNumbers("ca1b72f96763db25e55f450d6b280299");document.cookie="__test="+toHex(slowAES.decrypt(c,2,a,b))+"; expires=Thu, 31-Dec-37 23:55:55 GMT; path=/"; location.href="https://yuuhimawari.infinityfreeapp.com/.well-known/nostr.json?i=1";</script><noscript>This site requires Javascript to work, please enable Javascript in your browser or use a browser with Javascript support</noscript></body></html>
```
kphrx /
npub1qs…khyzs
2023-02-21 06:54:16
in reply to nevent1q…t6kd
Author Public Key
npub1qschus97gtenwyznu37kxxrvz422xcka47updm2a7jlwr2kna42qjkhyzsPublished at
2023-02-21 06:54:16Event JSON
{
"id": "4ef25a07ac40f39957ba533aff965e8ca069a27a68bd259d316d8327a85d2497",
"pubkey": "04317e40be42f3371053e47d63186c1554a362ddafb816ed5df4bee1aad3ed54",
"created_at": 1676962456,
"kind": 1,
"tags": [
[
"e",
"ad3004282eee94c4f18879c2eaf98cc1abc50230e600437085063f881d74a0fd",
"",
"reply"
]
],
"content": "これでした\n\n初回アクセスでこのjsが含まれたhtmlを返しててcookieを計算した後にそのcookieつけてたらちゃんとファイル返すハックを置くことで外部アクセス遮断してるっぽいにゃあ\n\n```html\n\u003chtml\u003e\u003cbody\u003e\u003cscript type=\"text/javascript\" src=\"/aes.js\" \u003e\u003c/script\u003e\u003cscript\u003efunction toNumbers(d){var e=[];d.replace(/(..)/g,function(d){e.push(parseInt(d,16))});return e}function toHex(){for(var d=[],d=1==arguments.length\u0026\u0026arguments[0].constructor==Array?arguments[0]:arguments,e=\"\",f=0;f\u003cd.length;f++)e+=(16\u003ed[f]?\"0\":\"\")+d[f].toString(16);return e.toLowerCase()}var a=toNumbers(\"f655ba9d09a112d4968c63579db590b4\"),b=toNumbers(\"98344c2eee86c3994890592585b49f80\"),c=toNumbers(\"ca1b72f96763db25e55f450d6b280299\");document.cookie=\"__test=\"+toHex(slowAES.decrypt(c,2,a,b))+\"; expires=Thu, 31-Dec-37 23:55:55 GMT; path=/\"; location.href=\"https://yuuhimawari.infinityfreeapp.com/.well-known/nostr.json?i=1\";\u003c/script\u003e\u003cnoscript\u003eThis site requires Javascript to work, please enable Javascript in your browser or use a browser with Javascript support\u003c/noscript\u003e\u003c/body\u003e\u003c/html\u003e\n```",
"sig": "72dd8738d552077e6eaf581682561ea3f801959862d36cd14ea3fdbde93636bf7d9fbc212f1ff788f7ca316a94a68361d45c7e97f9d224ce9d942a7bf4e671ee"
}