jshaman-javascript-obfuscator
Advanced tools
https://wwww.jshaman.com/en/ An easy-to-use online commercial JavaScript obfuscation tool
Easy to use, no registration or login required One-click JavaScript code obfuscation
Easy to use Without the need for registration or login, JavaScript code obfuscation can be done quickly and easily with just a secret key. Web API You can call the JShaman Web API on your websites, products, or projects to achieve convenient JavaScript obfuscation. Powerful JShaman JavaScript Obfuscator employs over 20 techniques to obfuscate and encrypt JavaScript code, ensuring that the obfuscated code is unreadable and unintelligible. Polymorphic The same code can produce different obfuscation results every time, with different variable names and function names, as well as random and diverse zombie codes, different control flows, etc.
$ npm install jshaman-javascript-obfuscator
//JShaman JavaScript Obfuscator Web API Interface
var jshaman_javascript_obfuscator = require("jshaman-javascript-obfuscator");
//Javascript code, obfuscation options and secret key
var javascript_code = "...";
var options = "...";
var secret_key ="...";
//Obfuscation result
var obfuscated_result = jshaman_javascript_obfuscator(javascript_code, options, secret_key);
console.log(obfuscated_result.state, obfuscated_result.content);
//JShaman JavaScript Obfuscator Web API Interface
var jshaman_javascript_obfuscator = require("jshaman-javascript-obfuscator");
//JavaScript Code to be obfuscated
var javascript_code = `
function NewObject(prefix)
{
var count=0;
this.SayHello=function(msg)
{
count++;
alert(prefix+msg);
}
this.GetCount=function()
{
return count;
}
}
var obj=new NewObject("Message : ");
obj.SayHello("You are welcome.");
`;
//Options.
//Please refer to the official website of JShaman in English for relevant instructions.
//https://www.jshaman.com/en/
var options = {
"part_variable_identifier_obfuscate": 1,
"global_variable_identifier_obfuscate": 0,
"part_function_identifier_obfuscate":0,
"global_function_identifier_obfuscate": 0,
"member_expression_encode": 1,
"numberic_literal_encode": 1,
"binary_express_obfuscate": 1,
"boolean_encode": 1,
"json_encode":1,
"regexp_encode":1,
"string_unicode_encode": 1,
"assignment_junk_code":1,
"zombie_code": 1,
"eval_encode": 1,
"control_flow": 1,
"string_reverse": 1,
"comma_operator": 1,
"string_array": 0,
"string_array_encode": 0,
"vm_execute": 0,
"ast_execute": 0,
"no_beautifier": 0,
"tamper_proof": 0,
"comments": 0,
"compress": 1,
"reserved_word": ["jshaman","w2sfot"]
}
//Secret key,Obtained from the JShaman official website.
//If not yet obtained, it can be set to free
var secret_key = "free";
var obfuscated_result = jshaman_javascript_obfuscator(javascript_code, options, secret_key);
//Obfuscation result,
//if state is 0 it means successful and the content is the obfuscated JavaScript code.
console.log(obfuscated_result.state, obfuscated_result.content);
FAQs
An easy-to-use online commercial JavaScript obfuscation tool
The npm package jshaman-javascript-obfuscator receives a total of 2 weekly downloads. As such, jshaman-javascript-obfuscator popularity was classified as not popular.
We found that jshaman-javascript-obfuscator demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Product
Socket's Rubygems ecosystem support is moving from beta to GA, featuring enhanced security scanning to detect supply chain threats beyond traditional CVEs in your Ruby dependencies.
Research
The Socket Research Team investigates a malicious npm package that appears to be an Advcash integration but triggers a reverse shell during payment success, targeting servers handling transactions.
Security Fundamentals
The Socket Threat Research Team uncovers how threat actors weaponize shell techniques across npm, PyPI, and Go ecosystems to maintain persistence and exfiltrate data.