软件研发 --- AI应用开发 之 AI生PPT
我开发的项目
https://gitee.com/null_465_7266/aippt
存在的问题
如何将我上次的图片嵌入ppt中
我的解决方法是在提示词中描述图片素材来自 互联网的位置 并将材料上传到大模型,如果模型不支持就用图片描述替代模型的理解能力 例如 ,这是我的一图片请插入到ppt的对应的位置,https://xzimg.0573ol.com/20251114/ida1_1763092458728.png
效果如下
我的提问是
给我生成一个关于安卓逆向简介的PPT。
产品分析
豆包
讯飞
Gamma
优 劣
可以依据文档,模板,导入的现有ppt生成 无法依据网络收集高质量内容
可以生成风格一致的图片插入 内容质量混乱
自定义内容
Aippt
收费
这是我能找的几款ai ppt产品,所有配置采用默认配置
个人感觉效果最好的依次是
Aippt
gamma
doubao
1.ai生成大致ppt两种方法,一种是依据已有模板生成内容后填充进去,一种是生成的自带样式
具体来讲
最好的解决方案是直接再ai大模型中就生成好ppt,但是我们普通人没有哪个能力,
其他解决方案有
ai操作每个ppt的绘制接口生成
内嵌式的格式转化ppt,比如我的提示词: 给我生成一个关于安卓逆向简介的PPT格式的网站页面,同时支持导出为pptx格式 这样提问的好处就是再生成html之初就嵌入pptx生成工具极大的简化了开发的难度,但是提升了模型的能力要求
用模板套用,依据模板的格式生成ppt的内容填充进去,这样的效果也不错,对模型的要求也不高
最差的是markdown转ppt,这样转换的只有图片和简单的字号大小
这里我采用的方案是
内嵌式的格式转化ppt
2.优化提示词,不同的提示词可以生成不同样式,比如
不加任何提示词时生成到的ppt是
我们发现它的特点是深色背景,五颜六色的文字,带有表情文字,文字的整体框线方框中左侧带有醒目竖线
通过优化提示词,明显可以发现样式提升了
极简提示词:
给我生成一个关于安卓逆向简介的PPT格式的网站页面,同时支持导出为pptx格式
请美化样式,显示为简洁,清爽,大方,整个背景用白色,不要使用渐变色,不要使用浅色而是用正色,颜色和样式要统一
复杂提示词:
给我生成一个关于安卓逆向简介的PPT格式的网站页面,同时支持导出为pptx格式。
工具采用
const CDN_URLS = ['https://unpkg.com/pptxgenjs@4.0.1/dist/pptxgen.bundle.js'];
样式方面
请美化样式,显示为简洁,清爽,大方
真实感增强:
0. 界面尺寸应模拟苹果的MACbook的pc,并让界面圆角化,使其更像真实的电脑界面。
1. 使用真实的 UI 图片,而非占位符图片(可从 Unsplash、Pexels、Apple 官方 UI 资源中选择)。
2.不要使用任何渐变色,杂色和小图标,风格应该统一、美观、护眼、经典
3.文字颜色和背景颜色要统一,不要使用渐变色、五颜六色、花里胡哨的的文字
生成的效果如下
问题如下
ai理解成了将界面做成苹果界面
ppt设计呆板落后
依据上面问题,再次优化的提示词,
给我生成一个关于安卓逆向简介的PPT格式的网站页面,同时支持导出为pptx格式。
工具采用
const CDN_URLS = ['https://unpkg.com/pptxgenjs@4.0.1/dist/pptxgen.bundle.js'];
内容方面
1.文字内容要充实可行,拒绝空话套话抽象的话,用通俗语言解释
2.能用工具和数字证实的地方就快要尽可能用实用工具
样式方面
我的ppt要求如下 样式方面 请美化样式,显示为简洁,清爽,大方
ppt整体的设计界面尺寸应模拟苹果的MACbook的pc的大小布局设计
ppt整体的设计界面风格应该采用苹果电脑的ui设计规范,组件用透明玻璃效果,要充分展示ppt高级美感
ppt整体的设计使用真实的 UI 图片,而非占位符图片(可从 Unsplash、Pexels、Apple 官方 UI 资源中选择)。
ppt整体的设计不要使用任何渐变色,杂色,用正色,体现商务,正式,简约风格
ppt整体的设计风格应该统一、美观
ppt的背景不要使用深色这样不美观
claude sonnet回复
<!DOCTYPE html> <html lang="zh-CN"> <head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <title>安卓逆向工程简介</title> <style> * { margin: 0; padding: 0; box-sizing: border-box; } body { font-family: -apple-system, BlinkMacSystemFont, 'SF Pro Display', 'Helvetica Neue', Arial, sans-serif; background: #f5f5f7; min-height: 100vh; color: #1d1d1f; } /* 顶部控制栏 */ .top-bar { position: fixed; top: 0; left: 0; right: 0; z-index: 1000; height: 52px; background: rgba(255, 255, 255, 0.85); backdrop-filter: blur(20px); -webkit-backdrop-filter: blur(20px); border-bottom: 1px solid rgba(0, 0, 0, 0.08); display: flex; align-items: center; justify-content: space-between; padding: 0 24px; } .top-bar-left { display: flex; align-items: center; gap: 12px; } .app-icon { width: 28px; height: 28px; background: #000; border-radius: 7px; display: flex; align-items: center; justify-content: center; color: white; font-size: 14px; font-weight: 700; } .app-title { font-size: 14px; font-weight: 600; color: #1d1d1f; letter-spacing: -0.2px; } .top-bar-center { display: flex; align-items: center; gap: 8px; } .slide-indicator { font-size: 13px; color: #6e6e73; font-weight: 500; } .nav-btn { width: 28px; height: 28px; border: none; background: rgba(0, 0, 0, 0.06); border-radius: 6px; cursor: pointer; display: flex; align-items: center; justify-content: center; color: #1d1d1f; font-size: 12px; transition: all 0.2s; } .nav-btn:hover { background: rgba(0, 0, 0, 0.12); } .export-btn { height: 32px; padding: 0 16px; background: #000; color: white; border: none; border-radius: 8px; font-size: 13px; font-weight: 600; cursor: pointer; display: flex; align-items: center; gap: 6px; transition: all 0.2s; letter-spacing: -0.2px; } .export-btn:hover { background: #333; transform: translateY(-1px); } .export-btn:active { transform: translateY(0); } /* 左侧缩略图栏 */ .sidebar { position: fixed; left: 0; top: 52px; bottom: 0; width: 180px; background: rgba(255, 255, 255, 0.7); backdrop-filter: blur(20px); -webkit-backdrop-filter: blur(20px); border-right: 1px solid rgba(0, 0, 0, 0.08); overflow-y: auto; padding: 16px 12px; display: flex; flex-direction: column; gap: 8px; } .sidebar::-webkit-scrollbar { width: 4px; } .sidebar::-webkit-scrollbar-track { background: transparent; } .sidebar::-webkit-scrollbar-thumb { background: rgba(0, 0, 0, 0.15); border-radius: 2px; } .thumb-item { cursor: pointer; border-radius: 8px; overflow: hidden; border: 2px solid transparent; transition: all 0.2s; background: white; box-shadow: 0 1px 4px rgba(0, 0, 0, 0.08); } .thumb-item:hover { border-color: rgba(0, 0, 0, 0.2); } .thumb-item.active { border-color: #000; box-shadow: 0 2px 12px rgba(0, 0, 0, 0.15); } .thumb-inner { width: 100%; aspect-ratio: 16/9; padding: 6px; display: flex; flex-direction: column; justify-content: center; align-items: flex-start; position: relative; overflow: hidden; } .thumb-num { position: absolute; bottom: 4px; right: 6px; font-size: 9px; color: #6e6e73; font-weight: 600; } .thumb-title { font-size: 7px; font-weight: 700; color: #1d1d1f; line-height: 1.2; max-width: 100%; overflow: hidden; } .thumb-subtitle { font-size: 5px; color: #6e6e73; margin-top: 2px; } /* 主内容区 */ .main-content { margin-left: 180px; margin-top: 52px; padding: 40px; display: flex; flex-direction: column; align-items: center; min-height: calc(100vh - 52px); } /* PPT 幻灯片容器 */ .slide-wrapper { width: 100%; max-width: 960px; position: relative; } .slide { display: none; width: 100%; aspect-ratio: 16/9; background: white; border-radius: 16px; box-shadow: 0 4px 24px rgba(0, 0, 0, 0.08), 0 1px 4px rgba(0, 0, 0, 0.04); overflow: hidden; position: relative; animation: slideIn 0.3s ease; } .slide.active { display: block; } @keyframes slideIn { from { opacity: 0; transform: translateY(8px); } to { opacity: 1; transform: translateY(0); } } /* ============================================ 幻灯片内部样式 ============================================ */ /* 通用布局 */ .slide-content { width: 100%; height: 100%; padding: 48px 56px; display: flex; flex-direction: column; position: relative; } /* 装饰线条 */ .accent-line { width: 40px; height: 3px; background: #000; border-radius: 2px; margin-bottom: 16px; } /* 标题幻灯片 - Slide 1 */ .slide-1 { background: #ffffff; } .slide-1 .content-area { width: 100%; height: 100%; display: flex; flex-direction: column; justify-content: center; padding: 48px 56px; position: relative; } .slide-1 .bg-shape { position: absolute; top: -60px; right: -60px; width: 400px; height: 400px; border-radius: 50%; background: rgba(0, 0, 0, 0.03); pointer-events: none; } .slide-1 .bg-shape-2 { position: absolute; bottom: -80px; left: 40%; width: 300px; height: 300px; border-radius: 50%; background: rgba(0, 0, 0, 0.02); pointer-events: none; } .tag-badge { display: inline-flex; align-items: center; gap: 6px; background: #f5f5f7; border: 1px solid rgba(0, 0, 0, 0.08); border-radius: 20px; padding: 4px 12px; font-size: 11px; font-weight: 600; color: #6e6e73; letter-spacing: 0.4px; text-transform: uppercase; margin-bottom: 20px; width: fit-content; } .main-heading { font-size: 52px; font-weight: 700; color: #1d1d1f; letter-spacing: -2px; line-height: 1.05; margin-bottom: 16px; } .main-heading span { color: #6e6e73; } .sub-heading { font-size: 18px; color: #6e6e73; font-weight: 400; line-height: 1.5; max-width: 480px; letter-spacing: -0.3px; } .slide-1 .meta-row { position: absolute; bottom: 40px; left: 56px; display: flex; align-items: center; gap: 20px; } .meta-item { display: flex; align-items: center; gap: 6px; font-size: 12px; color: #6e6e73; font-weight: 500; } .meta-dot { width: 4px; height: 4px; border-radius: 50%; background: #d2d2d7; } .slide-1 .right-visual { position: absolute; right: 56px; top: 50%; transform: translateY(-50%); width: 280px; } .glass-card { background: rgba(255, 255, 255, 0.7); backdrop-filter: blur(20px); -webkit-backdrop-filter: blur(20px); border: 1px solid rgba(0, 0, 0, 0.08); border-radius: 16px; padding: 20px; box-shadow: 0 4px 20px rgba(0, 0, 0, 0.06); } .code-block { background: #f5f5f7; border-radius: 10px; padding: 14px; font-family: 'SF Mono', 'Fira Code', monospace; font-size: 11px; line-height: 1.6; color: #1d1d1f; border: 1px solid rgba(0, 0, 0, 0.06); } .code-line { display: block; } .code-comment { color: #6e6e73; } .code-keyword { color: #bf5af2; } .code-string { color: #34c759; } .code-function { color: #007aff; } /* 通用章节标题 */ .section-header { margin-bottom: 32px; } .section-label { font-size: 11px; font-weight: 700; color: #6e6e73; letter-spacing: 1px; text-transform: uppercase; margin-bottom: 8px; } .section-title { font-size: 32px; font-weight: 700; color: #1d1d1f; letter-spacing: -1px; line-height: 1.1; } /* 卡片网格 */ .card-grid { display: grid; gap: 16px; } .card-grid-2 { grid-template-columns: 1fr 1fr; } .card-grid-3 { grid-template-columns: 1fr 1fr 1fr; } .info-card { background: #f5f5f7; border-radius: 12px; padding: 20px; border: 1px solid rgba(0, 0, 0, 0.05); position: relative; overflow: hidden; } .info-card.glass { background: rgba(255, 255, 255, 0.6); backdrop-filter: blur(20px); -webkit-backdrop-filter: blur(20px); border: 1px solid rgba(0, 0, 0, 0.08); box-shadow: 0 2px 12px rgba(0, 0, 0, 0.04); } .card-icon { width: 36px; height: 36px; background: white; border-radius: 10px; display: flex; align-items: center; justify-content: center; font-size: 18px; margin-bottom: 12px; box-shadow: 0 1px 4px rgba(0, 0, 0, 0.08); } .card-title { font-size: 14px; font-weight: 700; color: #1d1d1f; margin-bottom: 6px; letter-spacing: -0.3px; } .card-desc { font-size: 12px; color: #6e6e73; line-height: 1.5; letter-spacing: -0.1px; } /* 工具列表 */ .tool-list { display: flex; flex-direction: column; gap: 10px; } .tool-item { display: flex; align-items: center; gap: 14px; padding: 14px 16px; background: #f5f5f7; border-radius: 10px; border: 1px solid rgba(0, 0, 0, 0.05); } .tool-item.glass { background: rgba(255, 255, 255, 0.6); backdrop-filter: blur(20px); -webkit-backdrop-filter: blur(20px); border: 1px solid rgba(0, 0, 0, 0.08); } .tool-icon-box { width: 32px; height: 32px; background: white; border-radius: 8px; display: flex; align-items: center; justify-content: center; font-size: 16px; flex-shrink: 0; box-shadow: 0 1px 3px rgba(0, 0, 0, 0.1); } .tool-info { flex: 1; } .tool-name { font-size: 13px; font-weight: 700; color: #1d1d1f; letter-spacing: -0.2px; } .tool-desc { font-size: 11px; color: #6e6e73; margin-top: 2px; } .tool-tag { font-size: 10px; font-weight: 600; color: #6e6e73; background: rgba(0, 0, 0, 0.06); padding: 2px 8px; border-radius: 4px; white-space: nowrap; } /* 流程步骤 */ .step-flow { display: flex; align-items: flex-start; gap: 0; position: relative; } .step-item { flex: 1; display: flex; flex-direction: column; align-items: center; position: relative; } .step-connector { position: absolute; top: 18px; left: 50%; right: -50%; height: 1px; background: rgba(0, 0, 0, 0.1); } .step-num { width: 36px; height: 36px; border-radius: 50%; background: #1d1d1f; color: white; display: flex; align-items: center; justify-content: center; font-size: 14px; font-weight: 700; position: relative; z-index: 1; margin-bottom: 10px; } .step-title { font-size: 12px; font-weight: 700; color: #1d1d1f; text-align: center; margin-bottom: 4px; } .step-desc { font-size: 10px; color: #6e6e73; text-align: center; line-height: 1.4; padding: 0 4px; } /* 数据统计 */ .stat-grid { display: grid; grid-template-columns: repeat(3, 1fr); gap: 16px; } .stat-card { background: #f5f5f7; border-radius: 12px; padding: 20px; text-align: center; border: 1px solid rgba(0, 0, 0, 0.05); } .stat-num { font-size: 32px; font-weight: 700; color: #1d1d1f; letter-spacing: -1px; line-height: 1; margin-bottom: 4px; } .stat-label { font-size: 11px; color: #6e6e73; font-weight: 500; } /* 对比表格 */ .compare-table { width: 100%; border-collapse: separate; border-spacing: 0; font-size: 12px; } .compare-table th { background: #f5f5f7; padding: 10px 14px; font-weight: 700; color: #1d1d1f; text-align: left; border-bottom: 1px solid rgba(0, 0, 0, 0.08); } .compare-table th:first-child { border-radius: 8px 0 0 0; } .compare-table th:last-child { border-radius: 0 8px 0 0; } .compare-table td { padding: 10px 14px; color: #6e6e73; border-bottom: 1px solid rgba(0, 0, 0, 0.05); } .compare-table tr:last-child td { border-bottom: none; } .compare-table tr:nth-child(even) td { background: rgba(0, 0, 0, 0.01); } .tag-pill { display: inline-block; padding: 2px 8px; border-radius: 4px; font-size: 10px; font-weight: 600; background: rgba(0, 0, 0, 0.06); color: #6e6e73; } .tag-pill.highlight { background: #1d1d1f; color: white; } /* 底部页码 */ .slide-footer { position: absolute; bottom: 24px; left: 56px; right: 56px; display: flex; align-items: center; justify-content: space-between; } .footer-brand { font-size: 11px; font-weight: 700; color: #d2d2d7; letter-spacing: 0.5px; } .footer-page { font-size: 11px; color: #d2d2d7; font-weight: 500; } .footer-line { flex: 1; height: 1px; background: rgba(0, 0, 0, 0.06); margin: 0 16px; } /* 进度指示器 */ .slide-progress { display: flex; justify-content: center; gap: 6px; margin-top: 20px; flex-wrap: wrap; } .progress-dot { width: 6px; height: 6px; border-radius: 50%; background: rgba(0, 0, 0, 0.15); cursor: pointer; transition: all 0.2s; } .progress-dot.active { background: #000; transform: scale(1.3); } /* 键盘快捷键提示 */ .keyboard-hint { text-align: center; margin-top: 12px; font-size: 11px; color: #6e6e73; } .kbd { display: inline-block; padding: 1px 6px; background: rgba(0, 0, 0, 0.06); border-radius: 4px; font-size: 10px; font-weight: 600; border: 1px solid rgba(0, 0, 0, 0.1); } /* 右侧面板 (for 2-col layouts) */ .two-col { display: grid; grid-template-columns: 1fr 1fr; gap: 24px; flex: 1; } .col-left, .col-right { display: flex; flex-direction: column; gap: 12px; } /* 时间线 */ .timeline { display: flex; flex-direction: column; gap: 0; position: relative; } .timeline::before { content: ''; position: absolute; left: 15px; top: 16px; bottom: 16px; width: 1px; background: rgba(0, 0, 0, 0.1); } .timeline-item { display: flex; gap: 16px; padding: 8px 0; position: relative; } .timeline-dot { width: 31px; height: 31px; border-radius: 50%; background: white; border: 2px solid rgba(0, 0, 0, 0.15); display: flex; align-items: center; justify-content: center; font-size: 12px; flex-shrink: 0; position: relative; z-index: 1; } .timeline-dot.active-dot { border-color: #000; background: #000; color: white; } .timeline-content { flex: 1; padding-top: 4px; } .timeline-title { font-size: 13px; font-weight: 700; color: #1d1d1f; } .timeline-desc { font-size: 11px; color: #6e6e73; margin-top: 2px; line-height: 1.4; } /* 警告/提示框 */ .alert-box { background: #fff8e1; border: 1px solid rgba(0, 0, 0, 0.08); border-radius: 10px; padding: 14px 16px; display: flex; gap: 10px; align-items: flex-start; } .alert-icon { font-size: 16px; flex-shrink: 0; } .alert-text { font-size: 12px; color: #6e6e73; line-height: 1.5; } .alert-text strong { color: #1d1d1f; } /* 大图片区 */ .visual-panel { border-radius: 12px; overflow: hidden; position: relative; background: #f5f5f7; } .visual-panel img { width: 100%; height: 100%; object-fit: cover; } .visual-overlay { position: absolute; bottom: 0; left: 0; right: 0; background: rgba(255, 255, 255, 0.9); backdrop-filter: blur(10px); padding: 12px 16px; } .visual-overlay-title { font-size: 12px; font-weight: 700; color: #1d1d1f; } .visual-overlay-desc { font-size: 10px; color: #6e6e73; } /* 导出加载 */ .export-loading { position: fixed; inset: 0; background: rgba(255, 255, 255, 0.9); backdrop-filter: blur(10px); display: flex; flex-direction: column; align-items: center; justify-content: center; z-index: 9999; gap: 16px; } .export-loading.hidden { display: none; } .loading-spinner { width: 40px; height: 40px; border: 3px solid rgba(0, 0, 0, 0.1); border-top-color: #000; border-radius: 50%; animation: spin 0.8s linear infinite; } @keyframes spin { to { transform: rotate(360deg); } } .loading-text { font-size: 16px; font-weight: 600; color: #1d1d1f; } .loading-sub { font-size: 13px; color: #6e6e73; } /* 响应式 */ @media (max-width: 768px) { .sidebar { display: none; } .main-content { margin-left: 0; padding: 60px 16px 20px; } } </style> </head> <body> <!-- 导出加载提示 --> <div class="export-loading hidden" id="exportLoading"> <div class="loading-spinner"></div> <div class="loading-text">正在生成 PPTX 文件</div> <div class="loading-sub">请稍候,这可能需要几秒钟...</div> </div> <!-- 顶部控制栏 --> <div class="top-bar"> <div class="top-bar-left"> <div class="app-icon">AR</div> <div class="app-title">安卓逆向工程简介</div> </div> <div class="top-bar-center"> <button class="nav-btn" onclick="prevSlide()" title="上一页">←</button> <span class="slide-indicator" id="slideIndicator">1 / 10</span> <button class="nav-btn" onclick="nextSlide()" title="下一页">→</button> </div> <button class="export-btn" onclick="exportPPTX()"> ↓ 导出 PPTX </button> </div> <!-- 左侧缩略图 --> <div class="sidebar" id="sidebar"> <!-- 由 JS 生成 --> </div> <!-- 主内容区 --> <div class="main-content"> <div class="slide-wrapper"> <!-- ======= SLIDE 1: 封面 ======= --> <div class="slide slide-1 active" id="slide-1"> <div class="bg-shape"></div> <div class="bg-shape-2"></div> <div class="content-area"> <div class="tag-badge">🔍 技术入门指南 · 2024</div> <div class="main-heading">安卓逆向<br><span>工程简介</span></div> <div class="sub-heading">了解 Android APK 如何被分析、解构与研究——从工具到流程,系统性入门</div> <div class="meta-row"> <div class="meta-item">🎯 适合初学者</div> <div class="meta-dot"></div> <div class="meta-item">📱 Android 平台</div> <div class="meta-dot"></div> <div class="meta-item">⏱ 预计阅读 15 分钟</div> </div> </div> <div class="right-visual"> <div class="glass-card"> <div style="font-size:11px;font-weight:700;color:#1d1d1f;margin-bottom:10px;">📄 APK 结构</div> <div class="code-block"> <span class="code-line"><span class="code-comment"># APK 本质是 ZIP 文件</span></span> <span class="code-line">app.apk/</span> <span class="code-line">├── <span class="code-function">classes.dex</span> <span class="code-comment"># 代码</span></span> <span class="code-line">├── <span class="code-string">res/</span> <span class="code-comment"># 资源</span></span> <span class="code-line">├── <span class="code-keyword">lib/</span> <span class="code-comment"># SO库</span></span> <span class="code-line">└── AndroidManifest.xml</span> </div> </div> </div> <div class="slide-footer"> <div class="footer-brand">ANDROID REVERSE</div> <div class="footer-line"></div> <div class="footer-page">01 / 10</div> </div> </div> <!-- ======= SLIDE 2: 什么是逆向工程 ======= --> <div class="slide" id="slide-2"> <div class="slide-content"> <div class="section-header"> <div class="section-label">Chapter 01</div> <div class="accent-line"></div> <div class="section-title">什么是安卓逆向工程?</div> </div> <div class="two-col" style="flex:1;"> <div class="col-left"> <div class="info-card glass" style="flex:1;"> <div class="card-icon">🔧</div> <div class="card-title">通俗理解</div> <div class="card-desc"> 你下载了一个 APP,但没有源代码。逆向工程就是把这个 APP 的 <strong style="color:#1d1d1f">classes.dex(编译后的代码文件)</strong> 还原回你能读懂的 Java/Smali 代码,就像把熟食还原成菜谱。 </div> </div> <div class="info-card glass" style="flex:1;"> <div class="card-icon">⚖️</div> <div class="card-title">合法场景</div> <div class="card-desc"> • 安全研究:发现 APP 漏洞并上报<br> • 恶意软件分析:看病毒干了什么<br> • 兼容性测试:协议分析<br> • 自己的 APP:忘记源码时恢复 </div> </div> </div> <div class="col-right"> <div class="info-card" style="background:#f5f5f7;flex:1;"> <div style="font-size:12px;font-weight:700;color:#1d1d1f;margin-bottom:12px;">📦 Android 代码编译链</div> <div style="display:flex;flex-direction:column;gap:6px;"> <div style="background:white;border-radius:8px;padding:10px 14px;border:1px solid rgba(0,0,0,0.06);"> <div style="font-size:11px;font-weight:700;color:#1d1d1f;">.java / .kt 源码</div> <div style="font-size:10px;color:#6e6e73;">开发者写的代码</div> </div> <div style="text-align:center;font-size:11px;color:#6e6e73;">↓ javac / kotlinc 编译</div> <div style="background:white;border-radius:8px;padding:10px 14px;border:1px solid rgba(0,0,0,0.06);"> <div style="font-size:11px;font-weight:700;color:#1d1d1f;">.class 字节码</div> <div style="font-size:10px;color:#6e6e73;">JVM 字节码</div> </div> <div style="text-align:center;font-size:11px;color:#6e6e73;">↓ d8 / dx 转换</div> <div style="background:#1d1d1f;border-radius:8px;padding:10px 14px;"> <div style="font-size:11px;font-weight:700;color:white;">classes.dex</div> <div style="font-size:10px;color:rgba(255,255,255,0.5);">Dalvik 字节码 — 逆向目标</div> </div> </div> </div> </div> </div> <div class="slide-footer"> <div class="footer-brand">ANDROID REVERSE</div> <div class="footer-line"></div> <div class="footer-page">02 / 10</div> </div> </div> </div> <!-- ======= SLIDE 3: 核心工具 ======= --> <div class="slide" id="slide-3"> <div class="slide-content"> <div class="section-header"> <div class="section-label">Chapter 02</div> <div class="accent-line"></div> <div class="section-title">必备逆向工具全景</div> </div> <div class="tool-list" style="flex:1;justify-content:center;gap:8px;"> <div class="tool-item glass"> <div class="tool-icon-box">🔓</div> <div class="tool-info"> <div class="tool-name">jadx</div> <div class="tool-desc">把 APK/dex 直接反编译成可读的 Java 代码,带 GUI 界面,是新手首选工具</div> </div> <div class="tool-tag">反编译</div> </div> <div class="tool-item glass"> <div class="tool-icon-box">🔨</div> <div class="tool-info"> <div class="tool-name">apktool</div> <div class="tool-desc">解包 APK → 修改 Smali 代码 → 重新打包。版本 v2.9.3,用于修改和回编译</div> </div> <div class="tool-tag">重打包</div> </div> <div class="tool-item glass"> <div class="tool-icon-box">🕵️</div> <div class="tool-info"> <div class="tool-name">Frida</div> <div class="tool-desc">动态插桩框架,用 JS 脚本在运行中 hook 任意函数,实时修改返回值,最强动态分析工具</div> </div> <div class="tool-tag">动态分析</div> </div> <div class="tool-item glass"> <div class="tool-icon-box">🌐</div> <div class="tool-info"> <div class="tool-name">Charles / mitmproxy</div> <div class="tool-desc">抓取 APP 的 HTTPS 网络请求,看它偷偷发了什么数据到服务器</div> </div> <div class="tool-tag">流量分析</div> </div> <div class="tool-item glass"> <div class="tool-icon-box">🏗️</div> <div class="tool-info"> <div class="tool-name">IDA Pro / Ghidra</div> <div class="tool-desc">分析 .so 原生库(C/C++ 编译的 ARM 代码),Ghidra 免费开源,NSA 出品</div> </div> <div class="tool-tag">Native 分析</div> </div> </div> <div class="slide-footer"> <div class="footer-brand">ANDROID REVERSE</div> <div class="footer-line"></div> <div class="footer-page">03 / 10</div> </div> </div> </div> <!-- ======= SLIDE 4: 逆向工作流 ======= --> <div class="slide" id="slide-4"> <div class="slide-content"> <div class="section-header"> <div class="section-label">Chapter 03</div> <div class="accent-line"></div> <div class="section-title">标准逆向分析流程</div> </div> <div class="step-flow" style="margin-bottom:24px;"> <div class="step-item"> <div class="step-num">1</div> <div class="step-connector"></div> <div class="step-title">获取 APK</div> <div class="step-desc">adb pull 或从手机提取,使用 APKPure 等平台</div> </div> <div class="step-item"> <div class="step-num">2</div> <div class="step-connector"></div> <div class="step-title">静态分析</div> <div class="step-desc">用 jadx 查看代码结构、权限声明、关键类</div> </div> <div class="step-item"> <div class="step-num">3</div> <div class="step-connector"></div> <div class="step-title">定位目标</div> <div class="step-desc">搜索关键词如 "login" "check" "encrypt"</div> </div> <div class="step-item"> <div class="step-num">4</div> <div class="step-connector"></div> <div class="step-title">动态验证</div> <div class="step-desc">Frida hook 目标函数,打印实参和返回值</div> </div> <div class="step-item"> <div class="step-num">5</div> <div style="display:none" class="step-connector"></div> <div class="step-title">整理结论</div> <div class="step-desc">记录发现的逻辑、接口、加密算法</div> </div> </div> <div class="card-grid card-grid-3" style="flex:1;align-content:start;gap:12px;"> <div class="info-card glass"> <div class="card-title">🔍 常用 adb 命令</div> <div class="code-block" style="font-size:10px;"> <span class="code-line"><span class="code-comment"># 列出设备包名</span></span> <span class="code-line">adb shell pm list packages</span> <span class="code-line"></span> <span class="code-line"><span class="code-comment"># 提取 APK</span></span> <span class="code-line">adb pull /data/app/xxx/base.apk</span> </div> </div> <div class="info-card glass"> <div class="card-title">🪝 Frida Hook 模板</div> <div class="code-block" style="font-size:10px;"> <span class="code-line">Java.perform(<span class="code-keyword">function</span>() {</span> <span class="code-line"> <span class="code-keyword">var</span> Cls = Java.use(<span class="code-string">"com.app.Login"</span>);</span> <span class="code-line"> Cls.check.implementation = <span class="code-keyword">function</span>() {</span> <span class="code-line"> <span class="code-keyword">return</span> <span class="code-function">true</span>; <span class="code-comment">// 绕过</span></span> <span class="code-line"> };</span> <span class="code-line">});</span> </div> </div> <div class="info-card glass"> <div class="card-title">📋 分析清单</div> <div style="display:flex;flex-direction:column;gap:4px;"> <div style="font-size:11px;color:#6e6e73;display:flex;gap:6px;align-items:center;"><span>☑</span> AndroidManifest 权限</div> <div style="font-size:11px;color:#6e6e73;display:flex;gap:6px;align-items:center;"><span>☑</span> 网络请求地址</div> <div style="font-size:11px;color:#6e6e73;display:flex;gap:6px;align-items:center;"><span>☑</span> 本地存储内容</div> <div style="font-size:11px;color:#6e6e73;display:flex;gap:6px;align-items:center;"><span>☑</span> 加密算法类型</div> <div style="font-size:11px;color:#6e6e73;display:flex;gap:6px;align-items:center;"><span>☑</span> 混淆程度评估</div> </div> </div> </div> <div class="slide-footer"> <div class="footer-brand">ANDROID REVERSE</div> <div class="footer-line"></div> <div class="footer-page">04 / 10</div> </div> </div> </div> <!-- ======= SLIDE 5: Smali 语言 ======= --> <div class="slide" id="slide-5"> <div class="slide-content"> <div class="section-header"> <div class="section-label">Chapter 04</div> <div class="accent-line"></div> <div class="section-title">读懂 Smali —— 安卓汇编语言</div> </div> <div class="two-col" style="flex:1;"> <div> <div style="font-size:12px;font-weight:700;color:#6e6e73;margin-bottom:8px;">原始 Java 代码</div> <div class="code-block" style="font-size:11px;line-height:1.7;"> <span class="code-line"><span class="code-keyword">public boolean</span> <span class="code-function">isVip</span>(String uid) {</span> <span class="code-line"> <span class="code-keyword">if</span> (uid.equals(<span class="code-string">"admin"</span>)) {</span> <span class="code-line"> <span class="code-keyword">return true</span>;</span> <span class="code-line"> }</span> <span class="code-line"> <span class="code-keyword">return false</span>;</span> <span class="code-line">}</span> </div> <div style="margin-top:16px;font-size:12px;font-weight:700;color:#6e6e73;margin-bottom:8px;">关键寄存器规则</div> <div style="display:flex;flex-direction:column;gap:6px;"> <div style="background:#f5f5f7;border-radius:8px;padding:8px 12px;font-size:11px;display:flex;gap:12px;"> <span style="font-family:monospace;font-weight:700;color:#1d1d1f;min-width:32px;">v0</span> <span style="color:#6e6e73;">本地变量寄存器,从 v0 开始编号</span> </div> <div style="background:#f5f5f7;border-radius:8px;padding:8px 12px;font-size:11px;display:flex;gap:12px;"> <span style="font-family:monospace;font-weight:700;color:#1d1d1f;min-width:32px;">p0</span> <span style="color:#6e6e73;">参数寄存器,p0 = this(对象方法)</span> </div> <div style="background:#f5f5f7;border-radius:8px;padding:8px 12px;font-size:11px;display:flex;gap:12px;"> <span style="font-family:monospace;font-weight:700;color:#1d1d1f;min-width:32px;">p1</span> <span style="color:#6e6e73;">第一个参数,上例中 p1 = uid</span> </div> </div> </div> <div> <div style="font-size:12px;font-weight:700;color:#6e6e73;margin-bottom:8px;">对应 Smali 代码</div> <div class="code-block" style="font-size:10px;line-height:1.7;"> <span class="code-line"><span class="code-comment">.method public isVip(Ljava/lang/String;)Z</span></span> <span class="code-line"> .registers 3 <span class="code-comment"># v0, p0(this), p1(uid)</span></span> <span class="code-line"></span> <span class="code-line"> const-string v0, <span class="code-string">"admin"</span></span> <span class="code-line"> invoke-virtual {p1, v0},</span> <span class="code-line"> Ljava/lang/String;->equals(Ljava/lang/Object;)Z</span> <span class="code-line"> move-result v0</span> <span class="code-line"> <span class="code-keyword">if-eqz</span> v0, :cond_0 <span class="code-comment"># 若不等则跳转</span></span> <span class="code-line"></span> <span class="code-line"> const/4 v0, <span class="code-function">0x1</span> <span class="code-comment"># true</span></span> <span class="code-line"> return v0</span> <span class="code-line"></span> <span class="code-line"> :cond_0</span> <span class="code-line"> const/4 v0, <span class="code-function">0x0</span> <span class="code-comment"># false</span></span> <span class="code-line"> return v0</span> <span class="code-line">.end method</span> </div> <div style="margin-top:10px;" class="alert-box"> <div class="alert-icon">💡</div> <div class="alert-text">把 <strong>if-eqz 改成 if-nez</strong>,或直接把 const/4 v0, 0x0 改成 0x1,即可绕过验证</div> </div> </div> </div> <div class="slide-footer"> <div class="footer-brand">ANDROID REVERSE</div> <div class="footer-line"></div> <div class="footer-page">05 / 10</div> </div> </div> </div> <!-- ======= SLIDE 6: 常见保护手段 ======= --> <div class="slide" id="slide-6"> <div class="slide-content"> <div class="section-header"> <div class="section-label">Chapter 05</div> <div class="accent-line"></div> <div class="section-title">APP 的 6 大保护机制</div> </div> <div class="card-grid card-grid-3" style="flex:1;gap:12px;align-content:start;"> <div class="info-card glass"> <div class="card-icon">🌫️</div> <div class="card-title">代码混淆 (ProGuard)</div> <div class="card-desc">把 <code style="font-size:10px;background:#f0f0f0;padding:1px 4px;border-radius:3px;">LoginActivity</code> 改成 <code style="font-size:10px;background:#f0f0f0;padding:1px 4px;border-radius:3px;">a.b.c</code>,增加阅读难度,但逻辑不变,jadx 仍可反编译</div> </div> <div class="info-card glass"> <div class="card-icon">📦</div> <div class="card-title">加壳 (Packing)</div> <div class="card-desc">把真正的 dex 加密后隐藏,运行时再解密。常见壳:梆梆、360加固、腾讯乐固。需要先脱壳再分析</div> </div> <div class="info-card glass"> <div class="card-icon">🔐</div> <div class="card-title">SSL Pinning</div> <div class="card-desc">APP 内置证书指纹,只接受特定证书,阻止中间人抓包。可用 Frida 脚本或 TrustMeAlready 模块绕过</div> </div> <div class="info-card glass"> <div class="card-icon">🔍</div> <div class="card-title">Root / 调试检测</div> <div class="card-desc">检测 /system/bin/su 文件是否存在、是否可被调试。可用 Magisk DenyList 或 RootBeer 绕过模块对抗</div> </div> <div class="info-card glass"> <div class="card-icon">⚡</div> <div class="card-title">VMP 虚拟机保护</div> <div class="card-desc">核心算法被自定义虚拟机解释执行,指令集完全私有,是目前最难破解的保护方式</div> </div> <div class="info-card glass"> <div class="card-icon">✅</div> <div class="card-title">签名校验</div> <div class="card-desc">APP 运行时校验自身签名,修改 smali 重打包后签名变了会直接闪退。需 hook <code style="font-size:10px;background:#f0f0f0;padding:1px 4px;border-radius:3px;">getSignatures</code> 返回原始值</div> </div> </div> <div class="slide-footer"> <div class="footer-brand">ANDROID REVERSE</div> <div class="footer-line"></div> <div class="footer-page">06 / 10</div> </div> </div> </div> <!-- ======= SLIDE 7: 动态分析 Frida ======= --> <div class="slide" id="slide-7"> <div class="slide-content"> <div class="section-header"> <div class="section-label">Chapter 06</div> <div class="accent-line"></div> <div class="section-title">Frida 动态分析实战</div> </div> <div class="two-col" style="flex:1;"> <div style="display:flex;flex-direction:column;gap:12px;"> <div class="info-card" style="background:#f5f5f7;"> <div style="font-size:12px;font-weight:700;color:#1d1d1f;margin-bottom:8px;">① 环境搭建</div> <div class="code-block" style="font-size:10px;line-height:1.7;"> <span class="code-line"><span class="code-comment"># 安装 frida 工具</span></span> <span class="code-line">pip install frida-tools</span> <span class="code-line"></span> <span class="code-line"><span class="code-comment"># 推送 frida-server 到手机</span></span> <span class="code-line">adb push frida-server /data/local/tmp/</span> <span class="code-line">adb shell "chmod 755 /data/local/tmp/frida-server"</span> <span class="code-line">adb shell "/data/local/tmp/frida-server &"</span> </div> </div> <div class="info-card" style="background:#f5f5f7;"> <div style="font-size:12px;font-weight:700;color:#1d1d1f;margin-bottom:8px;">② 注入脚本</div> <div class="code-block" style="font-size:10px;line-height:1.7;"> <span class="code-line"><span class="code-comment"># 对目标包名注入脚本</span></span> <span class="code-line">frida -U -f <span class="code-string">com.target.app</span> \</span> <span class="code-line"> -l <span class="code-string">hook.js</span> --no-pause</span> </div> </div> </div> <div style="display:flex;flex-direction:column;gap:12px;"> <div class="info-card" style="background:#f5f5f7;flex:1;"> <div style="font-size:12px;font-weight:700;color:#1d1d1f;margin-bottom:8px;">③ Hook 实战脚本:追踪加密函数</div> <div class="code-block" style="font-size:10px;line-height:1.7;"> <span class="code-line">Java.perform(<span class="code-keyword">function</span>() {</span> <span class="code-line"> <span class="code-comment">// Hook MessageDigest (MD5/SHA)</span></span> <span class="code-line"> <span class="code-keyword">var</span> MD = Java.use(<span class="code-string">"java.security.MessageDigest"</span>);</span> <span class="code-line"> MD.update.overload(<span class="code-string">"[B"</span>).implementation = <span class="code-keyword">function</span>(b) {</span> <span class="code-line"> console.log(<span class="code-string">"[*] MD input: "</span> + Java.use(<span class="code-string">"java.lang.String"</span>)</span> <span class="code-line"> .$new(b));</span> <span class="code-line"> <span class="code-keyword">return</span> <span class="code-function">this</span>.update(b);</span> <span class="code-line"> };</span> <span class="code-line"></span> <span class="code-line"> <span class="code-comment">// 查看调用栈,定位代码位置</span></span> <span class="code-line"> console.log(Java.use(<span class="code-string">"android.util.Log"</span>)</span> <span class="code-line"> .getStackTraceString(</span> <span class="code-line"> Java.use(<span class="code-string">"java.lang.Exception"</span>).$new()));</span> <span class="code-line">});</span> </div> </div> </div> </div> <div class="slide-footer"> <div class="footer-brand">ANDROID REVERSE</div> <div class="footer-line"></div> <div class="footer-page">07 / 10</div> </div> </div> </div> <!-- ======= SLIDE 8: 数据与行业现状 ======= --> <div class="slide" id="slide-8"> <div class="slide-content"> <div class="section-header"> <div class="section-label">Chapter 07</div> <div class="accent-line"></div> <div class="section-title">行业数据与应用现状</div> </div> <div class="stat-grid" style="margin-bottom:20px;"> <div class="stat-card"> <div class="stat-num">35%</div> <div class="stat-label">Google Play 上架 APP 使用了 ProGuard 混淆<br><span style="font-size:10px;color:#aaa;">(NowSecure 2023 报告)</span></div> </div> <div class="stat-card"> <div class="stat-num">73%</div> <div class="stat-label">金融类 APP 存在至少一个高危安全漏洞<br><span style="font-size:10px;color:#aaa;">(OWASP Mobile Top 10 统计)</span></div> </div> <div class="stat-card"> <div class="stat-num">$38K</div> <div class="stat-label">Google 安卓漏洞最高 Bug Bounty 奖励<br><span style="font-size:10px;color:#aaa;">(Google VRP 2023)</span></div> </div> </div> <div class="two-col" style="flex:1;gap:16px;"> <div class="info-card glass"> <div class="card-title">📊 逆向工程主要应用场景</div> <div style="margin-top:10px;display:flex;flex-direction:column;gap:8px;"> <div> <div style="display:flex;justify-content:space-between;font-size:11px;margin-bottom:3px;"> <span style="color:#1d1d1f;font-weight:600;">安全漏洞研究</span> <span style="color:#6e6e73;">45%</span> </div> <div style="height:4px;background:#f0f0f0;border-radius:2px;overflow:hidden;"> <div style="width:45%;height:100%;background:#1d1d1f;border-radius:2px;"></div> </div> </div> <div> <div style="display:flex;justify-content:space-between;font-size:11px;margin-bottom:3px;"> <span style="color:#1d1d1f;font-weight:600;">恶意软件分析</span> <span style="color:#6e6e73;">30%</span> </div> <div style="height:4px;background:#f0f0f0;border-radius:2px;overflow:hidden;"> <div style="width:30%;height:100%;background:#1d1d1f;border-radius:2px;"></div> </div> </div> <div> <div style="display:flex;justify-content:space-between;font-size:11px;margin-bottom:3px;"> <span style="color:#1d1d1f;font-weight:600;">协议还原分析</span> <span style="color:#6e6e73;">15%</span> </div> <div style="height:4px;background:#f0f0f0;border-radius:2px;overflow:hidden;"> <div style="width:15%;height:100%;background:#1d1d1f;border-radius:2px;"></div> </div> </div> <div> <div style="display:flex;justify-content:space-between;font-size:11px;margin-bottom:3px;"> <span style="color:#1d1d1f;font-weight:600;">其他(兼容/测试)</span> <span style="color:#6e6e73;">10%</span> </div> <div style="height:4px;background:#f0f0f0;border-radius:2px;overflow:hidden;"> <div style="width:10%;height:100%;background:#1d1d1f;border-radius:2px;"></div> </div> </div> </div> </div> <div class="info-card glass"> <div class="card-title">🏆 学习资源推荐</div> <div style="margin-top:10px;display:flex;flex-direction:column;gap:8px;"> <div style="padding:8px 12px;background:#f5f5f7;border-radius:8px;font-size:11px;"> <div style="font-weight:700;color:#1d1d1f;">CTF 平台</div> <div style="color:#6e6e73;margin-top:2px;">BUUCTF、攻防世界均有专项 Android 题目</div> </div> <div style="padding:8px 12px;background:#f5f5f7;border-radius:8px;font-size:11px;"> <div style="font-weight:700;color:#1d1d1f;">OWASP MASTG</div> <div style="color:#6e6e73;margin-top:2px;">移动安全测试指南,官方免费 PDF,系统性最强</div> </div> <div style="padding:8px 12px;background:#f5f5f7;border-radius:8px;font-size:11px;"> <div style="font-weight:700;color:#1d1d1f;">看雪论坛 / 52pojie</div> <div style="color:#6e6e73;margin-top:2px;">国内最活跃的逆向社区,有大量实战案例</div> </div> <div style="padding:8px 12px;background:#f5f5f7;border-radius:8px;font-size:11px;"> <div style="font-weight:700;color:#1d1d1f;">Android Internals(书)</div> <div style="color:#6e6e73;margin-top:2px;">Jonathan Levin 著,深入 Android 系统底层原理</div> </div> </div> </div> </div> <div class="slide-footer"> <div class="footer-brand">ANDROID REVERSE</div> <div class="footer-line"></div> <div class="footer-page">08 / 10</div> </div> </div> </div> <!-- ======= SLIDE 9: 法律与道德 ======= --> <div class="slide" id="slide-9"> <div class="slide-content"> <div class="section-header"> <div class="section-label">Chapter 08</div> <div class="accent-line"></div> <div class="section-title">法律红线与职业道德</div> </div> <div style="flex:1;display:flex;flex-direction:column;gap:14px;"> <table class="compare-table" style="background:white;border-radius:10px;overflow:hidden;border:1px solid rgba(0,0,0,0.06);"> <thead> <tr> <th style="width:30%">行为</th> <th style="width:25%">法律依据(中国)</th> <th style="width:20%">风险等级</th> <th style="width:25%">建议</th> </tr> </thead> <tbody> <tr> <td>分析自己的 APP / 授权安全测试</td> <td>合法行为</td> <td><span class="tag-pill highlight">✓ 安全</span></td> <td>推荐练习方式</td> </tr> <tr> <td>CTF 竞赛逆向题</td> <td>合法行为</td> <td><span class="tag-pill highlight">✓ 安全</span></td> <td>最佳入门途径</td> </tr> <tr> <td>发现漏洞后负责任披露</td> <td>《网络安全法》鼓励</td> <td><span class="tag-pill highlight">✓ 鼓励</span></td> <td>可获 Bug Bounty 奖励</td> </tr> <tr> <td>破解商业软件版权保护</td> <td>《著作权法》第 48 条</td> <td><span class="tag-pill">⚠ 违法</span></td> <td>可能面临民事赔偿</td> </tr> <tr> <td>未授权入侵、窃取数据</td> <td>《刑法》285/286 条</td> <td><span class="tag-pill">🚫 刑事</span></td> <td>最高 7 年有期徒刑</td> </tr> </tbody> </table> <div class="alert-box" style="background:#f0f8ff;border-color:rgba(0,0,0,0.08);"> <div class="alert-icon">⚖️</div> <div class="alert-text"> <strong>核心原则:</strong>只在你有权限的环境内操作。拿到认证(OSCE、BSCP)比非法操作更能体现技术价值。Bug Bounty 平台(HackerOne、SRC)提供了合法赚钱的渠道。 </div> </div> <div class="card-grid card-grid-3" style="gap:10px;"> <div class="info-card glass" style="padding:14px;"> <div style="font-size:20px;margin-bottom:6px;">🎓</div> <div class="card-title" style="font-size:12px;">先从 CTF 开始</div> <div class="card-desc">攻防世界、BUUCTF 有大量合法练习题,从 Easy 难度起步</div> </div> <div class="info-card glass" style="padding:14px;"> <div style="font-size:20px;margin-bottom:6px;">🏅</div> <div class="card-title" style="font-size:12px;">参与 Bug Bounty</div> <div class="card-desc">各大厂均有 SRC 漏洞奖励,报告漏洞合法且有收益</div> </div> <div class="info-card glass" style="padding:14px;"> <div style="font-size:20px;margin-bottom:6px;">📝</div> <div class="card-title" style="font-size:12px;">签署授权协议</div> <div class="card-desc">渗透测试前务必签书面授权,保护自己和委托方</div> </div> </div> </div> <div class="slide-footer"> <div class="footer-brand">ANDROID REVERSE</div> <div class="footer-line"></div> <div class="footer-page">09 / 10</div> </div> </div> </div> <!-- ======= SLIDE 10: 学习路线 ======= --> <div class="slide" id="slide-10"> <div class="slide-content"> <div class="section-header"> <div class="section-label">Chapter 09</div> <div class="accent-line"></div> <div class="section-title">从零到实战:学习路线图</div> </div> <div class="two-col" style="flex:1;gap:20px;"> <div> <div class="timeline"> <div class="timeline-item"> <div class="timeline-dot active-dot">1</div> <div class="timeline-content"> <div class="timeline-title">第 1-2 周:基础准备</div> <div class="timeline-desc">学 Java 基础语法 → 了解 Android 开发结构 → 搭建 Android Studio 环境,写一个简单 APP</div> </div> </div> <div class="timeline-item"> <div class="timeline-dot active-dot">2</div> <div class="timeline-content"> <div class="timeline-title">第 3-4 周:静态分析入门</div> <div class="timeline-desc">安装 jadx,解析开源 APK(如 GadgetBridge),读懂类结构和方法调用关系</div> </div> </div> <div class="timeline-item"> <div class="timeline-dot active-dot">3</div> <div class="timeline-content"> <div class="timeline-title">第 5-6 周:Smali 与重打包</div> <div class="timeline-desc">用 apktool 解包 → 修改 Smali → 重打包签名 → 安装验证,完成第一次 patch</div> </div> </div> <div class="timeline-item"> <div class="timeline-dot active-dot">4</div> <div class="timeline-content"> <div class="timeline-title">第 7-8 周:动态分析 Frida</div> <div class="timeline-desc">配置 Frida 环境 → 完成基本 hook → 追踪加密函数 → 打印调用栈定位逻辑</div> </div> </div> <div class="timeline-item"> <div class="timeline-dot">5</div> <div class="timeline-content"> <div class="timeline-title">第 2-3 月:CTF 实战</div> <div class="timeline-desc">在 CTF 平台做 Android 题,解决真实混淆/加壳场景,积累解题经验</div> </div> </div> </div> </div> <div style="display:flex;flex-direction:column;gap:12px;"> <div class="info-card glass"> <div class="card-title">🛠 推荐练习 APK</div> <div style="margin-top:10px;display:flex;flex-direction:column;gap:6px;"> <div style="font-size:11px;color:#6e6e73;display:flex;justify-content:space-between;padding:6px 0;border-bottom:1px solid rgba(0,0,0,0.04);"> <span style="font-weight:600;color:#1d1d1f;">InsecureBank v2</span> <span class="tag-pill">入门</span> </div> <div style="font-size:11px;color:#6e6e73;display:flex;justify-content:space-between;padding:6px 0;border-bottom:1px solid rgba(0,0,0,0.04);"> <span style="font-weight:600;color:#1d1d1f;">DIVA Android</span> <span class="tag-pill">入门</span> </div> <div style="font-size:11px;color:#6e6e73;display:flex;justify-content:space-between;padding:6px 0;border-bottom:1px solid rgba(0,0,0,0.04);"> <span style="font-weight:600;color:#1d1d1f;">UnCrackable Level 1-3</span> <span class="tag-pill">进阶</span> </div> <div style="font-size:11px;color:#6e6e73;display:flex;justify-content:space-between;padding:6px 0;"> <span style="font-weight:600;color:#1d1d1f;">OWASP GoatDroid</span> <span class="tag-pill">综合</span> </div> </div> </div> <div class="info-card glass" style="flex:1;"> <div class="card-title">🎯 技能树总览</div> <div style="margin-top:10px;display:grid;grid-template-columns:1fr 1fr;gap:6px;"> <div style="background:#f5f5f7;border-radius:6px;padding:6px 8px;font-size:10px;font-weight:600;color:#1d1d1f;">Java/Kotlin</div> <div style="background:#f5f5f7;border-radius:6px;padding:6px 8px;font-size:10px;font-weight:600;color:#1d1d1f;">Smali 语法</div> <div style="background:#f5f5f7;border-radius:6px;padding:6px 8px;font-size:10px;font-weight:600;color:#1d1d1f;">jadx 使用</div> <div style="background:#f5f5f7;border-radius:6px;padding:6px 8px;font-size:10px;font-weight:600;color:#1d1d1f;">apktool 重打包</div> <div style="background:#f5f5f7;border-radius:6px;padding:6px 8px;font-size:10px;font-weight:600;color:#1d1d1f;">Frida 插桩</div> <div style="background:#f5f5f7;border-radius:6px;padding:6px 8px;font-size:10px;font-weight:600;color:#1d1d1f;">抓包分析</div> <div style="background:#f5f5f7;border-radius:6px;padding:6px 8px;font-size:10px;font-weight:600;color:#6e6e73;">ARM 汇编</div> <div style="background:#f5f5f7;border-radius:6px;padding:6px 8px;font-size:10px;font-weight:600;color:#6e6e73;">脱壳技术</div> </div> <div style="margin-top:8px;font-size:10px;color:#6e6e73;">灰色 = 高级阶段学习</div> </div> </div> </div> <div class="slide-footer"> <div class="footer-brand">ANDROID REVERSE</div> <div class="footer-line"></div> <div class="footer-page">10 / 10</div> </div> </div> </div> </div> <!-- 进度点 --> <div class="slide-progress" id="slideProgress"></div> <div class="keyboard-hint">使用 <span class="kbd">←</span> <span class="kbd">→</span> 方向键或点击缩略图切换幻灯片</div> </div> <script> // ============================================ // 幻灯片数据 // ============================================ const slidesData = [ { num: 1, title: '安卓逆向工程简介', subtitle: '入门指南' }, { num: 2, title: '什么是逆向工程', subtitle: 'APK 结构与原理' }, { num: 3, title: '必备工具全景', subtitle: 'jadx / Frida / apktool' }, { num: 4, title: '标准分析流程', subtitle: '5步法' }, { num: 5, title: 'Smali 语言', subtitle: '安卓汇编基础' }, { num: 6, title: '6大保护机制', subtitle: '混淆/加壳/SSL Pinning' }, { num: 7, title: 'Frida 动态分析', subtitle: '实战脚本' }, { num: 8, title: '行业数据', subtitle: '现状与资源' }, { num: 9, title: '法律与道德', subtitle: '合规边界' }, { num: 10, title: '学习路线图', subtitle: '从零到实战' }, ]; const totalSlides = slidesData.length; let currentSlide = 1; // ============================================ // 初始化缩略图 // ============================================ function initSidebar() { const sidebar = document.getElementById('sidebar'); slidesData.forEach((data, index) => { const item = document.createElement('div'); item.className = 'thumb-item' + (index === 0 ? ' active' : ''); item.id = 'thumb-' + (index + 1); item.onclick = () => goToSlide(index + 1); item.innerHTML = ` <div class="thumb-inner" style="background:${index === 0 ? '#fff' : '#f8f8f8'};"> <div class="thumb-title">${data.title}</div> <div class="thumb-subtitle">${data.subtitle}</div> <div class="thumb-num">${String(index + 1).padStart(2, '0')}</div> </div> `; sidebar.appendChild(item); }); } // ============================================ // 初始化进度点 // ============================================ function initProgress() { const container = document.getElementById('slideProgress'); slidesData.forEach((_, index) => { const dot = document.createElement('div'); dot.className = 'progress-dot' + (index === 0 ? ' active' : ''); dot.id = 'dot-' + (index + 1); dot.onclick = () => goToSlide(index + 1); container.appendChild(dot); }); } // ============================================ // 切换幻灯片 // ============================================ function goToSlide(num) { if (num < 1 || num > totalSlides) return; // 隐藏当前 document.getElementById('slide-' + currentSlide).classList.remove('active'); document.getElementById('thumb-' + currentSlide).classList.remove('active'); document.getElementById('dot-' + currentSlide).classList.remove('active'); currentSlide = num; // 显示新的 document.getElementById('slide-' + currentSlide).classList.add('active'); document.getElementById('thumb-' + currentSlide).classList.add('active'); document.getElementById('dot-' + currentSlide).classList.add('active'); // 更新指示器 document.getElementById('slideIndicator').textContent = `${currentSlide} / ${totalSlides}`; // 滚动缩略图到可见 const thumb = document.getElementById('thumb-' + currentSlide); thumb.scrollIntoView({ behavior: 'smooth', block: 'nearest' }); } function nextSlide() { goToSlide(currentSlide + 1); } function prevSlide() { goToSlide(currentSlide - 1); } // 键盘事件 document.addEventListener('keydown', (e) => { if (e.key === 'ArrowRight' || e.key === 'ArrowDown') nextSlide(); if (e.key === 'ArrowLeft' || e.key === 'ArrowUp') prevSlide(); }); // ============================================ // 导出 PPTX // ============================================ async function exportPPTX() { const loading = document.getElementById('exportLoading'); loading.classList.remove('hidden'); try { // 动态加载 pptxgenjs await loadScript('https://unpkg.com/pptxgenjs@4.0.1/dist/pptxgen.bundle.js'); const pptx = new PptxGenJS(); // 幻灯片尺寸 16:9 pptx.layout = 'LAYOUT_WIDE'; pptx.author = 'Android Reverse Engineering'; pptx.company = 'Security Research'; pptx.subject = '安卓逆向工程简介'; pptx.title = '安卓逆向工程简介'; // 定义主题色 const C = { black: '1d1d1f', gray: '6e6e73', lightGray: 'f5f5f7', border: 'd2d2d7', white: 'ffffff', bgLight: 'fafafa', }; // ────────────────────────────── // SLIDE 1: 封面 // ────────────────────────────── { const slide = pptx.addSlide(); slide.background = { color: C.white }; // 左侧装饰块 slide.addShape(pptx.ShapeType.rect, { x: 0, y: 0, w: 0.06, h: 7.5, fill: { color: C.black } }); // 标签 slide.addText('🔍 技术入门指南 · 2024', { x: 0.5, y: 1.0, w: 5, h: 0.35, fontSize: 10, color: C.gray, bold: true, fontFace: 'Arial' }); // 主标题 slide.addText('安卓逆向工程简介', { x: 0.5, y: 1.5, w: 6.5, h: 1.4, fontSize: 46, color: C.black, bold: true, fontFace: 'Arial', charSpacing: -1 }); // 副标题 slide.addText('了解 Android APK 如何被分析、解构与研究\n从工具到流程,系统性入门指南', { x: 0.5, y: 3.1, w: 5.5, h: 0.9, fontSize: 14, color: C.gray, fontFace: 'Arial', lineSpacingMultiple: 1.4 }); // 分割线 slide.addShape(pptx.ShapeType.line, { x: 0.5, y: 4.2, w: 5.5, h: 0, line: { color: C.border, width: 1 } }); // Meta 信息 slide.addText('🎯 适合初学者 · 📱 Android 平台 · ⏱ 预计阅读 15 分钟', { x: 0.5, y: 4.35, w: 6, h: 0.3, fontSize: 10, color: C.gray, fontFace: 'Arial' }); // 右侧代码卡片背景 slide.addShape(pptx.ShapeType.roundRect, { x: 7.2, y: 1.2, w: 5.5, h: 3.8, fill: { color: C.lightGray }, line: { color: 'e0e0e5', width: 1 }, rectRadius: 0.15 }); slide.addText('📄 APK 结构示意', { x: 7.5, y: 1.45, w: 4.5, h: 0.3, fontSize: 11, color: C.black, bold: true, fontFace: 'Courier New' }); const codeLines = [ '# APK 本质是 ZIP 压缩文件', 'app.apk/', '├── classes.dex # 代码(逆向目标)', '├── res/ # 图片/布局资源', '├── lib/ # Native SO 库', '├── assets/ # 原始资源文件', '└── AndroidManifest.xml', ]; codeLines.forEach((line, i) => { slide.addText(line, { x: 7.5, y: 1.9 + i * 0.3, w: 4.8, h: 0.28, fontSize: 10, color: line.startsWith('#') ? C.gray : C.black, fontFace: 'Courier New', bold: line.includes('classes.dex') }); }); // 页脚 slide.addText('ANDROID REVERSE ENGINEERING', { x: 0.5, y: 7.0, w: 5, h: 0.25, fontSize: 8, color: C.border, bold: true, fontFace: 'Arial' }); slide.addText('01 / 10', { x: 11.5, y: 7.0, w: 1.2, h: 0.25, fontSize: 8, color: C.border, fontFace: 'Arial', align: 'right' }); } // ────────────────────────────── // SLIDE 2: 什么是逆向工程 // ────────────────────────────── { const slide = pptx.addSlide(); slide.background = { color: C.white }; slide.addShape(pptx.ShapeType.rect, { x: 0, y: 0, w: 0.06, h: 7.5, fill: { color: C.black } }); // 章节标签 slide.addText('CHAPTER 01', { x: 0.5, y: 0.5, w: 4, h: 0.25, fontSize: 9, color: C.gray, bold: true, fontFace: 'Arial', charSpacing: 1 }); // 装饰线 slide.addShape(pptx.ShapeType.rect, { x: 0.5, y: 0.82, w: 0.5, h: 0.04, fill: { color: C.black } }); slide.addText('什么是安卓逆向工程?', { x: 0.5, y: 0.95, w: 11, h: 0.7, fontSize: 28, color: C.black, bold: true, fontFace: 'Arial', charSpacing: -0.5 }); // 左列:通俗理解卡片 slide.addShape(pptx.ShapeType.roundRect, { x: 0.5, y: 1.85, w: 5.8, h: 1.7, fill: { color: C.lightGray }, line: { color: 'e8e8ed', width: 1 }, rectRadius: 0.12 }); slide.addText('🔧 通俗理解', { x: 0.75, y: 1.98, w: 5, h: 0.3, fontSize: 12, color: C.black, bold: true, fontFace: 'Arial' }); slide.addText('你下载了一个 APP,但没有源代码。逆向工程就是把这个 APP 的 classes.dex(编译后的代码文件)还原回你能读懂的 Java 代码,就像把熟食还原成菜谱。', { x: 0.75, y: 2.32, w: 5.3, h: 1.0, fontSize: 11, color: C.gray, fontFace: 'Arial', lineSpacingMultiple: 1.3 }); // 左列:合法场景卡片 slide.addShape(pptx.ShapeType.roundRect, { x: 0.5, y: 3.7, w: 5.8, h: 2.5, fill: { color: C.lightGray }, line: { color: 'e8e8ed', width: 1 }, rectRadius: 0.12 }); slide.addText('⚖️ 合法应用场景', { x: 0.75, y: 3.83, w: 5, h: 0.3, fontSize: 12, color: C.black, bold: true, fontFace: 'Arial' }); const legalCases = [ '• 安全研究:发现 APP 漏洞并向厂商上报', '• 恶意软件分析:分析病毒/木马行为', '• 协议还原:分析 APP 通信协议', '• 自己的代码:忘记源码时恢复逻辑', ]; legalCases.forEach((text, i) => { slide.addText(text, { x: 0.75, y: 4.18 + i * 0.45, w: 5.3, h: 0.38, fontSize: 11, color: C.gray, fontFace: 'Arial' }); }); // 右列:编译链 slide.addShape(pptx.ShapeType.roundRect, { x: 6.7, y: 1.85, w: 5.8, h: 4.35, fill: { color: C.lightGray }, line: { color: 'e8e8ed', width: 1 }, rectRadius: 0.12 }); slide.addText('📦 Android 代码编译链', { x: 6.95, y: 1.98, w: 5, h: 0.3, fontSize: 12, color: C.black, bold: true, fontFace: 'Arial' }); const chain = [ { title: '.java / .kt 源码', desc: '开发者编写的代码', dark: false }, { title: '↓ javac / kotlinc 编译', desc: '', dark: false, arrow: true }, { title: '.class 字节码', desc: 'JVM 字节码格式', dark: false }, { title: '↓ d8 / dx 工具转换', desc: '', dark: false, arrow: true }, { title: 'classes.dex', desc: 'Dalvik 字节码 — 逆向分析的目标', dark: true }, ]; let yPos = 2.35; chain.forEach(item => { if (item.arrow) { slide.addText(item.title, { x: 6.95, y: yPos, w: 5.3, h: 0.3, fontSize: 10, color: C.gray, fontFace: 'Arial', align: 'center' }); yPos += 0.32; } else { slide.addShape(pptx.ShapeType.roundRect, { x: 6.95, y: yPos, w: 5.3, h: 0.65, fill: { color: item.dark ? C.black : C.white }, line: { color: item.dark ? C.black : 'e0e0e5', width: 1 }, rectRadius: 0.08 }); slide.addText(item.title, { x: 7.1, y: yPos + 0.08, w: 5, h: 0.28, fontSize: 12, color: item.dark ? C.white : C.black, bold: true, fontFace: 'Arial' }); if (item.desc) { slide.addText(item.desc, { x: 7.1, y: yPos + 0.35, w: 5, h: 0.22, fontSize: 9, color: item.dark ? 'aaaaaa' : C.gray, fontFace: 'Arial' }); } yPos += 0.72; } }); slide.addText('ANDROID REVERSE ENGINEERING', { x: 0.5, y: 7.0, w: 5, h: 0.25, fontSize: 8, color: C.border, bold: true, fontFace: 'Arial' }); slide.addText('02 / 10', { x: 11.5, y: 7.0, w: 1.2, h: 0.25, fontSize: 8, color: C.border, fontFace: 'Arial', align: 'right' }); } // ────────────────────────────── // SLIDE 3: 核心工具 // ────────────────────────────── { const slide = pptx.addSlide(); slide.background = { color: C.white }; slide.addShape(pptx.ShapeType.rect, { x: 0, y: 0, w: 0.06, h: 7.5, fill: { color: C.black } }); slide.addText('CHAPTER 02', { x: 0.5, y: 0.5, w: 4, h: 0.25, fontSize: 9, color: C.gray, bold: true, fontFace: 'Arial', charSpacing: 1 }); slide.addShape(pptx.ShapeType.rect, { x: 0.5, y: 0.82, w: 0.5, h: 0.04, fill: { color: C.black } }); slide.addText('必备逆向工具全景', { x: 0.5, y: 0.95, w: 11, h: 0.7, fontSize: 28, color: C.black, bold: true, fontFace: 'Arial' }); const tools = [ { icon: '🔓', name: 'jadx', tag: '反编译', desc: '把 APK/dex 直接反编译成可读的 Java 代码,带 GUI 界面,新手首选工具,支持搜索、交叉引用等功能' }, { icon: '🔨', name: 'apktool v2.9.3', tag: '重打包', desc: '解包 APK → 修改 Smali 代码 → 重新打包。适合需要修改代码后重新安装的场景' }, { icon: '🕵️', name: 'Frida 16.x', tag: '动态分析', desc: '动态插桩框架,用 JavaScript 脚本在运行中 hook 任意函数,实时修改参数和返回值' }, { icon: '🌐', name: 'Charles / mitmproxy', tag: '流量分析', desc: '抓取 APP 的 HTTPS 网络请求,查看 APP 发送的数据、API 接口格式与参数结构' }, { icon: '🏗️', name: 'IDA Pro / Ghidra', tag: 'Native 分析', desc: '分析 .so 原生库(C/C++ 编译的 ARM 代码),Ghidra 免费开源,NSA 出品,功能完备' }, ]; tools.forEach((tool, i) => { const y = 1.9 + i * 1.02; slide.addShape(pptx.ShapeType.roundRect, { x: 0.5, y, w: 12.2, h: 0.88, fill: { color: C.lightGray }, line: { color: 'e8e8ed', width: 1 }, rectRadius: 0.1 }); slide.addText(tool.icon, { x: 0.65, y: y + 0.22, w: 0.5, h: 0.45, fontSize: 20, fontFace: 'Arial' }); slide.addText(tool.name, { x: 1.3, y: y + 0.12, w: 3, h: 0.3, fontSize: 13, color: C.black, bold: true, fontFace: 'Arial' }); slide.addText(tool.desc, { x: 1.3, y: y + 0.45, w: 9.3, h: 0.28, fontSize: 10, color: C.gray, fontFace: 'Arial' }); // 标签 slide.addShape(pptx.ShapeType.roundRect, { x: 11.1, y: y + 0.22, w: 1.3, h: 0.32, fill: { color: 'ebebf0' }, line: { color: 'e0e0e5', width: 1 }, rectRadius: 0.04 }); slide.addText(tool.tag, { x: 11.1, y: y + 0.24, w: 1.3, h: 0.28, fontSize: 9, color: C.gray, bold: true, fontFace: 'Arial', align: 'center' }); }); slide.addText('ANDROID REVERSE ENGINEERING', { x: 0.5, y: 7.0, w: 5, h: 0.25, fontSize: 8, color: C.border, bold: true, fontFace: 'Arial' }); slide.addText('03 / 10', { x: 11.5, y: 7.0, w: 1.2, h: 0.25, fontSize: 8, color: C.border, fontFace: 'Arial', align: 'right' }); } // ────────────────────────────── // SLIDE 4: 逆向工作流 // ────────────────────────────── { const slide = pptx.addSlide(); slide.background = { color: C.white }; slide.addShape(pptx.ShapeType.rect, { x: 0, y: 0, w: 0.06, h: 7.5, fill: { color: C.black } }); slide.addText('CHAPTER 03', { x: 0.5, y: 0.5, w: 4, h: 0.25, fontSize: 9, color: C.gray, bold: true, fontFace: 'Arial', charSpacing: 1 }); slide.addShape(pptx.ShapeType.rect, { x: 0.5, y: 0.82, w: 0.5, h: 0.04, fill: { color: C.black } }); slide.addText('标准逆向分析流程', { x: 0.5, y: 0.95, w: 11, h: 0.7, fontSize: 28, color: C.black, bold: true, fontFace: 'Arial' }); // 流程步骤 const steps = [ { num: '1', title: '获取 APK', desc: 'adb pull 或\nAPKPure 下载' }, { num: '2', title: '静态分析', desc: 'jadx 查看代码\n结构与权限' }, { num: '3', title: '定位目标', desc: '搜索 login/check\n/encrypt 等关键词' }, { num: '4', title: '动态验证', desc: 'Frida hook\n打印参数返回值' }, { num: '5', title: '整理结论', desc: '记录逻辑接口\n和加密算法' }, ]; steps.forEach((step, i) => { const x = 0.5 + i * 2.42; // 圆圈 slide.addShape(pptx.ShapeType.ellipse, { x: x + 0.7, y: 1.95, w: 0.8, h: 0.8, fill: { color: C.black } }); slide.addText(step.num, { x: x + 0.7, y: 1.97, w: 0.8, h: 0.76, fontSize: 14, color: C.white, bold: true, fontFace: 'Arial', align: 'center', valign: 'middle' }); // 连接线 if (i < 4) { slide.addShape(pptx.ShapeType.line, { x: x + 1.52, y: 2.35, w: 0.88, h: 0, line: { color: C.border, width: 1 } }); } slide.addText(step.title, { x, y: 2.88, w: 2.2, h: 0.3, fontSize: 11, color: C.black, bold: true, fontFace: 'Arial', align: 'center' }); slide.addText(step.desc, { x, y: 3.2, w: 2.2, h: 0.5, fontSize: 9, color: C.gray, fontFace: 'Arial', align: 'center', lineSpacingMultiple: 1.3 }); }); // 底部三列代码/提示 const cols = [ { title: '🔍 常用 adb 命令', lines: ['# 列出所有已安装包名', 'adb shell pm list packages', '', '# 提取 APK 文件', 'adb pull \\', ' /data/app/xxx/base.apk .'] }, { title: '🪝 Frida Hook 模板', lines: ['Java.perform(function() {', ' var Cls = Java.use(', ' "com.app.Login");', ' Cls.check.implementation', ' = function() {', ' return true; // 绕过', ' };', '});'] }, { title: '📋 静态分析清单', lines: ['☑ AndroidManifest 权限声明', '☑ 网络请求域名和接口', '☑ 本地 SharedPrefs 存储', '☑ 加密算法调用位置', '☑ 混淆程度和命名规则', '☑ 第三方 SDK 引入情况'] }, ]; cols.forEach((col, i) => { const x = 0.5 + i * 4.1; slide.addShape(pptx.ShapeType.roundRect, { x, y: 3.9, w: 3.85, h: 2.7, fill: { color: C.lightGray }, line: { color: 'e8e8ed', width: 1 }, rectRadius: 0.1 }); slide.addText(col.title, { x: x + 0.15, y: 4.03, w: 3.55, h: 0.28, fontSize: 11, color: C.black, bold: true, fontFace: 'Arial' }); col.lines.forEach((line, j) => { slide.addText(line, { x: x + 0.15, y: 4.38 + j * 0.33, w: 3.55, h: 0.28, fontSize: 9, color: line.startsWith('#') || line.startsWith('☑') ? C.gray : C.black, fontFace: line.startsWith('☑') ? 'Arial' : 'Courier New' }); }); }); slide.addText('ANDROID REVERSE ENGINEERING', { x: 0.5, y: 7.0, w: 5, h: 0.25, fontSize: 8, color: C.border, bold: true, fontFace: 'Arial' }); slide.addText('04 / 10', { x: 11.5, y: 7.0, w: 1.2, h: 0.25, fontSize: 8, color: C.border, fontFace: 'Arial', align: 'right' }); } // ────────────────────────────── // SLIDE 5: Smali // ────────────────────────────── { const slide = pptx.addSlide(); slide.background = { color: C.white }; slide.addShape(pptx.ShapeType.rect, { x: 0, y: 0, w: 0.06, h: 7.5, fill: { color: C.black } }); slide.addText('CHAPTER 04', { x: 0.5, y: 0.5, w: 4, h: 0.25, fontSize: 9, color: C.gray, bold: true, fontFace: 'Arial', charSpacing: 1 }); slide.addShape(pptx.ShapeType.rect, { x: 0.5, y: 0.82, w: 0.5, h: 0.04, fill: { color: C.black } }); slide.addText('读懂 Smali —— 安卓汇编语言', { x: 0.5, y: 0.95, w: 12, h: 0.7, fontSize: 28, color: C.black, bold: true, fontFace: 'Arial' }); // 左:Java 代码 slide.addText('原始 Java 代码', { x: 0.5, y: 1.85, w: 5.5, h: 0.28, fontSize: 11, color: C.gray, bold: true, fontFace: 'Arial' }); slide.addShape(pptx.ShapeType.roundRect, { x: 0.5, y: 2.15, w: 5.5, h: 2.4, fill: { color: C.lightGray }, line: { color: 'e8e8ed', width: 1 }, rectRadius: 0.1 }); const javaCode = [ 'public boolean isVip(String uid) {', ' if (uid.equals("admin")) {', ' return true;', ' }', ' return false;', '}', ]; javaCode.forEach((line, i) => { slide.addText(line, { x: 0.7, y: 2.28 + i * 0.34, w: 5.1, h: 0.3, fontSize: 11, color: C.black, fontFace: 'Courier New' }); }); // 寄存器规则 slide.addText('关键寄存器规则', { x: 0.5, y: 4.7, w: 5.5, h: 0.28, fontSize: 11, color: C.gray, bold: true, fontFace: 'Arial' }); const regs = [ { reg: 'v0', desc: '本地变量寄存器,从 v0 开始编号' }, { reg: 'p0', desc: '参数寄存器,p0 = this(实例方法)' }, { reg: 'p1', desc: '第一个参数,此例中 p1 = uid' }, ]; regs.forEach((r, i) => { slide.addShape(pptx.ShapeType.roundRect, { x: 0.5, y: 5.02 + i * 0.52, w: 5.5, h: 0.42, fill: { color: C.lightGray }, line: { color: 'e8e8ed', width: 1 }, rectRadius: 0.06 }); slide.addText(r.reg, { x: 0.65, y: 5.05 + i * 0.52, w: 0.5, h: 0.36, fontSize: 12, color: C.black, bold: true, fontFace: 'Courier New' }); slide.addText(r.desc, { x: 1.3, y: 5.07 + i * 0.52, w: 4.5, h: 0.32, fontSize: 10, color: C.gray, fontFace: 'Arial' }); }); // 右:Smali 代码 slide.addText('对应 Smali 代码(逆向后看到的)', { x: 6.5, y: 1.85, w: 6.2, h: 0.28, fontSize: 11, color: C.gray, bold: true, fontFace: 'Arial' }); slide.addShape(pptx.ShapeType.roundRect, { x: 6.5, y: 2.15, w: 6.2, h: 3.5, fill: { color: C.lightGray }, line: { color: 'e8e8ed', width: 1 }, rectRadius: 0.1 }); const smaliCode = [ '.method public isVip(Ljava/lang/String;)Z', ' .registers 3 # v0, p0(this), p1(uid)', '', ' const-string v0, "admin"', ' invoke-virtual {p1, v0},', ' Ljava/lang/String;->equals(Ljava/lang/Object;)Z', ' move-result v0', ' if-eqz v0, :cond_0 # 若不等则跳转', '', ' const/4 v0, 0x1 # true', ' return v0', '', ' :cond_0', ' const/4 v0, 0x0 # false', ' return v0', '.end method', ]; smaliCode.forEach((line, i) => { slide.addText(line, { x: 6.65, y: 2.28 + i * 0.195, w: 5.9, h: 0.19, fontSize: 9, color: line.includes('#') ? C.gray : C.black, fontFace: 'Courier New' }); }); // 提示 slide.addShape(pptx.ShapeType.roundRect, { x: 6.5, y: 5.78, w: 6.2, h: 0.75, fill: { color: 'fff8e1' }, line: { color: 'ffe082', width: 1 }, rectRadius: 0.08 }); slide.addText('💡 逆向修改技巧:将 if-eqz 改成 if-nez,或直接将 const/4 v0, 0x0 改成 0x1,即可绕过 isVip 验证,让所有用户都返回 true。', { x: 6.65, y: 5.85, w: 5.9, h: 0.6, fontSize: 10, color: '795548', fontFace: 'Arial', lineSpacingMultiple: 1.3 }); slide.addText('ANDROID REVERSE ENGINEERING', { x: 0.5, y: 7.0, w: 5, h: 0.25, fontSize: 8, color: C.border, bold: true, fontFace: 'Arial' }); slide.addText('05 / 10', { x: 11.5, y: 7.0, w: 1.2, h: 0.25, fontSize: 8, color: C.border, fontFace: 'Arial', align: 'right' }); } // ────────────────────────────── // SLIDE 6: 保护机制 // ────────────────────────────── { const slide = pptx.addSlide(); slide.background = { color: C.white }; slide.addShape(pptx.ShapeType.rect, { x: 0, y: 0, w: 0.06, h: 7.5, fill: { color: C.black } }); slide.addText('CHAPTER 05', { x: 0.5, y: 0.5, w: 4, h: 0.25, fontSize: 9, color: C.gray, bold: true, fontFace: 'Arial', charSpacing: 1 }); slide.addShape(pptx.ShapeType.rect, { x: 0.5, y: 0.82, w: 0.5, h: 0.04, fill: { color: C.black } }); slide.addText('APP 的 6 大保护机制', { x: 0.5, y: 0.95, w: 12, h: 0.7, fontSize: 28, color: C.black, bold: true, fontFace: 'Arial' }); const protections = [ { icon: '🌫️', title: '代码混淆 (ProGuard)', desc: '把 LoginActivity 改成 a.b.c,增加阅读难度,但逻辑不变,jadx 仍可反编译读取' }, { icon: '📦', title: '加壳 (Packing)', desc: '把真正的 dex 加密后隐藏,运行时再解密。常见:梆梆、360加固、腾讯乐固,需先脱壳' }, { icon: '🔐', title: 'SSL Pinning', desc: 'APP 内置证书指纹,只接受特定证书,阻止抓包。可用 Frida 脚本或 TrustMeAlready 绕过' }, { icon: '🔍', title: 'Root / 调试检测', desc: '检测 /system/bin/su 是否存在。可用 Magisk DenyList、RootBeer 模块进行对抗' }, { icon: '⚡', title: 'VMP 虚拟机保护', desc: '核心算法被自定义虚拟机解释执行,指令集完全私有,是目前最难逆向的保护方式' }, { icon: '✅', title: '签名校验', desc: '运行时校验自身签名,重打包后签名变化会闪退。需 hook getSignatures() 返回原始签名' }, ]; protections.forEach((item, i) => { const col = i % 3; const row = Math.floor(i / 3); const x = 0.5 + col * 4.1; const y = 2.0 + row * 2.4; slide.addShape(pptx.ShapeType.roundRect, { x, y, w: 3.85, h: 2.1, fill: { color: C.lightGray }, line: { color: 'e8e8ed', width: 1 }, rectRadius: 0.12 }); slide.addText(item.icon, { x: x + 0.15, y: y + 0.18, w: 0.5, h: 0.5, fontSize: 22, fontFace: 'Arial' }); slide.addText(item.title, { x: x + 0.15, y: y + 0.72, w: 3.5, h: 0.32, fontSize: 12, color: C.black, bold: true, fontFace: 'Arial' }); slide.addText(item.desc, { x: x + 0.15, y: y + 1.08, w: 3.55, h: 0.85, fontSize: 10, color: C.gray, fontFace: 'Arial', lineSpacingMultiple: 1.3 }); }); slide.addText('ANDROID REVERSE ENGINEERING', { x: 0.5, y: 7.0, w: 5, h: 0.25, fontSize: 8, color: C.border, bold: true, fontFace: 'Arial' }); slide.addText('06 / 10', { x: 11.5, y: 7.0, w: 1.2, h: 0.25, fontSize: 8, color: C.border, fontFace: 'Arial', align: 'right' }); } // ────────────────────────────── // SLIDE 7: Frida 动态分析 // ────────────────────────────── { const slide = pptx.addSlide(); slide.background = { color: C.white }; slide.addShape(pptx.ShapeType.rect, { x: 0, y: 0, w: 0.06, h: 7.5, fill: { color: C.black } }); slide.addText('CHAPTER 06', { x: 0.5, y: 0.5, w: 4, h: 0.25, fontSize: 9, color: C.gray, bold: true, fontFace: 'Arial', charSpacing: 1 }); slide.addShape(pptx.ShapeType.rect, { x: 0.5, y: 0.82, w: 0.5, h: 0.04, fill: { color: C.black } }); slide.addText('Frida 动态分析实战', { x: 0.5, y: 0.95, w: 12, h: 0.7, fontSize: 28, color: C.black, bold: true, fontFace: 'Arial' }); // 左侧:环境搭建 slide.addText('① 环境搭建', { x: 0.5, y: 1.85, w: 5.8, h: 0.28, fontSize: 12, color: C.black, bold: true, fontFace: 'Arial' }); slide.addShape(pptx.ShapeType.roundRect, { x: 0.5, y: 2.15, w: 5.8, h: 2.2, fill: { color: C.lightGray }, line: { color: 'e8e8ed', width: 1 }, rectRadius: 0.1 }); const setupCode = [ '# 安装 frida 命令行工具', 'pip install frida-tools', '', '# 推送 frida-server 到手机', 'adb push frida-server /data/local/tmp/', 'adb shell "chmod 755 /data/local/tmp/frida-server"', 'adb shell "/data/local/tmp/frida-server &"', ]; setupCode.forEach((line, i) => { slide.addText(line, { x: 0.7, y: 2.28 + i * 0.27, w: 5.4, h: 0.24, fontSize: 9.5, color: line.startsWith('#') ? C.gray : C.black, fontFace: 'Courier New' }); }); // 注入命令 slide.addText('② 注入脚本到目标 APP', { x: 0.5, y: 4.5, w: 5.8, h: 0.28, fontSize: 12, color: C.black, bold: true, fontFace: 'Arial' }); slide.addShape(pptx.ShapeType.roundRect, { x: 0.5, y: 4.82, w: 5.8, h: 1.0, fill: { color: C.lightGray }, line: { color: 'e8e8ed', width: 1 }, rectRadius: 0.1 }); const injectCode = [ '# 对目标包名注入脚本并启动', 'frida -U -f com.target.app \\', ' -l hook.js --no-pause', ]; injectCode.forEach((line, i) => { slide.addText(line, { x: 0.7, y: 4.95 + i * 0.27, w: 5.4, h: 0.24, fontSize: 9.5, color: line.startsWith('#') ? C.gray : C.black, fontFace: 'Courier New' }); }); // 右侧:Hook 脚本 slide.addText('③ Hook 实战脚本:追踪 MessageDigest 加密输入', { x: 6.7, y: 1.85, w: 6, h: 0.28, fontSize: 12, color: C.black, bold: true, fontFace: 'Arial' }); slide.addShape(pptx.ShapeType.roundRect, { x: 6.7, y: 2.15, w: 5.8, h: 3.65, fill: { color: C.lightGray }, line: { color: 'e8e8ed', width: 1 }, rectRadius: 0.1 }); const hookCode = [ 'Java.perform(function() {', ' // Hook MessageDigest (MD5/SHA)', ' var MD = Java.use(', ' "java.security.MessageDigest");', '', ' MD.update.overload("[B")', ' .implementation = function(b) {', ' // 打印传入的原文数据', ' var str = Java.use("java.lang.String").$new(b);', ' console.log("[*] MD input: " + str);', '', ' // 打印调用栈,定位代码位置', ' console.log(Java.use("android.util.Log")', ' .getStackTraceString(', ' Java.use("java.lang.Exception").$new()));', '', ' return this.update(b); // 继续执行原函数', ' };', '});', ]; hookCode.forEach((line, i) => { slide.addText(line, { x: 6.85, y: 2.28 + i * 0.175, w: 5.5, h: 0.17, fontSize: 8.5, color: line.includes('//') ? C.gray : C.black, fontFace: 'Courier New' }); }); slide.addText('ANDROID REVERSE ENGINEERING', { x: 0.5, y: 7.0, w: 5, h: 0.25, fontSize: 8, color: C.border, bold: true, fontFace: 'Arial' }); slide.addText('07 / 10', { x: 11.5, y: 7.0, w: 1.2, h: 0.25, fontSize: 8, color: C.border, fontFace: 'Arial', align: 'right' }); } // ────────────────────────────── // SLIDE 8: 行业数据 // ────────────────────────────── { const slide = pptx.addSlide(); slide.background = { color: C.white }; slide.addShape(pptx.ShapeType.rect, { x: 0, y: 0, w: 0.06, h: 7.5, fill: { color: C.black } }); slide.addText('CHAPTER 07', { x: 0.5, y: 0.5, w: 4, h: 0.25, fontSize: 9, color: C.gray, bold: true, fontFace: 'Arial', charSpacing: 1 }); slide.addShape(pptx.ShapeType.rect, { x: 0.5, y: 0.82, w: 0.5, h: 0.04, fill: { color: C.black } }); slide.addText('行业数据与应用现状', { x: 0.5, y: 0.95, w: 12, h: 0.7, fontSize: 28, color: C.black, bold: true, fontFace: 'Arial' }); // 三个统计数字 const stats = [ { num: '35%', label: 'Google Play APP\n使用了代码混淆', src: 'NowSecure 2023' }, { num: '73%', label: '金融类 APP 存在\n高危安全漏洞', src: 'OWASP Mobile Top 10' }, { num: '$38K', label: 'Google 安卓漏洞\n最高 Bug Bounty 奖励', src: 'Google VRP 2023' }, ]; stats.forEach((s, i) => { const x = 0.5 + i * 4.1; slide.addShape(pptx.ShapeType.roundRect, { x, y: 1.95, w: 3.85, h: 1.7, fill: { color: C.lightGray }, line: { color: 'e8e8ed', width: 1 }, rectRadius: 0.12 }); slide.addText(s.num, { x, y: 2.05, w: 3.85, h: 0.75, fontSize: 36, color: C.black, bold: true, fontFace: 'Arial', align: 'center', charSpacing: -1 }); slide.addText(s.label, { x, y: 2.82, w: 3.85, h: 0.45, fontSize: 10, color: C.gray, fontFace: 'Arial', align: 'center', lineSpacingMultiple: 1.3 }); slide.addText(s.src, { x, y: 3.3, w: 3.85, h: 0.25, fontSize: 8, color: C.border, fontFace: 'Arial', align: 'center' }); }); // 应用场景条形图 slide.addShape(pptx.ShapeType.roundRect, { x: 0.5, y: 3.9, w: 5.8, h: 2.65, fill: { color: C.lightGray }, line: { color: 'e8e8ed', width: 1 }, rectRadius: 0.12 }); slide.addText('📊 逆向工程主要应用场景', { x: 0.7, y: 4.03, w: 5.3, h: 0.28, fontSize: 12, color: C.black, bold: true, fontFace: 'Arial' }); const bars = [ { label: '安全漏洞研究', pct: 45 }, { label: '恶意软件分析', pct: 30 }, { label: '协议还原分析', pct: 15 }, { label: '其他(兼容/测试)', pct: 10 }, ]; bars.forEach((bar, i) => { const y = 4.45 + i * 0.52; slide.addText(bar.label, { x: 0.7, y, w: 2.5, h: 0.25, fontSize: 10, color: C.black, fontFace: 'Arial', bold: true }); slide.addText(`${bar.pct}%`, { x: 5.6, y, w: 0.5, h: 0.25, fontSize: 10, color: C.gray, fontFace: 'Arial', align: 'right' }); // 背景条 slide.addShape(pptx.ShapeType.roundRect, { x: 0.7, y: y + 0.27, w: 5.1, h: 0.1, fill: { color: 'e0e0e5' }, rectRadius: 0.05 }); // 进度条 slide.addShape(pptx.ShapeType.roundRect, { x: 0.7, y: y + 0.27, w: 5.1 * bar.pct / 100, h: 0.1, fill: { color: C.black }, rectRadius: 0.05 }); }); // 学习资源 slide.addShape(pptx.ShapeType.roundRect, { x: 6.7, y: 3.9, w: 5.8, h: 2.65, fill: { color: C.lightGray }, line: { color: 'e8e8ed', width: 1 }, rectRadius: 0.12 }); slide.addText('🏆 推荐学习资源', { x: 6.9, y: 4.03, w: 5.3, h: 0.28, fontSize: 12, color: C.black, bold: true, fontFace: 'Arial' }); const resources = [ { name: 'CTF 平台', desc: 'BUUCTF、攻防世界均有专项 Android 题' }, { name: 'OWASP MASTG', desc: '移动安全测试指南,官方免费 PDF' }, { name: '看雪论坛 / 52pojie', desc: '国内最活跃逆向社区,大量实战案例' }, { name: 'Android Internals', desc: 'Jonathan Levin 著,深入系统底层原理' }, ]; resources.forEach((r, i) => { slide.addShape(pptx.ShapeType.roundRect, { x: 6.9, y: 4.43 + i * 0.52, w: 5.3, h: 0.42, fill: { color: C.white }, line: { color: 'e8e8ed', width: 1 }, rectRadius: 0.06 }); slide.addText(r.name, { x: 7.1, y: 4.46 + i * 0.52, w: 2.5, h: 0.22, fontSize: 10, color: C.black, bold: true, fontFace: 'Arial' }); slide.addText(r.desc, { x: 7.1, y: 4.67 + i * 0.52, w: 5, h: 0.18, fontSize: 9, color: C.gray, fontFace: 'Arial' }); }); slide.addText('ANDROID REVERSE ENGINEERING', { x: 0.5, y: 7.0, w: 5, h: 0.25, fontSize: 8, color: C.border, bold: true, fontFace: 'Arial' }); slide.addText('08 / 10', { x: 11.5, y: 7.0, w: 1.2, h: 0.25, fontSize: 8, color: C.border, fontFace: 'Arial', align: 'right' }); } // ────────────────────────────── // SLIDE 9: 法律 // ────────────────────────────── { const slide = pptx.addSlide(); slide.background = { color: C.white }; slide.addShape(pptx.ShapeType.rect, { x: 0, y: 0, w: 0.06, h: 7.5, fill: { color: C.black } }); slide.addText('CHAPTER 08', { x: 0.5, y: 0.5, w: 4, h: 0.25, fontSize: 9, color: C.gray, bold: true, fontFace: 'Arial', charSpacing: 1 }); slide.addShape(pptx.ShapeType.rect, { x: 0.5, y: 0.82, w: 0.5, h: 0.04, fill: { color: C.black } }); slide.addText('法律红线与职业道德', { x: 0.5, y: 0.95, w: 12, h: 0.7, fontSize: 28, color: C.black, bold: true, fontFace: 'Arial' }); // 表格头 const tableHeaders = ['行为', '法律依据(中国)', '风险等级', '建议']; const tableWidths = [3.5, 3.0, 2.0, 4.2]; let xOff = 0.5; slide.addShape(pptx.ShapeType.roundRect, { x: 0.5, y: 1.85, w: 12.2, h: 0.38, fill: { color: C.lightGray }, line: { color: 'e8e8ed', width: 1 }, rectRadius: 0.06 }); tableHeaders.forEach((h, i) => { slide.addText(h, { x: xOff + 0.1, y: 1.88, w: tableWidths[i] - 0.1, h: 0.32, fontSize: 11, color: C.black, bold: true, fontFace: 'Arial' }); xOff += tableWidths[i]; }); const rows = [ ['分析自己的 APP / 授权安全测试', '合法行为', '✓ 安全', '推荐练习方式'], ['CTF 竞赛逆向题', '合法行为', '✓ 安全', '最佳入门途径'], ['发现漏洞后负责任披露', '《网络安全法》鼓励', '✓ 鼓励', '可获 Bug Bounty 奖励'], ['破解商业软件版权保护', '《著作权法》第 48 条', '⚠ 违法', '可能面临民事赔偿'], ['未授权入侵、窃取数据', '《刑法》285/286 条', '🚫 刑事', '最高 7 年有期徒刑'], ]; rows.forEach((row, ri) => { const y = 2.28 + ri * 0.72; const isOdd = ri % 2 === 0; slide.addShape(pptx.ShapeType.rect, { x: 0.5, y, w: 12.2, h: 0.68, fill: { color: isOdd ? C.white : 'fafafa' } }); // 底部分割线 slide.addShape(pptx.ShapeType.line, { x: 0.5, y: y + 0.68, w: 12.2, h: 0, line: { color: 'f0f0f0', width: 1 } }); xOff = 0.5; row.forEach((cell, ci) => { const isDanger = ri >= 3; const isRisk = ci === 2; slide.addText(cell, { x: xOff + 0.1, y: y + 0.2, w: tableWidths[ci] - 0.1, h: 0.28, fontSize: 10, color: isRisk && isDanger ? 'c0392b' : isRisk ? '27ae60' : C.gray, bold: isRisk, fontFace: 'Arial' }); xOff += tableWidths[ci]; }); }); // 提示框 slide.addShape(pptx.ShapeType.roundRect, { x: 0.5, y: 5.95, w: 12.2, h: 0.75, fill: { color: 'f0f8ff' }, line: { color: 'b3d9f7', width: 1 }, rectRadius: 0.08 }); slide.addText('⚖️ 核心原则:只在你有权限的环境内操作。拿到认证(OSCE、BSCP)比非法操作更能体现技术价值。Bug Bounty 平台(HackerOne、各厂商 SRC)提供了合法赚钱的渠道,最高单漏洞奖励可达数万元。', { x: 0.7, y: 6.02, w: 11.8, h: 0.6, fontSize: 10, color: '1a4a7a', fontFace: 'Arial', lineSpacingMultiple: 1.3 }); slide.addText('ANDROID REVERSE ENGINEERING', { x: 0.5, y: 7.0, w: 5, h: 0.25, fontSize: 8, color: C.border, bold: true, fontFace: 'Arial' }); slide.addText('09 / 10', { x: 11.5, y: 7.0, w: 1.2, h: 0.25, fontSize: 8, color: C.border, fontFace: 'Arial', align: 'right' }); } // ────────────────────────────── // SLIDE 10: 学习路线 // ────────────────────────────── { const slide = pptx.addSlide(); slide.background = { color: C.white }; slide.addShape(pptx.ShapeType.rect, { x: 0, y: 0, w: 0.06, h: 7.5, fill: { color: C.black } }); slide.addText('CHAPTER 09', { x: 0.5, y: 0.5, w: 4, h: 0.25, fontSize: 9, color: C.gray, bold: true, fontFace: 'Arial', charSpacing: 1 }); slide.addShape(pptx.ShapeType.rect, { x: 0.5, y: 0.82, w: 0.5, h: 0.04, fill: { color: C.black } }); slide.addText('从零到实战:学习路线图', { x: 0.5, y: 0.95, w: 12, h: 0.7, fontSize: 28, color: C.black, bold: true, fontFace: 'Arial' }); // 时间线 const timeline = [ { phase: '第 1-2 周:基础准备', desc: '学 Java 基础语法 → 了解 Android 开发结构 → 搭建 Android Studio 环境,写一个简单 APP', done: true }, { phase: '第 3-4 周:静态分析入门', desc: '安装 jadx,解析开源 APK(如 GadgetBridge),读懂类结构和方法调用关系', done: true }, { phase: '第 5-6 周:Smali 与重打包', desc: '用 apktool 解包 → 修改 Smali → 重打包签名 → 安装验证,完成第一次 patch', done: true }, { phase: '第 7-8 周:动态分析 Frida', desc: '配置 Frida 环境 → 完成基本 hook → 追踪加密函数 → 打印调用栈定位逻辑', done: true }, { phase: '第 2-3 月:CTF 实战', desc: '在 CTF 平台做 Android 题,解决真实混淆/加壳场景,积累实战解题经验', done: false }, ]; // 竖线 slide.addShape(pptx.ShapeType.line, { x: 0.9, y: 2.1, w: 0, h: 4.4, line: { color: C.border, width: 1 } }); timeline.forEach((item, i) => { const y = 2.0 + i * 0.9; // 圆点 slide.addShape(pptx.ShapeType.ellipse, { x: 0.65, y: y + 0.02, w: 0.5, h: 0.5, fill: { color: item.done ? C.black : C.white }, line: { color: item.done ? C.black : C.border, width: 2 } }); if (item.done) { slide.addText(String(i + 1), { x: 0.65, y: y + 0.02, w: 0.5, h: 0.5, fontSize: 11, color: C.white, bold: true, fontFace: 'Arial', align: 'center', valign: 'middle' }); } slide.addText(item.phase, { x: 1.3, y: y + 0.02, w: 5.1, h: 0.28, fontSize: 12, color: C.black, bold: true, fontFace: 'Arial' }); slide.addText(item.desc, { x: 1.3, y: y + 0.32, w: 5.3, h: 0.45, fontSize: 10, color: C.gray, fontFace: 'Arial', lineSpacingMultiple: 1.3 }); }); // 右侧:练习 APK + 技能树 slide.addShape(pptx.ShapeType.roundRect, { x: 7.1, y: 2.0, w: 5.6, h: 2.0, fill: { color: C.lightGray }, line: { color: 'e8e8ed', width: 1 }, rectRadius: 0.12 }); slide.addText('🛠 推荐练习 APK', { x: 7.3, y: 2.12, w: 5, h: 0.28, fontSize: 12, color: C.black, bold: true, fontFace: 'Arial' }); const apks = [ { name: 'InsecureBank v2', level: '入门' }, { name: 'DIVA Android', level: '入门' }, { name: 'UnCrackable Level 1-3', level: '进阶' }, { name: 'OWASP GoatDroid', level: '综合' }, ]; apks.forEach((apk, i) => { slide.addShape(pptx.ShapeType.line, { x: 7.3, y: 2.52 + i * 0.33, w: 5.1, h: 0, line: { color: 'f0f0f0', width: 1 } }); slide.addText(apk.name, { x: 7.3, y: 2.55 + i * 0.33, w: 3.5, h: 0.25, fontSize: 10, color: C.black, bold: true, fontFace: 'Arial' }); slide.addText(apk.level, { x: 11.2, y: 2.55 + i * 0.33, w: 1.2, h: 0.25, fontSize: 9, color: C.gray, fontFace: 'Arial', align: 'right' }); }); // 技能树 slide.addShape(pptx.ShapeType.roundRect, { x: 7.1, y: 4.15, w: 5.6, h: 2.4, fill: { color: C.lightGray }, line: { color: 'e8e8ed', width: 1 }, rectRadius: 0.12 }); slide.addText('🎯 技能树总览', { x: 7.3, y: 4.28, w: 5, h: 0.28, fontSize: 12, color: C.black, bold: true, fontFace: 'Arial' }); const skills = [ ['Java/Kotlin', 'Smali 语法'], ['jadx 使用', 'apktool 重打包'], ['Frida 插桩', '抓包分析'], ['ARM 汇编 (进阶)', '脱壳技术 (进阶)'], ]; skills.forEach((row, ri) => { row.forEach((skill, ci) => { const isAdv = skill.includes('进阶'); slide.addShape(pptx.ShapeType.roundRect, { x: 7.3 + ci * 2.75, y: 4.68 + ri * 0.43, w: 2.55, h: 0.34, fill: { color: isAdv ? 'f0f0f0' : C.white }, line: { color: 'e8e8ed', width: 1 }, rectRadius: 0.06 }); slide.addText(skill, { x: 7.35 + ci * 2.75, y: 4.7 + ri * 0.43, w: 2.45, h: 0.3, fontSize: 9.5, color: isAdv ? C.gray : C.black, bold: !isAdv, fontFace: 'Arial', align: 'center' }); }); }); slide.addText('ANDROID REVERSE ENGINEERING', { x: 0.5, y: 7.0, w: 5, h: 0.25, fontSize: 8, color: C.border, bold: true, fontFace: 'Arial' }); slide.addText('10 / 10', { x: 11.5, y: 7.0, w: 1.2, h: 0.25, fontSize: 8, color: C.border, fontFace: 'Arial', align: 'right' }); } // 保存文件 await pptx.writeFile({ fileName: '安卓逆向工程简介.pptx' }); } catch (error) { console.error('导出失败:', error); alert('导出失败: ' + error.message); } finally { loading.classList.add('hidden'); } } function loadScript(src) { return new Promise((resolve, reject) => { if (window.PptxGenJS) { resolve(); return; } const script = document.createElement('script'); script.src = src; script.onload = resolve; script.onerror = reject; document.head.appendChild(script); }); } // ============================================ // 初始化 // ============================================ initSidebar(); initProgress(); </script> </body> </html>
我们也可以设计多个提示词动态模板动态生成不同的ppt
下面是claude生成的代码
<!DOCTYPE html> <html lang="zh-CN"> <head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <title>安卓逆向工程简介</title> <style> * { margin: 0; padding: 0; box-sizing: border-box; } body { font-family: 'Microsoft YaHei', '微软雅黑', sans-serif; background: #f0f2f5; color: #1a1a1a; overflow: hidden; } /* ===== 顶栏 ===== */ .control-bar { position: fixed; top: 0; left: 0; right: 0; height: 54px; background: #ffffff; border-bottom: 1px solid #e0e4ea; display: flex; align-items: center; justify-content: space-between; padding: 0 24px; z-index: 1000; } .logo { font-size: 16px; font-weight: 700; color: #1a6bff; display: flex; align-items: center; gap: 8px; } .logo-icon { width: 32px; height: 32px; background: #1a6bff; border-radius: 8px; display: flex; align-items: center; justify-content: center; font-size: 16px; color: #fff; } .slide-counter { font-size: 13px; color: #888; background: #f0f2f5; padding: 4px 14px; border-radius: 20px; margin-left: 14px; font-weight: 500; } .ctrl-right { display: flex; align-items: center; gap: 10px; } .btn { padding: 8px 18px; border: none; border-radius: 8px; cursor: pointer; font-size: 13px; font-family: inherit; font-weight: 600; transition: all 0.2s; display: flex; align-items: center; gap: 6px; } .btn-nav { background: #f0f2f5; color: #555; border: 1px solid #dde1e8; } .btn-nav:hover:not(:disabled) { background: #e4e8f0; color: #222; } .btn-nav:disabled { opacity: 0.4; cursor: not-allowed; } .btn-export { background: #1a6bff; color: #fff; } .btn-export:hover { background: #0055e0; transform: translateY(-1px); } .btn-export:disabled { opacity: 0.5; cursor: not-allowed; transform: none; } /* 进度条 */ .progress { position: fixed; top: 54px; left: 0; height: 3px; background: #1a6bff; transition: width 0.4s ease; z-index: 999; } /* 幻灯片区域 */ .stage { position: fixed; top: 54px; left: 0; right: 0; bottom: 60px; display: flex; align-items: center; justify-content: center; padding: 16px; } .slide-wrap { position: relative; width: 100%; max-width: 1000px; aspect-ratio: 16/9; } .slide { position: absolute; inset: 0; border-radius: 12px; overflow: hidden; box-shadow: 0 4px 24px rgba(0,0,0,0.10); opacity: 0; transform: translateX(40px) scale(0.98); transition: all 0.4s cubic-bezier(0.4,0,0.2,1); pointer-events: none; background: #ffffff; } .slide.active { opacity: 1; transform: none; pointer-events: all; } .slide.exit-left { opacity: 0; transform: translateX(-40px) scale(0.98); } /* 底部 dots */ .dots-bar { position: fixed; bottom: 0; left: 0; right: 0; height: 60px; background: #ffffff; border-top: 1px solid #e0e4ea; display: flex; align-items: center; justify-content: center; gap: 8px; } .dot { width: 8px; height: 8px; border-radius: 50%; background: #d0d5df; cursor: pointer; transition: all 0.25s; } .dot.active { width: 28px; border-radius: 4px; background: #1a6bff; } .dot:hover:not(.active) { background: #aab0c0; } /* Toast */ .toast { position: fixed; top: 64px; right: 20px; padding: 11px 20px; border-radius: 10px; font-size: 13px; font-weight: 500; transform: translateY(-8px); opacity: 0; transition: all 0.3s; z-index: 2000; pointer-events: none; } .toast.show { transform: translateY(0); opacity: 1; } .toast.info { background: #e8f0ff; border: 1px solid #b0caff; color: #1a6bff; } .toast.success { background: #e8f8ef; border: 1px solid #a0ddb5; color: #0a8040; } .toast.error { background: #fff0f0; border: 1px solid #ffbbbb; color: #cc2200; } .key-hint { position: fixed; bottom: 70px; right: 16px; font-size: 11px; color: #bbb; } /* =================================================== 通用幻灯片布局元素 =================================================== */ .slide-inner { position: relative; width: 100%; height: 100%; } /* 左侧色带 */ .left-accent { position: absolute; left: 0; top: 0; bottom: 0; width: 5px; } /* 顶部标签 */ .s-label { font-size: 10px; font-weight: 700; letter-spacing: 2.5px; text-transform: uppercase; margin-bottom: 5px; } .s-title { font-size: 24px; font-weight: 900; color: #1a1a1a; line-height: 1.25; } .hl { color: #1a6bff; } .hl-red { color: #e03030; } .hl-green { color: #0a8040; } .hl-orange { color: #e06800; } /* ===== 第1页 封面 ===== */ .cover-slide { width: 100%; height: 100%; display: flex; } .cover-left { width: 55%; background: #1a6bff; display: flex; flex-direction: column; justify-content: center; padding: 40px 44px; position: relative; overflow: hidden; } .cover-left::before { content: ''; position: absolute; bottom: -60px; right: -60px; width: 220px; height: 220px; background: rgba(255,255,255,0.08); border-radius: 50%; } .cover-left::after { content: ''; position: absolute; top: -40px; left: -40px; width: 140px; height: 140px; background: rgba(255,255,255,0.06); border-radius: 50%; } .cover-badge { display: inline-flex; align-items: center; gap: 6px; background: rgba(255,255,255,0.15); border: 1px solid rgba(255,255,255,0.25); border-radius: 20px; padding: 4px 14px; font-size: 10px; color: rgba(255,255,255,0.9); letter-spacing: 2px; margin-bottom: 20px; width: fit-content; } .cover-main-title { font-size: 38px; font-weight: 900; color: #fff; line-height: 1.15; margin-bottom: 8px; } .cover-sub-title { font-size: 16px; font-weight: 400; color: rgba(255,255,255,0.75); margin-bottom: 28px; } .cover-divider { width: 40px; height: 3px; background: rgba(255,255,255,0.5); border-radius: 2px; margin-bottom: 20px; } .cover-en { font-size: 11px; color: rgba(255,255,255,0.5); letter-spacing: 1.5px; } .cover-right { flex: 1; background: #ffffff; display: flex; flex-direction: column; justify-content: center; padding: 32px 36px; } .cover-right-label { font-size: 11px; font-weight: 700; color: #1a6bff; letter-spacing: 2px; text-transform: uppercase; margin-bottom: 20px; } .cover-tag-list { display: flex; flex-direction: column; gap: 10px; } .cover-tag-item { display: flex; align-items: center; gap: 12px; padding: 11px 14px; background: #f7f9fc; border: 1px solid #e8ecf2; border-radius: 8px; font-size: 12px; color: #333; font-weight: 500; } .cover-tag-icon { width: 28px; height: 28px; background: #1a6bff; border-radius: 7px; display: flex; align-items: center; justify-content: center; font-size: 13px; flex-shrink: 0; } /* ===== 第2页 目录 ===== */ .toc-layout { display: flex; height: 100%; } .toc-left { width: 220px; background: #1a6bff; display: flex; flex-direction: column; justify-content: center; padding: 0 30px; flex-shrink: 0; } .toc-left-label { font-size: 10px; font-weight: 700; letter-spacing: 3px; color: rgba(255,255,255,0.65); text-transform: uppercase; margin-bottom: 10px; } .toc-left-title { font-size: 30px; font-weight: 900; color: #fff; line-height: 1.2; margin-bottom: 16px; } .toc-divider { width: 36px; height: 3px; background: rgba(255,255,255,0.4); border-radius: 2px; } .toc-right { flex: 1; background: #ffffff; display: flex; flex-direction: column; justify-content: center; gap: 8px; padding: 24px 28px; } .toc-row { display: flex; align-items: center; gap: 14px; padding: 11px 14px; background: #f7f9fc; border: 1px solid #e8ecf2; border-radius: 8px; cursor: default; transition: all 0.2s; } .toc-row:hover { background: #edf2ff; border-color: #b8d0ff; transform: translateX(3px); } .toc-num { width: 30px; height: 30px; border-radius: 7px; background: #1a6bff; display: flex; align-items: center; justify-content: center; font-size: 12px; font-weight: 700; color: #fff; flex-shrink: 0; } .toc-info h4 { font-size: 13px; font-weight: 600; color: #1a1a1a; margin-bottom: 1px; } .toc-info p { font-size: 10px; color: #999; } .toc-arr { margin-left: auto; color: #1a6bff; font-size: 15px; font-weight: 700; } /* ===== 第3页 简介 ===== */ .intro-layout { display: flex; height: 100%; } .intro-left { flex: 1; padding: 28px 28px 24px; display: flex; flex-direction: column; justify-content: center; border-right: 1px solid #e8ecf2; } .intro-right { width: 240px; background: #f7f9fc; display: flex; flex-direction: column; justify-content: center; gap: 0; padding: 18px 16px; } .def-box { background: #edf2ff; border-left: 4px solid #1a6bff; border-radius: 0 8px 8px 0; padding: 12px 14px; margin-bottom: 18px; font-size: 12px; color: #333; line-height: 1.75; } .def-box strong { color: #1a6bff; } .pts { display: flex; flex-direction: column; gap: 9px; } .pt { display: flex; align-items: flex-start; gap: 9px; font-size: 12px; color: #444; } .pt-dot { width: 6px; height: 6px; border-radius: 50%; background: #1a6bff; flex-shrink: 0; margin-top: 4px; } .pt-dot.warn { background: #e06800; } .flow-card { background: #ffffff; border: 1px solid #e0e4ea; border-radius: 8px; padding: 9px 12px; display: flex; align-items: center; gap: 10px; } .flow-card.active-card { background: #edf2ff; border-color: #b8d0ff; } .flow-icon { font-size: 18px; } .flow-card h4 { font-size: 11.5px; font-weight: 700; color: #1a1a1a; margin-bottom: 1px; } .flow-card p { font-size: 9.5px; color: #999; } .flow-arr { text-align: center; color: #1a6bff; font-size: 14px; padding: 3px 0; } /* ===== 第4页 工具链 ===== */ .tools-wrap { height: 100%; padding: 24px 28px; display: flex; flex-direction: column; background: #fff; } .page-header { margin-bottom: 14px; } .tools-grid { display: grid; grid-template-columns: repeat(3, 1fr); gap: 10px; flex: 1; align-content: center; } .tool-card { background: #f7f9fc; border: 1px solid #e8ecf2; border-radius: 10px; padding: 14px; transition: all 0.2s; } .tool-card:hover { background: #edf2ff; border-color: #b8d0ff; transform: translateY(-2px); } .tc-head { display: flex; align-items: center; gap: 10px; margin-bottom: 8px; } .tc-ico { width: 34px; height: 34px; border-radius: 8px; display: flex; align-items: center; justify-content: center; font-size: 17px; flex-shrink: 0; } .tc-head h4 { font-size: 13px; font-weight: 700; color: #1a1a1a; } .tc-type { font-size: 9.5px; color: #999; margin-top: 1px; } .tool-card p { font-size: 10.5px; color: #666; line-height: 1.6; } .tc-tags { display: flex; gap: 4px; margin-top: 9px; flex-wrap: wrap; } .tc-tag { font-size: 9.5px; background: #e8f0ff; color: #1a6bff; border-radius: 4px; padding: 2px 8px; font-weight: 600; } /* ===== 第5页 APK结构 ===== */ .apk-layout { display: flex; height: 100%; background: #fff; } .apk-left { flex: 1; padding: 26px 24px; border-right: 1px solid #e8ecf2; display: flex; flex-direction: column; } .apk-right { width: 272px; background: #f7f9fc; display: flex; flex-direction: column; gap: 6px; justify-content: center; padding: 16px; } .tree-box { background: #1a1a2a; border-radius: 10px; padding: 14px 16px; font-family: 'Courier New', monospace; font-size: 11px; line-height: 1.9; flex: 1; margin-top: 12px; overflow: hidden; } .t-root { color: #5bb8ff; font-weight: 700; } .t-yellow { color: #f0c040; } .t-blue { color: #7b9cff; } .t-green { color: #4caf50; } .t-gray { color: #666888; } .struct-card { padding: 10px 12px; border-radius: 7px; border-left: 3px solid; background: #ffffff; border-top: 1px solid #e8ecf2; border-right: 1px solid #e8ecf2; border-bottom: 1px solid #e8ecf2; } .struct-card h5 { font-size: 11px; font-weight: 700; margin-bottom: 3px; } .struct-card p { font-size: 10px; color: #888; line-height: 1.5; } /* ===== 第6页 技术 ===== */ .tech-wrap { height: 100%; padding: 24px 28px; display: flex; flex-direction: column; background: #fff; } .tech-grid { display: grid; grid-template-columns: repeat(2, 1fr); gap: 10px; flex: 1; align-content: center; } .tech-card { background: #f7f9fc; border: 1px solid #e8ecf2; border-radius: 10px; padding: 14px; display: flex; gap: 12px; transition: all 0.2s; } .tech-card:hover { background: #edf2ff; border-color: #b8d0ff; } .tc-icon-box { width: 40px; height: 40px; border-radius: 9px; display: flex; align-items: center; justify-content: center; font-size: 19px; flex-shrink: 0; } .tech-card h4 { font-size: 13px; font-weight: 700; color: #1a1a1a; margin-bottom: 5px; } .tech-card p { font-size: 11px; color: #666; line-height: 1.6; } /* ===== 第7页 防护 ===== */ .def-slide { display: flex; flex-direction: column; height: 100%; background: #fff; } .def-page-header { padding: 20px 28px 12px; border-bottom: 1px solid #e8ecf2; } .def-body { display: flex; flex: 1; overflow: hidden; } .def-col { flex: 1; display: flex; flex-direction: column; gap: 8px; padding: 14px 18px; } .def-col-left { border-right: 1px solid #e8ecf2; } .def-hdr { display: flex; align-items: center; gap: 8px; padding: 9px 13px; border-radius: 8px; font-size: 13px; font-weight: 700; margin-bottom: 2px; } .def-hdr.atk { background: #fff0f0; border: 1px solid #ffc0c0; color: #cc2200; } .def-hdr.prt { background: #edf2ff; border: 1px solid #b8d0ff; color: #1a6bff; } .def-item { padding: 9px 12px; border-radius: 7px; background: #f7f9fc; border: 1px solid #e8ecf2; display: flex; align-items: flex-start; gap: 8px; transition: all 0.2s; } .def-item:hover { border-color: #c8d8ff; background: #f0f5ff; } .di-ico { font-size: 15px; flex-shrink: 0; margin-top: 1px; } .di-c h5 { font-size: 11.5px; font-weight: 600; color: #1a1a1a; margin-bottom: 2px; } .di-c p { font-size: 10px; color: #888; line-height: 1.5; } .vs-sep { width: 1px; background: #e8ecf2; display: flex; align-items: center; justify-content: center; position: relative; } .vs-txt { position: absolute; background: #fff; border: 2px solid #e8ecf2; color: #bbb; font-size: 10px; font-weight: 700; width: 30px; height: 30px; border-radius: 50%; display: flex; align-items: center; justify-content: center; } /* ===== 第8页 总结 ===== */ .end-slide { display: flex; flex-direction: column; height: 100%; background: #fff; } .end-top { background: #1a6bff; padding: 28px 36px 24px; display: flex; flex-direction: column; align-items: center; text-align: center; } .end-icon { font-size: 42px; margin-bottom: 10px; } .end-title { font-size: 26px; font-weight: 900; color: #fff; margin-bottom: 8px; } .end-desc { font-size: 12px; color: rgba(255,255,255,0.75); line-height: 1.7; max-width: 560px; } .end-bottom { flex: 1; padding: 18px 28px 16px; display: flex; flex-direction: column; gap: 14px; } .stage-cards { display: flex; gap: 12px; justify-content: center; } .stage-card { background: #f7f9fc; border: 1px solid #e8ecf2; border-radius: 10px; padding: 14px 16px; flex: 1; text-align: center; transition: all 0.2s; } .stage-card:hover { background: #edf2ff; border-color: #b8d0ff; } .stage-card .si { font-size: 22px; margin-bottom: 7px; } .stage-card h5 { font-size: 12.5px; font-weight: 700; color: #1a1a1a; margin-bottom: 6px; } .stage-card p { font-size: 10.5px; color: #888; line-height: 1.7; } .warn-box { background: #fffbec; border: 1px solid #f0d060; border-radius: 8px; padding: 10px 16px; font-size: 11.5px; color: #886600; display: flex; align-items: center; gap: 8px; } </style> </head> <body> <div class="progress" id="prog" style="width:12.5%"></div> <!-- 顶栏 --> <div class="control-bar"> <div style="display:flex;align-items:center"> <div class="logo"> <div class="logo-icon">🔐</div> AndroidRev </div> <div class="slide-counter" id="counter">1 / 8</div> </div> <div class="ctrl-right"> <button class="btn btn-nav" id="btnPrev" onclick="go(-1)" disabled>◀ 上一页</button> <button class="btn btn-nav" id="btnNext" onclick="go(1)">下一页 ▶</button> <button class="btn btn-export" id="btnExport" onclick="doExport()">📥 导出 PPTX</button> </div> </div> <div class="toast" id="toast"></div> <!-- 幻灯片区域 --> <div class="stage"> <div class="slide-wrap" id="slideWrap"> <!-- ========== 第1页:封面 ========== --> <div class="slide active"> <div class="cover-slide"> <div class="cover-left"> <div class="cover-badge">● SECURITY RESEARCH</div> <h1 class="cover-main-title">安卓逆向工程</h1> <p class="cover-sub-title">入门与实践简介</p> <div class="cover-divider"></div> <p class="cover-en">Android Reverse Engineering · Introduction</p> </div> <div class="cover-right"> <div class="cover-right-label">课程涵盖内容</div> <div class="cover-tag-list"> <div class="cover-tag-item"> <div class="cover-tag-icon">📦</div> <span>APK 安装包分析与解包技术</span> </div> <div class="cover-tag-item"> <div class="cover-tag-icon">🔍</div> <span>静态代码反编译与阅读</span> </div> <div class="cover-tag-item"> <div class="cover-tag-icon">🐛</div> <span>动态调试与运行时插桩</span> </div> <div class="cover-tag-item"> <div class="cover-tag-icon">🛡️</div> <span>安全研究与防护对抗</span> </div> <div class="cover-tag-item"> <div class="cover-tag-icon">⚙️</div> <span>Frida Hook 实战应用</span> </div> </div> </div> </div> </div> <!-- ========== 第2页:目录 ========== --> <div class="slide"> <div class="toc-layout"> <div class="toc-left"> <div class="toc-left-label">CONTENTS</div> <div class="toc-left-title">课程<br>目录</div> <div class="toc-divider"></div> </div> <div class="toc-right"> <div class="toc-row"> <div class="toc-num">01</div> <div class="toc-info"><h4>什么是安卓逆向</h4><p>概念定义与应用场景</p></div> <span class="toc-arr">›</span> </div> <div class="toc-row"> <div class="toc-num">02</div> <div class="toc-info"><h4>核心工具链</h4><p>必备工具与环境搭建</p></div> <span class="toc-arr">›</span> </div> <div class="toc-row"> <div class="toc-num">03</div> <div class="toc-info"><h4>APK 文件结构</h4><p>深入了解安装包组成</p></div> <span class="toc-arr">›</span> </div> <div class="toc-row"> <div class="toc-num">04</div> <div class="toc-info"><h4>常用逆向技术</h4><p>静态 / 动态分析方法</p></div> <span class="toc-arr">›</span> </div> <div class="toc-row"> <div class="toc-num">05</div> <div class="toc-info"><h4>防护与反制措施</h4><p>加固方案 vs 绕过技术</p></div> <span class="toc-arr">›</span> </div> <div class="toc-row"> <div class="toc-num">06</div> <div class="toc-info"><h4>总结与学习路线</h4><p>进阶方向与资源推荐</p></div> <span class="toc-arr">›</span> </div> </div> </div> </div> <!-- ========== 第3页:什么是逆向 ========== --> <div class="slide"> <div class="intro-layout"> <div class="intro-left"> <div class="s-label" style="color:#1a6bff;margin-bottom:4px">01 · INTRODUCTION</div> <div class="s-title" style="margin-bottom:14px">什么是<span class="hl">安卓逆向</span>工程?</div> <div class="def-box"> 安卓逆向工程是指在<strong>不具备源码</strong>的情况下,通过对 APK 文件进行反编译、分析和调试,理解应用程序内部逻辑、数据流程和安全机制的技术手段。 </div> <div class="pts"> <div class="pt"><span class="pt-dot"></span><span><strong style="color:#1a1a1a">漏洞挖掘:</strong>发现 App 中的安全漏洞与隐私泄露风险</span></div> <div class="pt"><span class="pt-dot"></span><span><strong style="color:#1a1a1a">恶意分析:</strong>分析病毒、木马等恶意程序的行为特征</span></div> <div class="pt"><span class="pt-dot"></span><span><strong style="color:#1a1a1a">兼容适配:</strong>理解第三方 SDK 行为,辅助兼容性开发</span></div> <div class="pt"><span class="pt-dot"></span><span><strong style="color:#1a1a1a">安全审计:</strong>对自身产品进行渗透测试与合规检测</span></div> <div class="pt"><span class="pt-dot warn"></span><span style="color:#886600"><strong>重要提示:</strong>仅限合法授权范围内使用,切勿用于违法活动</span></div> </div> </div> <div class="intro-right"> <div class="flow-card"><div class="flow-icon">📦</div><div><h4>APK 安装包</h4><p>目标文件</p></div></div> <div class="flow-arr">↓</div> <div class="flow-card"><div class="flow-icon">🔧</div><div><h4>反编译 / 解包</h4><p>工具处理阶段</p></div></div> <div class="flow-arr">↓</div> <div class="flow-card"><div class="flow-icon">🔍</div><div><h4>静态分析</h4><p>代码逻辑阅读</p></div></div> <div class="flow-arr">↓</div> <div class="flow-card"><div class="flow-icon">🐛</div><div><h4>动态调试</h4><p>运行时行为监控</p></div></div> <div class="flow-arr">↓</div> <div class="flow-card active-card"><div class="flow-icon">💡</div><div><h4>分析结论</h4><p>漏洞 / 逻辑 / 算法</p></div></div> </div> </div> </div> <!-- ========== 第4页:工具链 ========== --> <div class="slide"> <div class="tools-wrap"> <div class="page-header"> <div class="s-label" style="color:#1a6bff">02 · TOOLS</div> <div class="s-title">核心<span class="hl">工具链</span>全景</div> </div> <div class="tools-grid"> <div class="tool-card"> <div class="tc-head"> <div class="tc-ico" style="background:#e8f0ff">🔨</div> <div><h4>Jadx</h4><div class="tc-type">反编译工具</div></div> </div> <p>将 DEX/APK 反编译为可读的 Java 源码,支持图形界面,是最常用的静态分析工具。</p> <div class="tc-tags"><span class="tc-tag">静态</span><span class="tc-tag">Java</span><span class="tc-tag">开源</span></div> </div> <div class="tool-card"> <div class="tc-head"> <div class="tc-ico" style="background:#f0ebff">📋</div> <div><h4>Apktool</h4><div class="tc-type">资源解包工具</div></div> </div> <p>反编译 APK 为 Smali 中间代码,支持修改后重新打包,常用于代码插桩与修改。</p> <div class="tc-tags"><span class="tc-tag">Smali</span><span class="tc-tag">重打包</span><span class="tc-tag">资源</span></div> </div> <div class="tool-card"> <div class="tc-head"> <div class="tc-ico" style="background:#fff2e8">🐛</div> <div><h4>Frida</h4><div class="tc-type">动态插桩框架</div></div> </div> <p>强大的动态插桩工具,可在运行时 Hook Java/Native 函数,拦截参数与返回值。</p> <div class="tc-tags"><span class="tc-tag">动态</span><span class="tc-tag">Hook</span><span class="tc-tag">Python</span></div> </div> <div class="tool-card"> <div class="tc-head"> <div class="tc-ico" style="background:#eafaf0">🌐</div> <div><h4>Burp Suite</h4><div class="tc-type">流量抓包工具</div></div> </div> <p>中间人代理工具,拦截分析 HTTP/HTTPS 流量,配合 SSL Unpinning 完成接口分析。</p> <div class="tc-tags"><span class="tc-tag">抓包</span><span class="tc-tag">HTTPS</span><span class="tc-tag">API</span></div> </div> <div class="tool-card"> <div class="tc-head"> <div class="tc-ico" style="background:#fff0f0">🏔️</div> <div><h4>IDA Pro</h4><div class="tc-type">反汇编分析器</div></div> </div> <p>业界顶级反汇编工具,支持 ARM/x86 架构,用于分析 Native .so 库文件。</p> <div class="tc-tags"><span class="tc-tag">NDK</span><span class="tc-tag">ARM</span><span class="tc-tag">汇编</span></div> </div> <div class="tool-card"> <div class="tc-head"> <div class="tc-ico" style="background:#e8f5ff">📱</div> <div><h4>ADB + Logcat</h4><div class="tc-type">调试桥接工具</div></div> </div> <p>Android 调试桥,支持安装应用、查看日志、文件传输、Shell 命令执行等操作。</p> <div class="tc-tags"><span class="tc-tag">官方</span><span class="tc-tag">日志</span><span class="tc-tag">Shell</span></div> </div> </div> </div> </div> <!-- ========== 第5页:APK结构 ========== --> <div class="slide"> <div class="apk-layout"> <div class="apk-left"> <div class="s-label" style="color:#1a6bff">03 · STRUCTURE</div> <div class="s-title">APK <span class="hl">文件结构</span>解析</div> <div class="tree-box"> <div class="t-root">📦 example.apk (ZIP 格式)</div> <div class="t-yellow">├── 📄 classes.dex ← Dalvik 字节码</div> <div class="t-blue">├── 📄 classes2.dex ← 多 DEX 支持</div> <div class="t-yellow">├── 📄 AndroidManifest.xml</div> <div class="t-gray">├── 📁 res/ ← 资源文件</div> <div class="t-gray"> ├── layout/</div> <div class="t-gray"> └── drawable/</div> <div class="t-green">├── 📄 resources.arsc ← 资源索引表</div> <div class="t-blue">├── 📁 assets/ ← 原始资源</div> <div class="t-yellow">├── 📁 lib/ ← Native 库</div> <div class="t-gray"> ├── arm64-v8a/</div> <div class="t-gray"> └── armeabi-v7a/</div> <div class="t-green">└── 📁 META-INF/ ← 签名信息</div> </div> </div> <div class="apk-right"> <div class="struct-card" style="border-left-color:#1a6bff"><h5 style="color:#1a6bff">📄 classes.dex</h5><p>Dalvik 可执行文件,包含所有 Java/Kotlin 编译后的字节码,是逆向的核心目标。</p></div> <div class="struct-card" style="border-left-color:#7b2ff7"><h5 style="color:#7b2ff7">📄 AndroidManifest</h5><p>应用配置清单,包含权限申请、组件注册、版本信息等关键配置。</p></div> <div class="struct-card" style="border-left-color:#e06800"><h5 style="color:#e06800">📁 lib/</h5><p>Native C/C++ 编译的 .so 动态链接库,常含核心算法和加密逻辑。</p></div> <div class="struct-card" style="border-left-color:#0a8040"><h5 style="color:#0a8040">📁 META-INF/</h5><p>存储 APK 签名文件(CERT.RSA),用于验证应用完整性与来源。</p></div> <div class="struct-card" style="border-left-color:#aaa"><h5 style="color:#666">📁 assets/</h5><p>原始资源文件,可能存放加密配置、H5 资源或二次加密的 DEX 文件。</p></div> </div> </div> </div> <!-- ========== 第6页:常用技术 ========== --> <div class="slide"> <div class="tech-wrap"> <div class="page-header"> <div class="s-label" style="color:#1a6bff">04 · TECHNIQUES</div> <div class="s-title">常用<span class="hl">逆向技术</span>总览</div> </div> <div class="tech-grid"> <div class="tech-card"> <div class="tc-icon-box" style="background:#e8f0ff">🔍</div> <div><h4>静态代码分析</h4><p>使用 Jadx 将 DEX 反编译为 Java 代码,分析业务逻辑、加密算法、API 接口。无需运行程序,风险低。</p></div> </div> <div class="tech-card"> <div class="tc-icon-box" style="background:#f0ebff">🐛</div> <div><h4>动态调试与插桩</h4><p>通过 Frida / Xposed 在运行时 Hook 关键函数,实时获取参数、返回值,追踪代码执行流。</p></div> </div> <div class="tech-card"> <div class="tc-icon-box" style="background:#fff2e8">✏️</div> <div><h4>Smali 代码插桩</h4><p>使用 Apktool 解包为 Smali,手动修改字节码逻辑后重新打包签名,绕过限制或添加调试代码。</p></div> </div> <div class="tech-card"> <div class="tc-icon-box" style="background:#eafaf0">🌐</div> <div><h4>网络流量分析</h4><p>使用 Burp Suite 代理拦截 HTTP/HTTPS 流量,配合 SSL Unpinning 绕过证书校验,还原接口协议。</p></div> </div> <div class="tech-card"> <div class="tc-icon-box" style="background:#fff0f0">💾</div> <div><h4>内存 Dump 分析</h4><p>对运行中的进程进行内存转储,提取解密后的 DEX、密钥、敏感数据,突破加固保护层。</p></div> </div> <div class="tech-card"> <div class="tc-icon-box" style="background:#e8f5ff">🏔️</div> <div><h4>Native 层分析</h4><p>使用 IDA Pro / Ghidra 分析 .so 汇编代码,还原 Native 加密函数与核心算法逻辑。</p></div> </div> </div> </div> </div> <!-- ========== 第7页:防护与反制 ========== --> <div class="slide"> <div class="def-slide"> <div class="def-page-header"> <div class="s-label" style="color:#1a6bff">05 · DEFENSE & ATTACK</div> <div class="s-title">防护<span class="hl">加固</span> vs 逆向<span class="hl-red">反制</span></div> </div> <div class="def-body"> <div class="def-col def-col-left"> <div class="def-hdr atk">🔥 逆向 / 攻击手段</div> <div class="def-item"><span class="di-ico">🔓</span><div class="di-c"><h5>反调试绕过</h5><p>Hook ptrace / TracerPid 检测,欺骗反调试校验逻辑</p></div></div> <div class="def-item"><span class="di-ico">📡</span><div class="di-c"><h5>SSL Pinning 绕过</h5><p>Frida Hook 证书验证函数,实现中间人流量抓包</p></div></div> <div class="def-item"><span class="di-ico">💉</span><div class="di-c"><h5>内存 Dump 脱壳</h5><p>在 DEX 加载完毕后从内存中提取原始代码文件</p></div></div> <div class="def-item"><span class="di-ico">🔄</span><div class="di-c"><h5>模拟器环境伪装</h5><p>修改设备指纹参数绕过模拟器检测逻辑</p></div></div> <div class="def-item"><span class="di-ico">✏️</span><div class="di-c"><h5>重打包与签名伪造</h5><p>修改 Smali 代码后重新打包,绕过签名校验</p></div></div> </div> <div class="vs-sep"><div class="vs-txt">VS</div></div> <div class="def-col"> <div class="def-hdr prt">🛡️ 防护 / 加固手段</div> <div class="def-item"><span class="di-ico">🔐</span><div class="di-c"><h5>代码混淆</h5><p>ProGuard/R8 混淆类名、方法名,增加阅读难度</p></div></div> <div class="def-item"><span class="di-ico">📦</span><div class="di-c"><h5>DEX 加壳加固</h5><p>梆梆、360加固等方案加密 DEX,运行时解密加载</p></div></div> <div class="def-item"><span class="di-ico">🔍</span><div class="di-c"><h5>反调试检测</h5><p>检测 TracerPid、Frida 特征值、调试端口占用</p></div></div> <div class="def-item"><span class="di-ico">✅</span><div class="di-c"><h5>签名完整性校验</h5><p>运行时验证 APK 签名哈希,防止重打包篡改</p></div></div> <div class="def-item"><span class="di-ico">📌</span><div class="di-c"><h5>SSL Certificate Pinning</h5><p>内置服务器证书指纹,防止流量中间人攻击</p></div></div> </div> </div> </div> </div> <!-- ========== 第8页:总结 ========== --> <div class="slide"> <div class="end-slide"> <div class="end-top"> <div class="end-icon">🎯</div> <h2 class="end-title">总结与学习路线</h2> <p class="end-desc">安卓逆向是一门综合性极强的技术,涵盖 Java/Smali/ARM 汇编、网络协议、密码学等多个领域。建议从基础工具入手,循序渐进,逐步深入 Native 层分析与协议还原。</p> </div> <div class="end-bottom"> <div class="stage-cards"> <div class="stage-card"> <div class="si">📚</div> <h5>基础阶段</h5> <p>Java/Kotlin<br>ADB 调试<br>Jadx 使用</p> </div> <div class="stage-card"> <div class="si">🔧</div> <h5>进阶阶段</h5> <p>Frida Hook<br>Smali 分析<br>Burp 抓包</p> </div> <div class="stage-card"> <div class="si">🏔️</div> <h5>高级阶段</h5> <p>IDA Pro<br>脱壳技术<br>协议还原</p> </div> <div class="stage-card"> <div class="si">🛡️</div> <h5>实战阶段</h5> <p>CTF 竞赛<br>漏洞赏金<br>安全审计</p> </div> </div> <div class="warn-box"> ⚠️ 免责声明:本课程内容仅供安全研究与学习使用,请在法律允许范围内合理使用逆向技术。 </div> </div> </div> </div> </div> </div> <!-- 底部 dots --> <div class="dots-bar" id="dotsBar"></div> <div class="key-hint">← → 键切换页面</div> <script> let cur = 0; const TOTAL = 8; const slides = document.querySelectorAll('.slide'); const dotsBar = document.getElementById('dotsBar'); for (let i = 0; i < TOTAL; i++) { const d = document.createElement('div'); d.className = 'dot' + (i === 0 ? ' active' : ''); d.onclick = () => jump(i); dotsBar.appendChild(d); } function jump(idx) { if (idx === cur || idx < 0 || idx >= TOTAL) return; slides[cur].classList.remove('active'); slides[cur].classList.add('exit-left'); const prev = cur; setTimeout(() => slides[prev].classList.remove('exit-left'), 450); cur = idx; slides[cur].classList.add('active'); updateUI(); } function go(d) { jump(cur + d); } function updateUI() { document.getElementById('counter').textContent = `${cur + 1} / ${TOTAL}`; document.getElementById('prog').style.width = `${((cur + 1) / TOTAL) * 100}%`; document.getElementById('btnPrev').disabled = cur === 0; document.getElementById('btnNext').disabled = cur === TOTAL - 1; document.querySelectorAll('.dot').forEach((d, i) => { d.className = 'dot' + (i === cur ? ' active' : ''); }); } document.addEventListener('keydown', e => { if (e.key === 'ArrowRight' || e.key === 'ArrowDown') go(1); if (e.key === 'ArrowLeft' || e.key === 'ArrowUp') go(-1); }); let tx = 0; document.addEventListener('touchstart', e => tx = e.touches[0].clientX); document.addEventListener('touchend', e => { const d = tx - e.changedTouches[0].clientX; if (Math.abs(d) > 50) go(d > 0 ? 1 : -1); }); function showToast(msg, type = 'info', dur = 3000) { const t = document.getElementById('toast'); t.textContent = msg; t.className = `toast ${type} show`; clearTimeout(t._timer); t._timer = setTimeout(() => t.classList.remove('show'), dur); } function loadScript(src) { return new Promise((resolve, reject) => { if (window.PptxGenJS) { resolve(); return; } const s = document.createElement('script'); s.src = src; s.onload = resolve; s.onerror = reject; document.head.appendChild(s); }); } const CDN_URLS = ['https://unpkg.com/pptxgenjs@4.0.1/dist/pptxgen.bundle.js']; async function ensurePptxGen() { if (window.PptxGenJS) return true; for (const url of CDN_URLS) { try { showToast('⏳ 正在加载导出库...', 'info', 10000); await loadScript(url); if (window.PptxGenJS) return true; } catch (e) { console.warn('CDN failed:', url, e); } } return false; } async function doExport() { const btn = document.getElementById('btnExport'); btn.disabled = true; btn.textContent = '⏳ 生成中...'; const ok = await ensurePptxGen(); if (!ok) { showToast('❌ 库加载失败,请检查网络后重试', 'error', 5000); btn.disabled = false; btn.textContent = '📥 导出 PPTX'; return; } showToast('⏳ 正在生成 PPTX,请稍候...', 'info', 15000); try { const pptx = new PptxGenJS(); pptx.layout = 'LAYOUT_WIDE'; pptx.title = '安卓逆向工程简介'; const W = 13.33, H = 7.5; const C = { blue: '1a6bff', white: 'FFFFFF', dark: '1a1a1a', gray: '888888', light: 'f7f9fc', border: 'e8ecf2', lightBlue: 'edf2ff', red: 'e03030', green: '0a8040' }; const addWhiteBg = (s) => s.addShape(pptx.ShapeType.rect, { x:0, y:0, w:W, h:H, fill:{color:C.white} }); const sLabel = (s, txt, y=0.22) => s.addText(txt, { x:0.42, y, w:9, h:0.26, fontSize:9, bold:true, color:C.blue, charSpacing:2.5 }); const sTitle = (s, parts, y=0.52) => s.addText(parts, { x:0.42, y, w:9, h:0.6, fontSize:22, bold:true }); // Slide 1 封面 { const s = pptx.addSlide(); addWhiteBg(s); // 左侧蓝色区域 s.addShape(pptx.ShapeType.rect, { x:0, y:0, w:7.0, h:H, fill:{color:C.blue} }); // 装饰圆 s.addShape(pptx.ShapeType.ellipse, { x:5.2, y:4.8, w:3.5, h:3.5, fill:{color:'1558d6'}, line:{color:'1558d6'} }); s.addShape(pptx.ShapeType.ellipse, { x:-1.2, y:-1.0, w:2.5, h:2.5, fill:{color:'1558d6'}, line:{color:'1558d6'} }); s.addShape(pptx.ShapeType.roundRect, { x:0.55, y:1.4, w:2.6, h:0.38, fill:{color:'ffffff22'}, line:{color:'ffffff44'}, rectRadius:0.15 }); s.addText('● SECURITY RESEARCH', { x:0.55, y:1.4, w:2.6, h:0.38, align:'center', valign:'middle', fontSize:9.5, bold:true, color:C.white, charSpacing:1.5 }); s.addText('安卓逆向工程', { x:0.5, y:2.0, w:6.2, h:1.0, fontSize:42, bold:true, color:C.white }); s.addText('入门与实践简介', { x:0.5, y:3.08, w:6.2, h:0.65, fontSize:22, color:'ffffffcc' }); s.addShape(pptx.ShapeType.rect, { x:0.5, y:3.88, w:0.55, h:0.04, fill:{color:'ffffff88'} }); s.addText('Android Reverse Engineering · Introduction', { x:0.5, y:4.05, w:6.2, h:0.36, fontSize:11, color:'ffffff88', italic:true }); // 右侧内容 s.addText('课程涵盖内容', { x:7.3, y:1.25, w:5.7, h:0.36, fontSize:11, bold:true, color:C.blue, charSpacing:2 }); const items = [ ['📦', 'APK 安装包分析与解包技术'], ['🔍', '静态代码反编译与阅读'], ['🐛', '动态调试与运行时插桩'], ['🛡️', '安全研究与防护对抗'], ['⚙️', 'Frida Hook 实战应用'], ]; items.forEach(([ic, txt], i) => { const y = 1.75 + i * 1.0; s.addShape(pptx.ShapeType.roundRect, { x:7.3, y, w:5.7, h:0.78, fill:{color:C.light}, line:{color:C.border}, rectRadius:0.08 }); s.addShape(pptx.ShapeType.roundRect, { x:7.45, y:y+0.14, w:0.5, h:0.5, fill:{color:C.blue}, line:{color:C.blue}, rectRadius:0.07 }); s.addText(ic, { x:7.45, y:y+0.14, w:0.5, h:0.5, align:'center', valign:'middle', fontSize:16 }); s.addText(txt, { x:8.08, y:y+0.22, w:4.8, h:0.34, fontSize:12, color:C.dark }); }); } // Slide 2 目录 { const s = pptx.addSlide(); addWhiteBg(s); s.addShape(pptx.ShapeType.rect, { x:0, y:0, w:3.2, h:H, fill:{color:C.blue} }); s.addShape(pptx.ShapeType.rect, { x:3.2, y:0, w:0.02, h:H, fill:{color:C.border} }); s.addText('CONTENTS', { x:0.35, y:2.0, w:2.5, h:0.3, fontSize:9.5, bold:true, color:'ffffffaa', charSpacing:3 }); s.addText('课程\n目录', { x:0.35, y:2.38, w:2.5, h:1.5, fontSize:30, bold:true, color:C.white, lineSpacingMultiple:1.1 }); s.addShape(pptx.ShapeType.rect, { x:0.35, y:3.96, w:0.5, h:0.04, fill:{color:'ffffff66'} }); const rows = [ ['01','什么是安卓逆向','概念定义与应用场景'], ['02','核心工具链','必备工具与环境搭建'], ['03','APK 文件结构','深入了解安装包组成'], ['04','常用逆向技术','静态 / 动态分析方法'], ['05','防护与反制措施','加固方案 vs 绕过技术'], ['06','总结与学习路线','进阶方向与资源推荐'], ]; rows.forEach(([n,t,d], i) => { const y = 0.6 + i * 1.02; s.addShape(pptx.ShapeType.roundRect, { x:3.4, y, w:9.6, h:0.8, fill:{color:C.light}, line:{color:C.border}, rectRadius:0.08 }); s.addShape(pptx.ShapeType.roundRect, { x:3.56, y:y+0.15, w:0.5, h:0.5, fill:{color:C.blue}, line:{color:C.blue}, rectRadius:0.07 }); s.addText(n, { x:3.56, y:y+0.15, w:0.5, h:0.5, align:'center', valign:'middle', fontSize:11, bold:true, color:C.white }); s.addText(t, { x:4.2, y:y+0.1, w:7.5, h:0.32, fontSize:13, bold:true, color:C.dark }); s.addText(d, { x:4.2, y:y+0.44, w:7.5, h:0.26, fontSize:10.5, color:C.gray }); s.addText('›', { x:12.5, y:y+0.2, w:0.4, h:0.4, align:'center', fontSize:16, bold:true, color:C.blue }); }); } // Slide 3 什么是逆向 { const s = pptx.addSlide(); addWhiteBg(s); s.addShape(pptx.ShapeType.rect, { x:0, y:0, w:W, h:0.04, fill:{color:C.blue} }); sLabel(s, '01 · INTRODUCTION'); sTitle(s, [{text:'什么是',options:{color:C.dark}},{text:'安卓逆向',options:{color:C.blue}},{text:'工程?',options:{color:C.dark}}]); s.addShape(pptx.ShapeType.rect, { x:0.42, y:1.26, w:0.06, h:0.88, fill:{color:C.blue} }); s.addShape(pptx.ShapeType.roundRect, { x:0.58, y:1.26, w:7.4, h:0.88, fill:{color:'edf2ff'}, line:{color:'b8d0ff'}, rectRadius:0.06 }); s.addText('安卓逆向工程是指在不具备源码的情况下,通过对 APK 文件进行反编译、分析和调试,\n理解应用程序的内部逻辑、数据流程和安全机制的技术手段。', { x:0.72, y:1.33, w:7.18, h:0.74, fontSize:11.5, color:'334466', lineSpacingMultiple:1.45 }); const pts = [ [C.blue,'漏洞挖掘:','发现 App 中的安全漏洞与隐私泄露风险'], [C.blue,'恶意分析:','分析病毒、木马等恶意程序的行为特征'], [C.blue,'兼容适配:','理解第三方 SDK 行为,辅助兼容性开发'], [C.blue,'安全审计:','对自身产品进行渗透测试与合规检测'], ['e06800','重要提示:','仅限合法授权范围内使用,切勿违法'], ]; pts.forEach(([dc,t,d], i) => { s.addShape(pptx.ShapeType.ellipse, { x:0.45, y:2.35+i*0.55, w:0.1, h:0.1, fill:{color:dc} }); s.addText([{text:t,options:{bold:true,color:C.dark,fontSize:12}},{text:' '+d,options:{color:C.gray,fontSize:12}}], { x:0.65, y:2.3+i*0.55, w:7.3, h:0.44 }); }); // 右侧流程 const flows = [['📦','APK 安装包','目标文件'],['🔧','反编译/解包','工具处理'],['🔍','静态分析','代码阅读'],['🐛','动态调试','运行监控'],['💡','分析结论','漏洞/算法']]; flows.forEach(([ic,t,d], i) => { const isLast = i === 4; s.addShape(pptx.ShapeType.roundRect, { x:8.55, y:0.65+i*1.32, w:4.5, h:0.9, fill:{color:isLast?C.lightBlue:C.light}, line:{color:isLast?C.blue:C.border}, rectRadius:0.1 }); s.addText(ic, { x:8.65, y:0.65+i*1.32, w:0.7, h:0.9, fontSize:20, align:'center', valign:'middle' }); s.addText(t, { x:9.42, y:0.73+i*1.32, w:3.5, h:0.3, fontSize:12.5, bold:true, color:C.dark }); s.addText(d, { x:9.42, y:1.06+i*1.32, w:3.5, h:0.26, fontSize:10, color:C.gray }); if (i < 4) s.addText('↓', { x:8.55, y:1.5+i*1.32, w:4.5, h:0.38, align:'center', fontSize:14, color:C.blue }); }); } // Slide 4 工具链 { const s = pptx.addSlide(); addWhiteBg(s); s.addShape(pptx.ShapeType.rect, { x:0, y:0, w:W, h:0.04, fill:{color:C.blue} }); sLabel(s, '02 · TOOLS'); sTitle(s, [{text:'核心',options:{color:C.dark}},{text:'工具链',options:{color:C.blue}},{text:'全景',options:{color:C.dark}}]); const tools = [ {ic:'🔨',n:'Jadx',tp:'反编译工具',desc:'将 DEX/APK 反编译为可读的 Java 源码,支持图形界面,是最常用的静态分析工具。',tags:['静态','Java','开源'],bg:'e8f0ff'}, {ic:'📋',n:'Apktool',tp:'资源解包工具',desc:'反编译 APK 为 Smali 中间代码,支持修改后重新打包,常用于代码插桩与修改。',tags:['Smali','重打包','资源'],bg:'f0ebff'}, {ic:'🐛',n:'Frida',tp:'动态插桩框架',desc:'可在运行时 Hook Java/Native 函数,拦截参数与返回值的强大动态分析工具。',tags:['动态','Hook','Python'],bg:'fff2e8'}, {ic:'🌐',n:'Burp Suite',tp:'流量抓包工具',desc:'中间人代理工具,拦截分析 HTTP/HTTPS 流量,配合 SSL Unpinning 完成接口分析。',tags:['抓包','HTTPS','API'],bg:'eafaf0'}, {ic:'🏔️',n:'IDA Pro',tp:'反汇编分析器',desc:'业界顶级反汇编工具,支持 ARM/x86 架构,用于深度分析 Native .so 库文件。',tags:['NDK','ARM','汇编'],bg:'fff0f0'}, {ic:'📱',n:'ADB + Logcat',tp:'调试桥接工具',desc:'Android 调试桥,支持安装应用、查看日志、文件传输、Shell 命令执行等操作。',tags:['官方','日志','Shell'],bg:'e8f5ff'}, ]; const cw=4.15, ch=2.42, sx=0.36, sy=1.28, gx=0.19, gy=0.14; tools.forEach((t, i) => { const c=i%3, r=Math.floor(i/3); const x=sx+c*(cw+gx), y=sy+r*(ch+gy); s.addShape(pptx.ShapeType.roundRect, { x, y, w:cw, h:ch, fill:{color:C.light}, line:{color:C.border}, rectRadius:0.1 }); s.addShape(pptx.ShapeType.roundRect, { x:x+0.14, y:y+0.18, w:0.6, h:0.6, fill:{color:t.bg}, line:{color:t.bg}, rectRadius:0.08 }); s.addText(t.ic, { x:x+0.14, y:y+0.18, w:0.6, h:0.6, align:'center', valign:'middle', fontSize:20 }); s.addText(t.n, { x:x+0.85, y:y+0.18, w:3.2, h:0.34, fontSize:13.5, bold:true, color:C.dark }); s.addText(t.tp, { x:x+0.85, y:y+0.54, w:3.2, h:0.26, fontSize:9.5, color:C.gray }); s.addText(t.desc, { x:x+0.14, y:y+0.92, w:cw-0.28, h:0.88, fontSize:10.5, color:C.gray, lineSpacingMultiple:1.4 }); t.tags.forEach((tg,ti) => { s.addShape(pptx.ShapeType.roundRect, { x:x+0.14+ti*1.27, y:y+1.95, w:1.15, h:0.3, fill:{color:C.lightBlue}, line:{color:'b8d0ff'}, rectRadius:0.05 }); s.addText(tg, { x:x+0.14+ti*1.27, y:y+1.95, w:1.15, h:0.3, align:'center', valign:'middle', fontSize:9.5, bold:true, color:C.blue }); }); }); } // Slide 5 APK结构 { const s = pptx.addSlide(); addWhiteBg(s); s.addShape(pptx.ShapeType.rect, { x:0, y:0, w:W, h:0.04, fill:{color:C.blue} }); sLabel(s, '03 · STRUCTURE'); sTitle(s, [{text:'APK ',options:{color:C.dark}},{text:'文件结构',options:{color:C.blue}},{text:'解析',options:{color:C.dark}}]); s.addShape(pptx.ShapeType.roundRect, { x:0.36, y:1.24, w:7.6, h:6.0, fill:{color:'1a1a2a'}, line:{color:'1a1a2a'}, rectRadius:0.1 }); const lines = [ {t:'📦 example.apk (ZIP 格式)',c:'5bb8ff',bold:true}, {t:'├── 📄 classes.dex ← Dalvik 字节码',c:'f0c040'}, {t:'├── 📄 classes2.dex ← 多 DEX 支持',c:'7b9cff'}, {t:'├── 📄 AndroidManifest.xml',c:'f0c040'}, {t:'├── 📁 res/ ← 资源文件',c:'888888'}, {t:'│ ├── layout/',c:'666666'}, {t:'│ └── drawable/',c:'666666'}, {t:'├── 📄 resources.arsc ← 资源索引表',c:'4caf50'}, {t:'├── 📁 assets/ ← 原始资源',c:'7b9cff'}, {t:'├── 📁 lib/ ← Native 库',c:'f0c040'}, {t:'│ ├── arm64-v8a/',c:'666666'}, {t:'│ └── armeabi-v7a/',c:'666666'}, {t:'└── 📁 META-INF/ ← 签名信息',c:'4caf50'}, ]; lines.forEach((l,i) => { s.addText(l.t, { x:0.55, y:1.42+i*0.37, w:7.3, h:0.33, fontSize:10.5, fontFace:'Courier New', color:l.c, bold:!!l.bold }); }); const sc = [ {t:'📄 classes.dex',d:'Dalvik 可执行文件,包含所有 Java/Kotlin 编译后的字节码,是逆向的核心目标。',c:C.blue}, {t:'📄 AndroidManifest',d:'应用配置清单,包含权限申请、组件注册、版本信息等关键配置。',c:'7b2ff7'}, {t:'📁 lib/',d:'Native C/C++ 编译的 .so 动态链接库,常含核心算法和加密逻辑。',c:'e06800'}, {t:'📁 META-INF/',d:'存储 APK 签名文件(CERT.RSA),用于验证应用完整性与来源。',c:C.green}, {t:'📁 assets/',d:'原始资源文件,可能存放加密配置或二次加密的 DEX 文件。',c:'999999'}, ]; sc.forEach((c,i) => { const y=1.24+i*1.24; s.addShape(pptx.ShapeType.roundRect, { x:8.2, y, w:4.82, h:1.08, fill:{color:C.light}, line:{color:C.border}, rectRadius:0.08 }); s.addShape(pptx.ShapeType.rect, { x:8.2, y, w:0.05, h:1.08, fill:{color:c.c} }); s.addText(c.t, { x:8.35, y:y+0.1, w:4.55, h:0.3, fontSize:12, bold:true, color:c.c }); s.addText(c.d, { x:8.35, y:y+0.44, w:4.55, h:0.56, fontSize:10.5, color:C.gray, lineSpacingMultiple:1.3 }); }); } // Slide 6 常用技术 { const s = pptx.addSlide(); addWhiteBg(s); s.addShape(pptx.ShapeType.rect, { x:0, y:0, w:W, h:0.04, fill:{color:C.blue} }); sLabel(s, '04 · TECHNIQUES'); sTitle(s, [{text:'常用',options:{color:C.dark}},{text:'逆向技术',options:{color:C.blue}},{text:'总览',options:{color:C.dark}}]); const techs = [ {ic:'🔍',t:'静态代码分析',d:'使用 Jadx 将 DEX 反编译为 Java 代码,分析业务逻辑、加密算法、API 接口。无需运行程序,风险低。',bg:'e8f0ff'}, {ic:'🐛',t:'动态调试与插桩',d:'通过 Frida / Xposed 在运行时 Hook 关键函数,实时获取参数、返回值,追踪代码执行流。',bg:'f0ebff'}, {ic:'✏️',t:'Smali 代码插桩',d:'使用 Apktool 解包为 Smali,手动修改字节码逻辑后重新打包签名,绕过限制或添加调试代码。',bg:'fff2e8'}, {ic:'🌐',t:'网络流量分析',d:'使用 Burp Suite 代理拦截 HTTP/HTTPS 流量,配合 SSL Unpinning 绕过证书校验,还原接口协议。',bg:'eafaf0'}, {ic:'💾',t:'内存 Dump 分析',d:'对运行中的进程进行内存转储,提取解密后的 DEX、密钥、敏感数据,突破加固保护层。',bg:'fff0f0'}, {ic:'🏔️',t:'Native 层分析',d:'使用 IDA Pro / Ghidra 分析 .so 汇编代码,还原 Native 加密函数与核心算法逻辑。',bg:'e8f5ff'}, ]; const cw=6.3, ch=1.7, sx=0.36, sy=1.26, gx=0.25, gy=0.15; techs.forEach((tc,i) => { const c=i%2, r=Math.floor(i/2); const x=sx+c*(cw+gx), y=sy+r*(ch+gy); s.addShape(pptx.ShapeType.roundRect, { x, y, w:cw, h:ch, fill:{color:C.light}, line:{color:C.border}, rectRadius:0.1 }); s.addShape(pptx.ShapeType.roundRect, { x:x+0.15, y:y+0.2, w:0.68, h:0.68, fill:{color:tc.bg}, line:{color:tc.bg}, rectRadius:0.08 }); s.addText(tc.ic, { x:x+0.15, y:y+0.2, w:0.68, h:0.68, align:'center', valign:'middle', fontSize:20 }); s.addText(tc.t, { x:x+0.96, y:y+0.22, w:cw-1.1, h:0.36, fontSize:13.5, bold:true, color:C.dark }); s.addText(tc.d, { x:x+0.96, y:y+0.6, w:cw-1.1, h:1.0, fontSize:11, color:C.gray, lineSpacingMultiple:1.4 }); }); } // Slide 7 防护与反制 { const s = pptx.addSlide(); addWhiteBg(s); s.addShape(pptx.ShapeType.rect, { x:0, y:0, w:W, h:0.04, fill:{color:C.blue} }); sLabel(s, '05 · DEFENSE & ATTACK'); s.addText([ {text:'防护',options:{color:C.dark}}, {text:'加固',options:{color:C.blue}}, {text:' vs 逆向',options:{color:C.dark}}, {text:'反制',options:{color:C.red}} ], { x:0.42, y:0.52, w:9, h:0.6, fontSize:22, bold:true }); s.addShape(pptx.ShapeType.rect, { x:0, y:1.26, w:W, h:0.02, fill:{color:C.border} }); // 左列 const atks = [ ['🔓','反调试绕过','Hook ptrace / TracerPid 检测,欺骗反调试校验逻辑'], ['📡','SSL Pinning 绕过','Frida Hook 证书验证函数,实现中间人流量抓包'], ['💉','内存 Dump 脱壳','在 DEX 加载完毕后从内存中提取原始代码文件'], ['🔄','模拟器环境伪装','修改设备指纹参数绕过模拟器检测逻辑'], ['✏️','重打包签名伪造','修改 Smali 代码后重新打包,绕过签名校验'], ]; s.addShape(pptx.ShapeType.roundRect, { x:0.36, y:1.36, w:6.05, h:0.54, fill:{color:'fff0f0'}, line:{color:'ffbbbb'}, rectRadius:0.08 }); s.addText('🔥 逆向 / 攻击手段', { x:0.36, y:1.36, w:6.05, h:0.54, align:'center', valign:'middle', fontSize:13.5, bold:true, color:C.red }); atks.forEach(([ic,t,d],i) => { const y=2.06+i*1.0; s.addShape(pptx.ShapeType.roundRect, { x:0.36, y, w:6.05, h:0.84, fill:{color:C.light}, line:{color:C.border}, rectRadius:0.08 }); s.addText(ic, { x:0.48, y:y+0.1, w:0.52, h:0.6, align:'center', fontSize:18 }); s.addText(t, { x:1.08, y:y+0.1, w:5.2, h:0.3, fontSize:12.5, bold:true, color:C.dark }); s.addText(d, { x:1.08, y:y+0.44, w:5.2, h:0.3, fontSize:10.5, color:C.gray }); }); s.addShape(pptx.ShapeType.line, { x:6.67, y:1.3, w:0, h:6.0, line:{color:C.border, width:1} }); s.addShape(pptx.ShapeType.roundRect, { x:6.46, y:3.8, w:0.44, h:0.44, fill:{color:C.white}, line:{color:C.border}, rectRadius:0.12 }); s.addText('VS', { x:6.46, y:3.8, w:0.44, h:0.44, align:'center', valign:'middle', fontSize:10, bold:true, color:'bbbbbb' }); // 右列 const prts = [ ['🔐','代码混淆','ProGuard/R8 混淆类名、方法名,增加阅读难度'], ['📦','DEX 加壳加固','梆梆、360加固等方案加密 DEX,运行时解密加载'], ['🔍','反调试检测','检测 TracerPid、Frida 特征值、调试端口占用'], ['✅','签名完整性校验','运行时验证 APK 签名哈希,防止重打包篡改'], ['📌','SSL Certificate Pinning','内置服务器证书指纹,防止流量中间人攻击'], ]; s.addShape(pptx.ShapeType.roundRect, { x:6.94, y:1.36, w:6.05, h:0.54, fill:{color:C.lightBlue}, line:{color:'b8d0ff'}, rectRadius:0.08 }); s.addText('🛡️ 防护 / 加固手段', { x:6.94, y:1.36, w:6.05, h:0.54, align:'center', valign:'middle', fontSize:13.5, bold:true, color:C.blue }); prts.forEach(([ic,t,d],i) => { const y=2.06+i*1.0; s.addShape(pptx.ShapeType.roundRect, { x:6.94, y, w:6.05, h:0.84, fill:{color:C.light}, line:{color:C.border}, rectRadius:0.08 }); s.addText(ic, { x:7.06, y:y+0.1, w:0.52, h:0.6, align:'center', fontSize:18 }); s.addText(t, { x:7.66, y:y+0.1, w:5.2, h:0.3, fontSize:12.5, bold:true, color:C.dark }); s.addText(d, { x:7.66, y:y+0.44, w:5.2, h:0.3, fontSize:10.5, color:C.gray }); }); } // Slide 8 总结 { const s = pptx.addSlide(); addWhiteBg(s); s.addShape(pptx.ShapeType.rect, { x:0, y:0, w:W, h:3.1, fill:{color:C.blue} }); s.addShape(pptx.ShapeType.ellipse, { x:10.0, y:-1.2, w:3.5, h:3.5, fill:{color:'1558d6'}, line:{color:'1558d6'} }); s.addShape(pptx.ShapeType.ellipse, { x:-0.8, y:1.2, w:2.5, h:2.5, fill:{color:'1558d6'}, line:{color:'1558d6'} }); s.addText('🎯', { x:0, y:0.35, w:W, h:0.8, align:'center', fontSize:34 }); s.addText('总结与学习路线', { x:0.5, y:1.25, w:W-1, h:0.7, align:'center', fontSize:28, bold:true, color:C.white }); s.addText('安卓逆向是一门综合性极强的技术,涵盖 Java/Smali/ARM 汇编、网络协议、密码学等多个领域。\n建议从基础工具入手,循序渐进,逐步深入 Native 层分析与协议还原。', { x:1.5, y:2.05, w:W-3, h:0.85, align:'center', fontSize:12, color:'ffffffbb', lineSpacingMultiple:1.6 }); const stages = [ {ic:'📚',t:'基础阶段',d:'Java/Kotlin\nADB 调试\nJadx 使用'}, {ic:'🔧',t:'进阶阶段',d:'Frida Hook\nSmali 分析\nBurp 抓包'}, {ic:'🏔️',t:'高级阶段',d:'IDA Pro\n脱壳技术\n协议还原'}, {ic:'🛡️',t:'实战阶段',d:'CTF 竞赛\n漏洞赏金\n安全审计'}, ]; stages.forEach((st,i) => { const x=0.72+i*3.15; s.addShape(pptx.ShapeType.roundRect, { x, y:3.28, w:2.9, h:2.55, fill:{color:C.light}, line:{color:C.border}, rectRadius:0.12 }); s.addText(st.ic, { x, y:3.42, w:2.9, h:0.6, align:'center', fontSize:22 }); s.addText(st.t, { x, y:4.08, w:2.9, h:0.36, align:'center', fontSize:13, bold:true, color:C.dark }); s.addText(st.d, { x, y:4.48, w:2.9, h:1.2, align:'center', fontSize:11.5, color:C.gray, lineSpacingMultiple:1.55 }); }); s.addShape(pptx.ShapeType.roundRect, { x:0.72, y:6.06, w:W-1.44, h:0.72, fill:{color:'fffbec'}, line:{color:'f0d060'}, rectRadius:0.08 }); s.addText('⚠️ 免责声明:本课程内容仅供安全研究与学习使用,请在法律允许的范围内合理使用逆向技术,切勿违法。', { x:0.72, y:6.06, w:W-1.44, h:0.72, align:'center', valign:'middle', fontSize:11.5, color:'886600' }); } await pptx.writeFile({ fileName: '安卓逆向工程简介.pptx' }); showToast('✅ PPTX 导出成功!', 'success', 4000); } catch (err) { console.error(err); showToast('❌ 生成失败:' + err.message, 'error', 5000); } finally { btn.disabled = false; btn.innerHTML = '📥 导出 PPTX'; } } </script> </body> </html>
苹果风 AI提示词
# 角色 你是一位资深的 PPT 设计师 + 前端工程师,擅长 Apple 风格极简设计和 pptxgenjs 库。 # 任务 生成一个**单文件 HTML**,主题是「{{在此填写主题}}」,共 {{N}} 页幻灯片。 该 HTML 在浏览器中是一个交互式 PPT 预览器,并且带有一键「导出 PPTX」按钮,点击后通过 pptxgenjs 生成一份**视觉上与 HTML 完全一致的 .pptx 文件**。 # 一、整体架构(必须严格遵守) 1. **单个 .html 文件**,内联 CSS + JS,零外部依赖(pptxgenjs 在点击导出时动态 CDN 加载:`https://unpkg.com/pptxgenjs@4.0.1/dist/pptxgen.bundle.js`)。 2. 页面布局三区: - **顶部固定栏**(高52px,毛玻璃 `backdrop-filter: blur(20px)`):左侧 app 图标+标题,中间「← 页码 →」导航,右侧黑色「↓ 导出 PPTX」按钮。 - **左侧缩略图栏**(宽180px,毛玻璃):由 JS 根据 `slidesData` 数组动态生成,包含页码、标题、副标题,点击可跳转,当前页高亮。 - **主内容区**:单张 `.slide` 容器,`aspect-ratio:16/9`,`max-width:960px`,白底、圆角16px、柔和阴影;通过 `.active` 类切换显示。 3. 交互:左右方向键翻页、点击缩略图跳转、点击进度点跳转,切换有 `slideIn` 淡入动画。 4. 导出加载遮罩:点击导出时显示「正在生成 PPTX 文件」loading 层。 # 二、视觉设计系统(Apple 极简风) - **调色板**(HTML 与 PPTX 必须同色): ``` 黑 #1d1d1f | 灰 #6e6e73 | 浅灰背景 #f5f5f7 | 边框 #d2d2d7 | 白 #ffffff ``` - **字体**:`-apple-system, BlinkMacSystemFont, 'SF Pro Display', 'Helvetica Neue', Arial`;PPTX 中用 `Arial`,代码用 `Courier New`。 - **字号规范**:主标题 46-52px、章节标题 28px、卡片标题 12-14px、正文 10-12px、页脚 8-9px。 - **元素规范**: - 每页左边缘 0.06"宽纯黑装饰竖条 - 章节标签用大写英文「CHAPTER 0X」+ 字距 1px,下方一条 40px 黑色 `accent-line` - 卡片统一 `border-radius: 12-16px`、浅灰背景 `#f5f5f7`、1px 细边框 - 首页可用毛玻璃 `.glass-card` 作右侧视觉元素(代码块 / 图示卡) - 页脚统一:左「ANDROID REVERSE」品牌字 + 中间细线 + 右「0X / XX」页码 # 三、HTML 页面结构(关键类名保持一致) ``` .top-bar / .sidebar .thumb-item / .slide-wrapper > .slide.slide-N 每张 .slide 内:.slide-content > .section-header (.section-label + .accent-line + .section-title) + 主体区 + .slide-footer ``` - 布局模式可选:**首页左右分栏**、**two-col 双列卡片**、**tool-list 列表**、**5步时间线(圆圈+连接线)**、**三/四列卡片网格**、**数据统计大数字**。 - JS 中维护 `slidesData = [{num, title, subtitle}, ...]` 用于生成缩略图。 # 四、PPTX 导出(核心 —— 必须逐页 1:1 还原) ```js const pptx = new PptxGenJS(); pptx.layout = 'LAYOUT_WIDE'; // 13.33 x 7.5 英寸 16:9 pptx.author/company/subject/title = '...'; const C = { black:'1d1d1f', gray:'6e6e73', lightGray:'f5f5f7', border:'d2d2d7', white:'ffffff' }; ``` **每一页都用独立 `{ ... }` 块**构建,顺序复刻 HTML: 1. `slide.background = { color: C.white }` 2. 左边缘装饰条 `addShape(rect, {x:0,y:0,w:0.06,h:7.5, fill:{color:C.black}})` 3. `CHAPTER 0X` 标签 + 装饰短线 + 章节大标题 4. 卡片用 `addShape(roundRect, {... rectRadius:0.12, fill:{color:C.lightGray}, line:{color:'e8e8ed',width:1}})`,再在其上用 `addText` 叠加文字 5. 强调块用反色(黑底白字) 6. 图标用 Emoji 直接写在文字里(`🔧 通俗理解`) 7. 页脚品牌字 + 页码(`0.5" / 11.5"` 两端对齐) **坐标单位为英寸**,常用基准: - 页面 13.33" × 7.5" - 左右留白 0.5"、内容宽度 12.3" - 左右两栏:每栏 5.8" 宽,间距 0.4" - 章节标题 y=0.95、主体区从 y=1.85 开始、页脚 y=7.0 # 五、内容要求 - {{N}} 页大纲由你根据主题自行合理设计,但需包含:封面页 + 章节页 + 总结/路线图页。 - 文案中文为主,数据/代码/术语用英文,保持信息密度适中,不堆砌。 - 所有可视化元素(图表、流程链、对比卡)在 HTML 和 PPTX 中都用**原生形状 + 文字**绘制,不引入图片。 # 六、交付 直接输出完整 `.html` 文件代码(一个代码块,无多余解释)。确保: - 浏览器打开即可预览、键盘可翻页; - 点击「导出 PPTX」成功下载 `{{主题}}.pptx`,打开后每一页视觉与 HTML 一致。
下面是其他解决方案
通用 HTML → PPTX 转换工具 实现方案
核心难点分析
text
HTML → PPTX 的本质问题:
HTML 是"流式布局 + 样式渲染"
PPTX 是"绝对坐标 + 对象模型"
两者是完全不同的渲染体系
没有任何完美的1:1转换方案实现路线对比,选择最优方案
text
方案A:截图法 HTML → 截图(Canvas) → 图片插入PPTX
方案B:DOM解析法 HTML → 解析DOM/CSS → 构建PPTX对象
方案C:无头浏览器法 HTML → Puppeteer截图 → PPTX
方案D:混合法 截图做背景 + DOM提取文字做文本层| 方案 | 还原度 | 可编辑性 | 复杂度 | 推荐度 |
|---|---|---|---|---|
| A 截图法 | ⭐⭐⭐⭐⭐ | ❌ 图片 | 低 | ✅ 前端首选 |
| B DOM解析 | ⭐⭐⭐ | ✅ 可编辑 | 极高 | ⚠️ 复杂 |
| C 无头浏览器 | ⭐⭐⭐⭐⭐ | ❌ 图片 | 中(需Node) | ✅ 后端首选 |
| D 混合法 | ⭐⭐⭐⭐ | ✅ 部分 | 高 | ✅ 最佳平衡 |
完整实现代码(方案A+D混合,纯前端)
HTML
<!DOCTYPE html>
<html lang="zh-CN">
<head>
<meta charset="UTF-8">
<title>通用 HTML → PPTX 转换工具</title>
<!-- 依赖库 -->
<script src="https://cdn.jsdelivr.net/npm/html2canvas@1.4.1/dist/html2canvas.min.js"></script>
<script src="https://cdn.jsdelivr.net/npm/pptxgenjs@3.12.0/dist/pptxgen.bundle.js"></script>
<style>
* { margin:0; padding:0; box-sizing:border-box; }
body {
font-family: 'Microsoft YaHei', sans-serif;
background: #0f0f1a;
color: #fff;
min-height: 100vh;
}
/* ===== 布局 ===== */
.app-layout {
display: grid;
grid-template-columns: 380px 1fr;
grid-template-rows: 60px 1fr;
height: 100vh;
overflow: hidden;
}
/* ===== 顶栏 ===== */
.topbar {
grid-column: 1 / -1;
background: rgba(255,255,255,0.04);
border-bottom: 1px solid rgba(255,255,255,0.08);
display: flex;
align-items: center;
padding: 0 24px;
gap: 16px;
}
.topbar h1 {
font-size: 18px;
font-weight: 700;
background: linear-gradient(90deg,#00f5a0,#00d9f5);
-webkit-background-clip: text;
-webkit-text-fill-color: transparent;
background-clip: text;
}
.topbar .sep { flex:1; }
.badge {
padding: 3px 10px;
border-radius: 12px;
font-size: 11px;
background: rgba(0,245,160,0.15);
color: #00f5a0;
border: 1px solid rgba(0,245,160,0.3);
}
/* ===== 左侧面板 ===== */
.left-panel {
background: rgba(255,255,255,0.02);
border-right: 1px solid rgba(255,255,255,0.07);
display: flex;
flex-direction: column;
overflow: hidden;
}
.panel-section {
padding: 18px 20px;
border-bottom: 1px solid rgba(255,255,255,0.06);
}
.panel-section h3 {
font-size: 11px;
color: rgba(255,255,255,0.35);
text-transform: uppercase;
letter-spacing: 1.5px;
margin-bottom: 14px;
}
/* 输入方式 Tab */
.input-tabs {
display: flex;
gap: 6px;
margin-bottom: 14px;
}
.input-tab {
flex: 1;
padding: 7px;
border-radius: 7px;
border: 1px solid rgba(255,255,255,0.12);
background: transparent;
color: rgba(255,255,255,0.5);
font-size: 12px;
cursor: pointer;
transition: all 0.2s;
text-align: center;
}
.input-tab.active {
background: rgba(0,245,160,0.15);
border-color: rgba(0,245,160,0.4);
color: #00f5a0;
}
/* 文件拖拽区 */
.drop-zone {
border: 2px dashed rgba(255,255,255,0.15);
border-radius: 10px;
padding: 24px;
text-align: center;
cursor: pointer;
transition: all 0.3s;
position: relative;
}
.drop-zone:hover, .drop-zone.dragover {
border-color: rgba(0,245,160,0.5);
background: rgba(0,245,160,0.05);
}
.drop-zone input[type=file] {
position: absolute;
inset: 0;
opacity: 0;
cursor: pointer;
}
.drop-icon { font-size: 28px; margin-bottom: 8px; }
.drop-text { font-size: 12px; color: rgba(255,255,255,0.4); }
.drop-hint { font-size: 10px; color: rgba(255,255,255,0.25); margin-top: 4px; }
/* URL输入 */
.url-input-wrap { display: none; }
.url-input-wrap.show { display: flex; gap: 8px; }
.url-input {
flex: 1;
background: rgba(255,255,255,0.07);
border: 1px solid rgba(255,255,255,0.12);
border-radius: 7px;
color: #fff;
padding: 8px 12px;
font-size: 12px;
outline: none;
}
.url-input:focus { border-color: rgba(0,245,160,0.4); }
.btn-load {
padding: 8px 14px;
background: rgba(0,245,160,0.2);
border: 1px solid rgba(0,245,160,0.4);
border-radius: 7px;
color: #00f5a0;
font-size: 12px;
cursor: pointer;
white-space: nowrap;
}
/* 代码粘贴 */
.code-input-wrap { display: none; }
.code-input-wrap.show { display: block; }
.code-textarea {
width: 100%;
height: 100px;
background: rgba(0,0,0,0.3);
border: 1px solid rgba(255,255,255,0.12);
border-radius: 7px;
color: #ccc;
padding: 10px;
font-size: 11px;
font-family: 'Courier New', monospace;
resize: none;
outline: none;
line-height: 1.5;
}
.code-textarea:focus { border-color: rgba(0,245,160,0.4); }
.btn-parse {
margin-top: 8px;
width: 100%;
padding: 8px;
background: rgba(0,245,160,0.2);
border: 1px solid rgba(0,245,160,0.4);
border-radius: 7px;
color: #00f5a0;
font-size: 12px;
cursor: pointer;
}
/* 幻灯片检测结果 */
.detect-result {
display: none;
padding: 10px 14px;
background: rgba(0,245,160,0.08);
border: 1px solid rgba(0,245,160,0.2);
border-radius: 8px;
font-size: 12px;
color: #00f5a0;
margin-top: 10px;
}
.detect-result.show { display: flex; align-items: center; gap: 8px; }
/* 幻灯片缩略图列表 */
.thumbs-wrap {
flex: 1;
overflow-y: auto;
padding: 12px 16px;
}
.thumbs-wrap::-webkit-scrollbar { width: 4px; }
.thumbs-wrap::-webkit-scrollbar-thumb { background: rgba(255,255,255,0.1); border-radius: 2px; }
.thumb-grid {
display: grid;
grid-template-columns: repeat(2, 1fr);
gap: 10px;
}
.slide-thumb {
border-radius: 8px;
overflow: hidden;
border: 2px solid rgba(255,255,255,0.08);
cursor: pointer;
transition: all 0.2s;
position: relative;
aspect-ratio: 16/9;
background: #111;
}
.slide-thumb:hover { border-color: rgba(0,245,160,0.4); transform: translateY(-2px); }
.slide-thumb.selected { border-color: #00f5a0; }
.slide-thumb img { width: 100%; height: 100%; object-fit: cover; display: block; }
.slide-thumb .thumb-overlay {
position: absolute;
inset: 0;
background: rgba(0,245,160,0.15);
display: none;
align-items: center;
justify-content: center;
font-size: 20px;
}
.slide-thumb.selected .thumb-overlay { display: flex; }
.thumb-num {
position: absolute;
bottom: 4px;
right: 6px;
font-size: 9px;
color: rgba(255,255,255,0.5);
background: rgba(0,0,0,0.5);
padding: 1px 5px;
border-radius: 3px;
}