Stack Overflow
Stack Overflow

Questions tagged [deobfuscation]

Figuring out how a program works when that program has been deliberately made difficult to understand

Deobfuscation is the reverse process of . It means figuring out how a program works when that program has been deliberately made difficult to understand.

Deobfuscation is related to . If the question is about reverse engineering rather than programming then posting on the Reverse Engineering site should be considered instead.

Do not use this tag merely to indicate that you don't understand how a program works: use it only when the program was made obfuscated on purpose.

External links

392 questions
3
votes
0 answers

Spelled numbers to digits - understanding short obfuscated code

Can someone help me understand this code? long long…
egst
  • 1,605
  • 3
  • 18
  • 25
3
votes
2 answers

How can I generate all ordered combinations of length k in Perl?

I need a subroutine that, given a set of characters, will generate all possible combinations of those characters of length k. Order matters and reuse is allowed, so if k = 2 then AB != BA and AA is an option. I found some working examples on…
Daniel Standage
  • 8,136
  • 19
  • 69
  • 116
3
votes
1 answer

How does Debugger.getScriptSource work?

I'm trying to run chrome debugger to gather deobfuscated JavaScripts but it returns a large number of chunks for a script. I want to know how does chrome divides one JavaScript file to multiple chunks? What exactly is one chunk of a script? I am…
Umar Iqbal
  • 669
  • 1
  • 11
  • 31
3
votes
1 answer

How can I decode a javascript snippet that is obfuscated with what appears to be a unicode or regex string with an eval() function?

So I came across an interesting piece of javascript that I can't quit figure out. It appears to me at first to be either regex function or a unicode string, that is then passed onto an eval function for processing. I have been trying for quite some…
Dalen Catt
  • 111
  • 1
  • 9
3
votes
1 answer

How to find the real class name from obfuscated ProGuard classname in my source code?

I got an email from Google about unsafe implementation of TrustManager with the only clue that the problematic code is in com.b.a.af class. Clearly that's the obfuscated name. How would I get the real class name from that obfuscated class name, in…
Levon
  • 1,681
  • 2
  • 18
  • 40
3
votes
1 answer

unknown custom metadata item kind 7 when using .Net Reactor

Till the present moment I was using PreEmptive Dotfuscator to obfuscate my assemblies until I've found THE GREAT .Net Reactor solution for the same purpose, I tired Reactor and it was really amazing until I fall down in the hole!! Reactor worked…
Ahmed Suror
  • 439
  • 6
  • 17
3
votes
1 answer

Has anyone seen code obfuscated like this before? What does it mean?

I own a digital goods marketplace, and a vendor uploaded this file, it was a zip file but showed up as corrupt in windows. When I opened it in linux I was shocked to see the file itself was a php file that someone added a .zip extension to. Has…
Robert McDermott
  • 43
  • 2
3
votes
2 answers

How does this 1984 International Obfuscated C Code Contest winning entry work?

I am new to C and I eagerly want to know by what magic this segment of code works? int i;main(){for(;i["]
Jeremy Tchao
  • 33
  • 4
3
votes
3 answers

Please explain this weird Javascript line

I came across a piece of code that is: for(i=((90.0E1,0x5A)<=(0x158,140.70E1)?(.28,3.45E2,0):(95.30E1,26.40E1)<=1.400E2?(1,this):(108.,0x227));i
Daniel Smith
  • 33
  • 2
3
votes
2 answers

Ternary operator as a command?

In the source-code for nanodns, there is an atypical use of the ternary operator in an attempt to reduce the size of the code: /* If the incoming packet has an AR record (such as in an EDNS request), * mark the reply as "NOT IMPLEMENTED"; using…
Synetech
  • 9,643
  • 9
  • 64
  • 96
3
votes
1 answer

How to programmatically detect JavaScript obfuscation?

It easy if the code isn't minimized. but it's hard to tell apart minimized and obfuscated. I've found this: http://research.microsoft.com/pubs/148514/tr.pdf How would I detect the difference between minified and obfuscated code?
karpada
  • 175
  • 1
  • 7
3
votes
1 answer

javascript obfuscation as part of build process

I have seen online javascript obfuscation tools. Would it be feasible or considered reasonable to have such a process run as a part of the build procedure for a web application, or how is obfuscation generally achieved? Is it more of a manual…
user1154644
  • 4,491
  • 16
  • 59
  • 102
3
votes
1 answer

How to deobfuscate javascript codes with "[][filter][constructor]..."?

As we all know, obfuscated javascript code with things like "packer" and "eval" can easily be decoded by a variety of tools provided on the Internet, but recently I encountered a piece of javascript code that is obfuscated with things like…
Su Excelle
  • 141
  • 1
  • 6
3
votes
1 answer

Obfuscated mandlebrot function - can someone deobfuscate it?

I'm new to python and i've become very interested in it's ability to produce fractal images. I've written a few simple ones myself, but I just discovered a script for Mandelbrot fractals... it produces beautiful, full color images at your desired…
Lillz
  • 283
  • 2
  • 5
  • 19
3
votes
2 answers

GWT 2.6.1 + SuperDevMode: stack traces are not deobfuscated on server

Till May this year, I was using GWT 2.5.1 and simple DevMode and was able to send obfuscated exceptions with stack traces to server and deobfuscate them there using symbol maps as per this brilliant article. This helped me a lot. Since June I…
Yuriy Nakonechnyy
  • 3,742
  • 4
  • 29
  • 41
1 2 3
26 27