js injection after https://www.baidu.com/s?ie=UT.
https encryption, the operator cannot decrypt the request, so it is naturally impossible to operate.

operators are generally hijacked by DNS. You know that domain name resolution protocol is to resolve domain name to IP address , while broadband operators can tamper with DNS resolution, resolve your requested domain name to a fake IP address, and the corresponding server forwards and hijacks the request accordingly. Due to the characteristics of http plaintext transmission, what is passed is basically clear, so it is easy to tamper with your html with a script.
the best way to solve this kind of problem is to build a http proxy server on https

, which points all domain name resolution to this proxy server. The proxy server inserts an advertising script into the middle when dealing with html
using https to prevent