nandokujs
Advanced tools
Readme
日本語の説明は こちら
nandokujs is an obfuscation tool for obfuscating javascript files to be published on the Web and making it difficult to analyze the contents.
You can make your keycode mandatory for running javascript files, with your own tally code.
In this way, javascript files are obfuscated, so important logic is not exposed to the Web in plain text.
_
_
※ It is assumed that nodejs is installed and npm can be used.
$ npm install -g nandokujs
_
_
The usage can be confirmed by executing the command.
Files obfuscated by nandokujs are output as [js file name].nan.js.
$ nandokujs -j [js file name] -m [execute eval] -t [tally code] -o [out file]
-j (--js) [js file name] Set the js file name to be converted.
-m (--mode) [execute eval] Set the expansion condition.
When [true] Expand obfuscated information with eval
[false] Extract obfuscated information with location = `javascript:`
If not used, [true] is set.
-t (--tally) [tally code] Set tally code.
html side js call (<script src='target js'></script>)
<script> var _$tallyCode = 'tally code'; </script>
Define.
If you do not use it, please do not set it.
-o (--out) Set the output file name of nandokujs.
-v (--version) Version information will be returned.
-h (--help) Help information will be returned.
Files obfuscated by nandokujs are output as [js file name].nan.js.
-j or --js Set the javascript file you want to convert.
-m or --mode Set expansion conditions.
When [true] Expand obfuscated information with eval.
[false] Extract obfuscated information with location = "javascript:".
If this setting is omitted, it will be treated as [true].
As a reason to do this setting, there are cases where you do not want to
extract obfuscated information in eval, but you want to expand it with
location = "javascript:".
For example, when an error occurs during eval execution.
It is used in such a case.
-t or --tally You can optionally set the Tally code.
In that case, it is necessary to code as follows for the javascript
caller to publish on the web.
<script>
var _$tallyCode = "tally code";
</script>
<script src="[target javascript].nan.js"></script>
-o or --out Set the output file name of nandokujs.
-v or --version Display the version.
-h or --help Display help information.
_
_
Obfuscation with command.
$ nandokujs -j cbox-min.js -t test
The following call is described in html using js file.
<script>
var _$tallyCode = "test";
</script>
<script src="cbox-min.js.nan.js"></script>
_
_
With this tool, I hope to be a good deal for web development.
FAQs
nandokujs is an obfuscation tool for obfuscating javascript files to be published on the Web and making it difficult to analyze the contents.
The npm package nandokujs receives a total of 29 weekly downloads. As such, nandokujs popularity was classified as not popular.
We found that nandokujs demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
This episode of the Risky Biz podcast discusses how the rise of small open source packages and the shift towards individual maintainers makes the ecosystem more vulnerable to supply chain attacks.
Product
Streamline your login process and enhance security by enabling Single Sign-On (SSO) on the Socket platform, now available for all customers on the Enterprise plan, supporting 20+ identity providers.
Security News
Tea.xyz, a crypto project aimed at rewarding open source contributions, is once again facing backlash due to an influx of spam packages flooding public package registries.