These are an experimental white-box cryptography tools for JavaScript obfuscation.
npm install jcrypto
or
git clone https://github.com/tsu-iscd/jcrypto.git
cd jcrypto
npm install
var key = '0123456789abcdef';
var jcrypto = require('jcrypto');
var options = {
encoding: 'hex',
wrapper: 'UMD',
mangle: {
names: true,
properties: true
},
file: 'path/to/aes.js'
};
// btw you can call it without options argument, default options described below
jcrypto.generateAes(key, options);
options.file = 'path/to/hmac.js';
jcrypto.generateHmac(key, options);
Code generation options:
encoding -- key characters encoding; posible values: hex or str (default)wrapper -- code wrapping; posible values: UMD, IIFE or nothing (default)mangle -- mangle names/properties option, properties cache file ./aes-cache.json for aes and ./hmac-cache.json for hmac; possible values: {names: true, properties: true} (default both false)file -- output file option; path to file or return value (default)var aes = require('path/to/aes.js');
var plaintext = 'Hello, world!';
var options = {
counter: '1826e4111826e4111826e4111826e411',
encoding: 'str'
};
var ciphertext = aes.encrypt(plaintext, options);
var output = aes.decrypt(ciphertext, options);
// Hello, world!
Encryption options:
counter -- counter for CTR AES mode; string 32 symbols (default 0)encoding -- plain text or encrypt text encoding; posible values are hex or str(default)var hash = require('path/to/hmac.js');
var text = 'Hello, world!';
var options = {
encoding: 'str'
}
var output = hash(text, options);
// 8dcb6767c395b28b46ea0f0216cb3aa25b6ff46f0181ab035f3cf7fd3914c45e
Hashing options:
encoding -- text encoding; posible values are hex or str(default)The bin/jcrypto utility can be used to generate code of white-box crypto algorithm. It accepts as arguments its secret key, output file and the following options:
-a, --algorithm - crypto algorithms: aes, hmac.-h, --help - display help.-k, --key - secret key.-e, --encoding - key characters encoding; posible values: hex.-o, --output - output file.Example:
$ bin/jcrypto -a aes -k 1234567891234567 -o wbaes.js
FAQs
JavaScript white-box cryptography tools.
The npm package jcrypto receives a total of 6 weekly downloads. As such, jcrypto popularity was classified as not popular.
We found that jcrypto demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Product
Socket’s new Tier 1 Reachability filters out up to 80% of irrelevant CVEs, so security teams can focus on the vulnerabilities that matter.
Research
/Security News
Ongoing npm supply chain attack spreads to DuckDB: multiple packages compromised with the same wallet-drainer malware.
Security News
The MCP Steering Committee has launched the official MCP Registry in preview, a central hub for discovering and publishing MCP servers.