Awesome
JStillery
Advanced JS Deobfuscation via Partial Evaluation.
See http://blog.mindedsecurity.com/2015/10/advanced-js-deobfuscation-via-ast-and.html
REPL
https://mindedsecurity.github.io/jstillery/
Install
npm install
Usage
Cli
Deobfuscate file:
./jstillery_cli.js filename
Deobfuscate from stdin
echo 'a= String.fromCharCode(41);b=a'| ./jstillery_cli.js
Server
Build server code:
npm run build_server
If you wish change server/config_server.json
Then launch the server:
npm run start_server
Visit http://0:3001/
RESTServer
Launch server then:
$ curl 'http://localhost:3001/deobfuscate' -d '{"source":"a=1"}' -H 'Content-type: application/json'
{"source":"a = 1;"}
Web UI
Add obfuscated code to the upper text area and press CTRL-ENTER.
LICENSE
GPL 3.0
Contribute
Feel free to contribute in any way!