npm - js-confuser - Versions diffs - 1.7.1 → 1.7.3 - Mend

js-confuser 1.7.1 → 1.7.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (153) hide show

package/.github/workflows/node.js.yml +1 -1
package/CHANGELOG.md +73 -0
package/README.md +32 -31
package/dist/compiler.js +2 -8
package/dist/constants.js +22 -10
package/dist/index.js +15 -30
package/dist/obfuscator.js +15 -62
package/dist/options.js +33 -40
package/dist/order.js +4 -7
package/dist/parser.js +5 -13
package/dist/precedence.js +6 -8
package/dist/presets.js +4 -6
package/dist/probability.js +13 -24
package/dist/templates/bufferToString.js +121 -5
package/dist/templates/core.js +35 -0
package/dist/templates/crash.js +22 -11
package/dist/templates/es5.js +125 -6
package/dist/templates/functionLength.js +24 -6
package/dist/templates/globals.js +9 -0
package/dist/templates/template.js +189 -43
package/dist/transforms/antiTooling.js +26 -22
package/dist/transforms/calculator.js +19 -55
package/dist/transforms/controlFlowFlattening/controlFlowFlattening.js +242 -333
package/dist/transforms/controlFlowFlattening/expressionObfuscation.js +46 -25
package/dist/transforms/deadCode.js +542 -31
package/dist/transforms/dispatcher.js +112 -112
package/dist/transforms/es5/antiClass.js +70 -44
package/dist/transforms/es5/antiDestructuring.js +14 -38
package/dist/transforms/es5/antiES6Object.js +39 -48
package/dist/transforms/es5/antiSpreadOperator.js +5 -14
package/dist/transforms/es5/antiTemplate.js +10 -19
package/dist/transforms/es5/es5.js +7 -40
package/dist/transforms/extraction/classExtraction.js +83 -0
package/dist/transforms/extraction/duplicateLiteralsRemoval.js +41 -80
package/dist/transforms/extraction/objectExtraction.js +24 -56
package/dist/transforms/finalizer.js +6 -20
package/dist/transforms/flatten.js +51 -99
package/dist/transforms/identifier/globalAnalysis.js +21 -26
package/dist/transforms/identifier/globalConcealing.js +72 -56
package/dist/transforms/identifier/movedDeclarations.js +66 -38
package/dist/transforms/identifier/renameVariables.js +36 -68
package/dist/transforms/identifier/variableAnalysis.js +21 -48
package/dist/transforms/lock/antiDebug.js +20 -25
package/dist/transforms/lock/integrity.js +53 -52
package/dist/transforms/lock/lock.js +161 -126
package/dist/transforms/minify.js +77 -108
package/dist/transforms/opaquePredicates.js +12 -49
package/dist/transforms/preparation.js +28 -49
package/dist/transforms/renameLabels.js +5 -22
package/dist/transforms/rgf.js +125 -72
package/dist/transforms/shuffle.js +42 -47
package/dist/transforms/stack.js +41 -98
package/dist/transforms/string/encoding.js +76 -27
package/dist/transforms/string/stringCompression.js +75 -68
package/dist/transforms/string/stringConcealing.js +127 -135
package/dist/transforms/string/stringEncoding.js +6 -26
package/dist/transforms/string/stringSplitting.js +5 -30
package/dist/transforms/transform.js +76 -104
package/dist/traverse.js +11 -18
package/dist/util/compare.js +27 -29
package/dist/util/gen.js +32 -86
package/dist/util/guard.js +5 -1
package/dist/util/identifiers.js +9 -72
package/dist/util/insert.js +27 -77
package/dist/util/math.js +0 -3
package/dist/util/object.js +3 -7
package/dist/util/random.js +31 -36
package/dist/util/scope.js +6 -3
package/docs/Countermeasures.md +13 -6
package/docs/Integrity.md +35 -28
package/docs/RGF.md +6 -1
package/docs/RenameVariables.md +116 -0
package/docs/TamperProtection.md +100 -0
package/docs/Template.md +117 -0
package/package.json +3 -3
package/src/constants.ts +17 -0
package/src/index.ts +7 -5
package/src/options.ts +60 -7
package/src/order.ts +2 -2
package/src/templates/bufferToString.ts +79 -11
package/src/templates/core.ts +29 -0
package/src/templates/crash.ts +6 -38
package/src/templates/es5.ts +1 -1
package/src/templates/functionLength.ts +21 -3
package/src/templates/globals.ts +3 -0
package/src/templates/template.ts +205 -46
package/src/transforms/antiTooling.ts +33 -11
package/src/transforms/calculator.ts +4 -2
package/src/transforms/controlFlowFlattening/controlFlowFlattening.ts +12 -5
package/src/transforms/controlFlowFlattening/expressionObfuscation.ts +46 -10
package/src/transforms/deadCode.ts +74 -42
package/src/transforms/dispatcher.ts +99 -73
package/src/transforms/es5/antiClass.ts +25 -12
package/src/transforms/es5/antiDestructuring.ts +1 -1
package/src/transforms/es5/antiES6Object.ts +2 -2
package/src/transforms/es5/antiTemplate.ts +1 -1
package/src/transforms/extraction/classExtraction.ts +168 -0
package/src/transforms/extraction/duplicateLiteralsRemoval.ts +11 -16
package/src/transforms/extraction/objectExtraction.ts +4 -15
package/src/transforms/flatten.ts +20 -5
package/src/transforms/identifier/globalAnalysis.ts +18 -1
package/src/transforms/identifier/globalConcealing.ts +119 -72
package/src/transforms/identifier/movedDeclarations.ts +90 -24
package/src/transforms/identifier/renameVariables.ts +16 -1
package/src/transforms/lock/antiDebug.ts +2 -2
package/src/transforms/lock/integrity.ts +13 -11
package/src/transforms/lock/lock.ts +122 -30
package/src/transforms/minify.ts +28 -13
package/src/transforms/opaquePredicates.ts +2 -2
package/src/transforms/preparation.ts +16 -0
package/src/transforms/rgf.ts +139 -12
package/src/transforms/shuffle.ts +3 -3
package/src/transforms/stack.ts +19 -4
package/src/transforms/string/encoding.ts +88 -51
package/src/transforms/string/stringCompression.ts +86 -17
package/src/transforms/string/stringConcealing.ts +148 -118
package/src/transforms/string/stringEncoding.ts +1 -2
package/src/transforms/string/stringSplitting.ts +1 -2
package/src/transforms/transform.ts +63 -46
package/src/types.ts +2 -0
package/src/util/compare.ts +39 -5
package/src/util/gen.ts +10 -3
package/src/util/guard.ts +10 -0
package/src/util/insert.ts +17 -0
package/src/util/random.ts +81 -1
package/src/util/scope.ts +14 -2
package/test/code/Cash.test.ts +94 -5
package/test/code/StrictMode.src.js +65 -0
package/test/code/StrictMode.test.js +37 -0
package/test/compare.test.ts +62 -2
package/test/options.test.ts +129 -55
package/test/templates/template.test.ts +211 -1
package/test/transforms/controlFlowFlattening/expressionObfuscation.test.ts +37 -18
package/test/transforms/dispatcher.test.ts +55 -0
package/test/transforms/extraction/classExtraction.test.ts +86 -0
package/test/transforms/extraction/duplicateLiteralsRemoval.test.ts +8 -0
package/test/transforms/extraction/objectExtraction.test.ts +2 -0
package/test/transforms/identifier/globalConcealing.test.ts +89 -0
package/test/transforms/identifier/movedDeclarations.test.ts +61 -0
package/test/transforms/identifier/renameVariables.test.ts +75 -1
package/test/transforms/lock/tamperProtection.test.ts +336 -0
package/test/transforms/minify.test.ts +37 -0
package/test/transforms/rgf.test.ts +50 -0
package/dist/transforms/controlFlowFlattening/choiceFlowObfuscation.js +0 -62
package/dist/transforms/controlFlowFlattening/controlFlowObfuscation.js +0 -159
package/dist/transforms/controlFlowFlattening/switchCaseObfuscation.js +0 -106
package/dist/transforms/eval.js +0 -84
package/dist/transforms/hexadecimalNumbers.js +0 -63
package/dist/transforms/hideInitializingCode.js +0 -270
package/dist/transforms/identifier/nameRecycling.js +0 -218
package/dist/transforms/label.js +0 -67
package/dist/transforms/preparation/nameConflicts.js +0 -116
package/dist/transforms/preparation/preparation.js +0 -188

package/.github/workflows/node.js.yml CHANGED Viewed

@@ -15,7 +15,7 @@ jobs:
     strategy:
       matrix:
-        node-version: [14.15, 16.10, 18.0]
+        node-version: [14.15, 16.10, 18.0, 20.16]
         # See supported Node.js release schedule at https://nodejs.org/en/about/releases/
     steps:

package/CHANGELOG.md CHANGED Viewed

@@ -1,3 +1,76 @@
+# `1.7.3`
+Tamper Protection
+### `Tamper Protection`
+Tamper Protection safeguards the runtime behavior from being altered by JavaScript pitfalls.
+[Learn more here.](/docs/TamperProtection.md)
+---
+- Rename Variables improvements:
+- A new exposed function, `__JS_CONFUSER_VAR__`, can be used to access renamed variables. [Learn more here](/docs/RenameVariables.md).
+```js
+// Input
+var name = "John Doe";
+eval("console.log(" + __JS_CONFUSER_VAR__(name) + ")");
+// Output
+var CA1HU0 = 'John Doe';
+eval('console.log(' + 'CA1HU0' + ')');
+```
+- Improved the `Zero Width` identifier generator (Thanks @doctor8296!)
+- Pad the `String Concealing` array with more fake strings
+- Improve `String Compression`
+- New Web UI sneak peak: https://new--confuser.netlify.app/
+# `1.7.2`
+Updates
+- `Anti Tooling` & `Expression Obfuscation` improvements
+- - No longer expanded by [webcrack](https://github.com/j4k0xb/webcrack), [synchrony](https://github.com/relative/synchrony) & [REstringer](https://github.com/PerimeterX/restringer)
+- `String Concealing` improvements
+- - Randomizes the charset for each obfuscation
+- - Place multiple decryption functions throughout the code
+- - These changes aim to defeat [JSConfuser-String-Decryptor](https://github.com/0v41n/JSConfuser-String-Decryptor) and any other RegEx-based decoders
+- `Moved Declarations` improvements
+- - Now moves some variables as unused parameters on certain functions
+- `RGF` improvements
+- - More likely to transform functions containing functions
+- Fixed [#96](https://github.com/MichaelXF/js-confuser/issues/96)
+- - Removed hardcoded limits on `String Concealing`, `String Compression`, and `Duplicate Literals Removal`
+- Fixed [#106](https://github.com/MichaelXF/js-confuser/issues/106)
+- - Final fix with const variables for `Object Extraction`
+- Fixed [#131](https://github.com/MichaelXF/js-confuser/issues/131)
+- - __dirname is no longer changed by `Global Concealing`
+**New Option**
+### `preserveFunctionLength`
+- Modified functions will retain the correct `function.length` property. (`true/false`)
+Enabled by default.
+Minor improvements
+- Preserve `function.length`
+- Preserve Strict Mode behaviors
+- Preserve indirect vs. direct [`eval`](https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/eval) use
 # `1.7.1`
 Updates

package/README.md CHANGED Viewed

@@ -131,6 +131,8 @@ Converts output to ES5-compatible code. (`true/false`)
 Does not cover all cases such as Promises or Generator functions. Use [Babel](https://babel.dev/).
+[Learn more here.](https://github.com/MichaelXF/js-confuser/blob/master/docs/ES5.md)
 ### `renameVariables`
 Determines if variables should be renamed. (`true/false`)
@@ -181,33 +183,12 @@ var qFaI6S = function () {
 qFaI6S();
 ```
+[Learn mode here.](https://github.com/MichaelXF/js-confuser/blob/master/docs/RenameVariables.md)
 ### `renameGlobals`
 Renames top-level variables, turn this off for web-related scripts. Enabled by default. (`true/false`)
-```js
-// Output (Same input from above)
-var twoSum = function (Oc4nmjB, Fk3nptX) {
-  var on_KnCm = {};
-  var lqAauc = Oc4nmjB["length"];
-  for (var mALijp8 = 0; mALijp8 < lqAauc; mALijp8++) {
-    if (Oc4nmjB[mALijp8] in on_KnCm) {
-      return [on_KnCm[Oc4nmjB[mALijp8]], mALijp8];
-    }
-    on_KnCm[Fk3nptX - Oc4nmjB[mALijp8]] = mALijp8;
-  }
-  return [-1, -1];
-};
-var test = function () {
-  var y5ySeZ = [2, 7, 11, 15];
-  var gHYMOm = 9;
-  var aAdj3v = [0, 1];
-  var GnLVHX = twoSum(y5ySeZ, gHYMOm);
-  !(ok(GnLVHX[0] === aAdj3v[0]), ok(GnLVHX[1] === aAdj3v[1]));
-};
-test();
-```
 ### `identifierGenerator`
 Determines how variables are renamed.
@@ -392,8 +373,11 @@ yAt1T_y(-93)["log"]("Hello World");
 ```
 ### `stringCompression`
 String Compression uses LZW's compression algorithm to compress strings. (`true/false/0-1`)
+Use a number to control the percentage of strings.
 `"console"` -> `inflate('replaĕ!ğğuģģ<~@')`
 ### `stringConcealing`
@@ -408,6 +392,8 @@ Use a number to control the percentage of strings.
 String Encoding transforms a string into an encoded representation. (`true/false/0-1`)
+**⚠️ Warning: Significantly increases file size! It is not recommended for most use cases.**
 Use a number to control the percentage of strings.
 `"console"` -> `'\x63\x6f\x6e\x73\x6f\x6c\x65'`
@@ -595,9 +581,16 @@ Creates a calculator function to handle arithmetic and logical expressions. (`tr
 Adds `debugger` statements throughout the code. Additionally adds a background function for DevTools detection. (`true/false/0-1`)
-### `lock.context`
+### `lock.tamperProtection`
-Properties that must be present on the `window` object (or `global` for NodeJS). (`string[]`)
+Tamper Protection safeguards the runtime behavior from being altered by JavaScript pitfalls. (`true/false`)
+**⚠️ Tamper Protection requires eval and ran in a non-strict mode environment!**
+- **This can break your code.**
+- **Due to the security concerns of arbitrary code execution, you must enable this yourself.**
+[Learn more here](https://github.com/MichaelXF/js-confuser/blob/master/TamperProtection.md).
 ### `lock.startDate`
@@ -647,10 +640,14 @@ Integrity ensures the source code is unchanged. (`true/false/0-1`)
 A custom callback function to invoke when a lock is triggered. (`string/false`)
-[Learn more about the countermeasures function](https://github.com/MichaelXF/js-confuser/blob/master/docs/Countermeasures.md).
+[Learn more here.](https://github.com/MichaelXF/js-confuser/blob/master/docs/Countermeasures.md)
 Otherwise, the obfuscator falls back to crashing the process.
+### `lock.context`
+Properties that must be present on the `window` object (or `global` for NodeJS). (`string[]`)
 ### `movedDeclarations`
 Moves variable declarations to the top of the context. (`true/false`)
@@ -666,9 +663,8 @@ function getAreaOfCircle(radius) {
 }
 // Output
-function getAreaOfCircle(yLu5YB1) {
-  var eUf7Wle, XVYH4D;
-  var F8QuPL = Math["PI"];
+function getAreaOfCircle(yLu5YB1, eUf7Wle, XVYH4D, F8QuPL) {
+  F8QuPL = Math["PI"];
   typeof ((eUf7Wle = Math["pow"](yLu5YB1, 2)), (XVYH4D = F8QuPL * eUf7Wle));
   return XVYH4D;
 }
@@ -804,6 +800,7 @@ You must enable locks yourself, and configure them to your needs.
   lock: {
     integrity: true,
     selfDefending: true,
+    tamperProtection: true,
     domainLock: ["mywebsite.com"],
     osLock: ["windows", "linux"],
     browserLock: ["firefox"],
@@ -832,10 +829,14 @@ These features are experimental or a security concern.
   // set to false for web-related scripts
   renameGlobals: false,
-  // experimental
+  // custom implementation
   identifierGenerator: function(){
     return "myvar_" + (counter++);
-  }
+  },
+  // Modified functions will retain the correct `function.length` property.
+  // Enabled by default.
+  preserveFunctionLength: false
 }
 ```

package/dist/compiler.js CHANGED Viewed

@@ -5,22 +5,18 @@ Object.defineProperty(exports, "__esModule", {
 });
 exports.compileJsSync = compileJsSync;
 exports.default = compileJs;
 const escodegen = require("escodegen");
 async function compileJs(tree, options) {
   return compileJsSync(tree, options);
 }
 function compileJsSync(tree, options) {
   var api = {
-    format: { ...escodegen.FORMAT_MINIFY
+    format: {
+      ...escodegen.FORMAT_MINIFY
     }
   };
   if (!options.compact) {
     api = {};
     if (options.indent && options.indent != 4) {
       api.format = {};
       api.format.indent = {
@@ -31,10 +27,8 @@ function compileJsSync(tree, options) {
       };
     }
   }
   if (options.debugComments) {
     api.comment = true;
   }
   return escodegen.generate(tree, api);
 }

package/dist/constants.js CHANGED Viewed

@@ -3,20 +3,32 @@
 Object.defineProperty(exports, "__esModule", {
   value: true
 });
-exports.reservedKeywords = exports.reservedIdentifiers = exports.placeholderVariablePrefix = exports.noRenameVariablePrefix = void 0;
+exports.variableFunctionName = exports.reservedKeywords = exports.reservedIdentifiers = exports.predictableFunctionTag = exports.placeholderVariablePrefix = exports.noRenameVariablePrefix = exports.criticalFunctionTag = void 0;
 /**
  * Keywords disallowed for variable names in ES5 and under.
  */
-const reservedKeywords = new Set(["abstract", "arguments", "await", "boolean", "break", "byte", "case", "catch", "char", "class", "const", "continue", "debugger", "default", "delete", "do", "double", "else", "enum", "eval", "export", "extends", "false", "final", "finally", "float", "for", "function", "goto", "if", "implements", "import", "in", "instanceof", "int", "interface", "let", "long", "native", "new", "null", "package", "private", "protected", "public", "return", "short", "static", "super", "switch", "synchronized", "this", "throw", "throws", "transient", "true", "try", "typeof", "var", "void", "volatile", "while", "with", "yield"]);
+const reservedKeywords = exports.reservedKeywords = new Set(["abstract", "arguments", "await", "boolean", "break", "byte", "case", "catch", "char", "class", "const", "continue", "debugger", "default", "delete", "do", "double", "else", "enum", "eval", "export", "extends", "false", "final", "finally", "float", "for", "function", "goto", "if", "implements", "import", "in", "instanceof", "int", "interface", "let", "long", "native", "new", "null", "package", "private", "protected", "public", "return", "short", "static", "super", "switch", "synchronized", "this", "throw", "throws", "transient", "true", "try", "typeof", "var", "void", "volatile", "while", "with", "yield"]);
 /**
  * Identifiers that are not actually variables.
  */
+const reservedIdentifiers = exports.reservedIdentifiers = new Set(["undefined", "null", "NaN", "Infinity", "eval", "arguments"]);
+const noRenameVariablePrefix = exports.noRenameVariablePrefix = "__NO_JS_CONFUSER_RENAME__";
+const placeholderVariablePrefix = exports.placeholderVariablePrefix = "__p_";
+/**
+ * Tells the obfuscator this function is predictable:
+ * -  Never called with extraneous parameters
+ */
+const predictableFunctionTag = exports.predictableFunctionTag = "__JS_PREDICT__";
-exports.reservedKeywords = reservedKeywords;
-const reservedIdentifiers = new Set(["undefined", "null", "NaN", "Infinity", "eval", "arguments"]);
-exports.reservedIdentifiers = reservedIdentifiers;
-const noRenameVariablePrefix = "__NO_JS_CONFUSER_RENAME__";
-exports.noRenameVariablePrefix = noRenameVariablePrefix;
-const placeholderVariablePrefix = "__p_";
-exports.placeholderVariablePrefix = placeholderVariablePrefix;
+/**
+ * Tells the obfuscator this function is critical for the Obfuscated code.
+ * -  Example: string decryption function
+ */
+const criticalFunctionTag = exports.criticalFunctionTag = "__JS_CRITICAL__";
+/**
+ * Allows the user to grab the variable name of a renamed variable.
+ */
+const variableFunctionName = exports.variableFunctionName = "__JS_CONFUSER_VAR__";

package/dist/index.js CHANGED Viewed

@@ -9,6 +9,12 @@ Object.defineProperty(exports, "Obfuscator", {
     return _obfuscator.default;
   }
 });
+Object.defineProperty(exports, "Template", {
+  enumerable: true,
+  get: function () {
+    return _template.default;
+  }
+});
 Object.defineProperty(exports, "Transform", {
   enumerable: true,
   get: function () {
@@ -24,29 +30,18 @@ Object.defineProperty(exports, "presets", {
     return _presets.default;
   }
 });
 var _compiler = _interopRequireWildcard(require("./compiler"));
 var _parser = _interopRequireWildcard(require("./parser"));
 var _obfuscator = _interopRequireDefault(require("./obfuscator"));
 var _transform = _interopRequireDefault(require("./transforms/transform"));
+var _template = _interopRequireDefault(require("./templates/template"));
 var _object = require("./util/object");
 var _presets = _interopRequireDefault(require("./presets"));
 var assert = _interopRequireWildcard(require("assert"));
 var _options = require("./options");
-function _interopRequireDefault(obj) { return obj && obj.__esModule ? obj : { default: obj }; }
-function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
-function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
+function _interopRequireDefault(e) { return e && e.__esModule ? e : { default: e }; }
+function _getRequireWildcardCache(e) { if ("function" != typeof WeakMap) return null; var r = new WeakMap(), t = new WeakMap(); return (_getRequireWildcardCache = function (e) { return e ? t : r; })(e); }
+function _interopRequireWildcard(e, r) { if (!r && e && e.__esModule) return e; if (null === e || "object" != typeof e && "function" != typeof e) return { default: e }; var t = _getRequireWildcardCache(r); if (t && t.has(e)) return t.get(e); var n = { __proto__: null }, a = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var u in e) if ("default" !== u && {}.hasOwnProperty.call(e, u)) { var i = a ? Object.getOwnPropertyDescriptor(e, u) : null; i && (i.get || i.set) ? Object.defineProperty(n, u, i) : n[u] = e[u]; } return n.default = e, t && t.set(e, n), n; }
 /**
  * **JsConfuser**: Obfuscates JavaScript.
  * @param code - The code to be obfuscated.
@@ -55,6 +50,7 @@ function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj &&
 async function obfuscate(code, options) {
   return await JsConfuser(code, options);
 }
 /**
  * Obfuscates an [ESTree](https://github.com/estree/estree) compliant AST.
  *
@@ -65,8 +61,6 @@ async function obfuscate(code, options) {
  *
  * [See all settings here](https://github.com/MichaelXF/js-confuser#options)
  */
 async function obfuscateAST(AST, options) {
   assert.ok(typeof AST === "object", "AST must be type object");
   assert.ok(AST.type == "Program", "AST.type must be equal to 'Program'");
@@ -77,18 +71,16 @@ async function obfuscateAST(AST, options) {
   options.verbose && console.log("* Removing $ properties");
   (0, _object.remove$Properties)(AST);
 }
 /**
  * **JsConfuser**: Obfuscates JavaScript.
  * @param code - The code to be obfuscated.
  * @param options - An object of obfuscation options: `{preset: "medium", target: "browser"}`.
  */
 var JsConfuser = async function (code, options) {
   if (typeof code !== "string") {
     throw new TypeError("code must be type string");
   }
   (0, _options.validateOptions)(options);
   options = await (0, _options.correctOptions)(options);
   options.verbose && console.log("* Parsing source code");
@@ -102,7 +94,6 @@ var JsConfuser = async function (code, options) {
   var result = await (0, _compiler.default)(tree, options);
   return result;
 };
 const debugTransformations = async function (code, options) {
   (0, _options.validateOptions)(options);
   options = await (0, _options.correctOptions)(options);
@@ -121,6 +112,7 @@ const debugTransformations = async function (code, options) {
   await obfuscator.apply(tree, true);
   return frames;
 };
 /**
  * This method is used by the obfuscator website to display a progress bar and additional information
  * about the obfuscation.
@@ -130,10 +122,7 @@ const debugTransformations = async function (code, options) {
  * @param callback - Progress callback, called after each transformation
  * @returns
  */
 exports.debugTransformations = debugTransformations;
 const debugObfuscation = async function (code, options, callback, performance) {
   const startTime = performance.now();
   (0, _options.validateOptions)(options);
@@ -166,7 +155,6 @@ const debugObfuscation = async function (code, options, callback, performance) {
     totalPossibleTransforms: obfuscator.totalPossibleTransforms
   };
 };
 exports.debugObfuscation = debugObfuscation;
 JsConfuser.obfuscate = obfuscate;
 JsConfuser.obfuscateAST = obfuscateAST;
@@ -175,14 +163,11 @@ JsConfuser.debugTransformations = debugTransformations;
 JsConfuser.debugObfuscation = debugObfuscation;
 JsConfuser.Obfuscator = _obfuscator.default;
 JsConfuser.Transform = _transform.default;
+JsConfuser.Template = _template.default;
 if (typeof window !== "undefined") {
   window["JsConfuser"] = JsConfuser;
 }
 if (typeof global !== "undefined") {
   global["JsConfuser"] = JsConfuser;
 }
-var _default = JsConfuser;
-exports.default = _default;
+var _default = exports.default = JsConfuser;

package/dist/obfuscator.js CHANGED Viewed

@@ -4,110 +4,72 @@ Object.defineProperty(exports, "__esModule", {
   value: true
 });
 exports.default = void 0;
 var _assert = require("assert");
 var _events = require("events");
 var _traverse = _interopRequireDefault(require("./traverse"));
 var _probability = require("./probability");
 var _preparation = _interopRequireDefault(require("./transforms/preparation"));
 var _objectExtraction = _interopRequireDefault(require("./transforms/extraction/objectExtraction"));
 var _lock = _interopRequireDefault(require("./transforms/lock/lock"));
 var _dispatcher = _interopRequireDefault(require("./transforms/dispatcher"));
 var _deadCode = _interopRequireDefault(require("./transforms/deadCode"));
 var _opaquePredicates = _interopRequireDefault(require("./transforms/opaquePredicates"));
 var _calculator = _interopRequireDefault(require("./transforms/calculator"));
 var _controlFlowFlattening = _interopRequireDefault(require("./transforms/controlFlowFlattening/controlFlowFlattening"));
 var _globalConcealing = _interopRequireDefault(require("./transforms/identifier/globalConcealing"));
 var _stringSplitting = _interopRequireDefault(require("./transforms/string/stringSplitting"));
 var _stringConcealing = _interopRequireDefault(require("./transforms/string/stringConcealing"));
 var _stringCompression = _interopRequireDefault(require("./transforms/string/stringCompression"));
 var _duplicateLiteralsRemoval = _interopRequireDefault(require("./transforms/extraction/duplicateLiteralsRemoval"));
 var _shuffle = _interopRequireDefault(require("./transforms/shuffle"));
 var _movedDeclarations = _interopRequireDefault(require("./transforms/identifier/movedDeclarations"));
 var _renameVariables = _interopRequireDefault(require("./transforms/identifier/renameVariables"));
 var _renameLabels = _interopRequireDefault(require("./transforms/renameLabels"));
 var _minify = _interopRequireDefault(require("./transforms/minify"));
 var _es = _interopRequireDefault(require("./transforms/es5/es5"));
 var _rgf = _interopRequireDefault(require("./transforms/rgf"));
 var _flatten = _interopRequireDefault(require("./transforms/flatten"));
 var _stack = _interopRequireDefault(require("./transforms/stack"));
 var _antiTooling = _interopRequireDefault(require("./transforms/antiTooling"));
 var _finalizer = _interopRequireDefault(require("./transforms/finalizer"));
-function _interopRequireDefault(obj) { return obj && obj.__esModule ? obj : { default: obj }; }
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _interopRequireDefault(e) { return e && e.__esModule ? e : { default: e }; }
+function _defineProperty(e, r, t) { return (r = _toPropertyKey(r)) in e ? Object.defineProperty(e, r, { value: t, enumerable: !0, configurable: !0, writable: !0 }) : e[r] = t, e; }
+function _toPropertyKey(t) { var i = _toPrimitive(t, "string"); return "symbol" == typeof i ? i : i + ""; }
+function _toPrimitive(t, r) { if ("object" != typeof t || !t) return t; var e = t[Symbol.toPrimitive]; if (void 0 !== e) { var i = e.call(t, r || "default"); if ("object" != typeof i) return i; throw new TypeError("@@toPrimitive must return a primitive value."); } return ("string" === r ? String : Number)(t); }
 /**
  * The parent transformation holding the `state`.
  */
 class Obfuscator extends _events.EventEmitter {
   constructor(options) {
     var _this;
     super();
     _this = this;
     this.options = options;
     _defineProperty(this, "varCount", void 0);
     _defineProperty(this, "transforms", void 0);
     _defineProperty(this, "array", void 0);
     _defineProperty(this, "state", "transform");
     _defineProperty(this, "generated", void 0);
     _defineProperty(this, "totalPossibleTransforms", void 0);
     this.varCount = 0;
     this.transforms = Object.create(null);
     this.generated = new Set();
     this.totalPossibleTransforms = 0;
     const test = function (map) {
       for (var _len = arguments.length, transformers = new Array(_len > 1 ? _len - 1 : 0), _key = 1; _key < _len; _key++) {
         transformers[_key - 1] = arguments[_key];
       }
       _this.totalPossibleTransforms += transformers.length;
       if ((0, _probability.isProbabilityMapProbable)(map)) {
         // options.verbose && console.log("+ Added " + transformer.name);
         transformers.forEach(Transformer => _this.push(new Transformer(_this)));
-      } else {// options.verbose && console.log("- Skipped adding " + transformer.name);
+      } else {
+        // options.verbose && console.log("- Skipped adding " + transformer.name);
       }
-    }; // Optimization: Only add needed transformers. If a probability always return false, no need in running that extra code.
+    };
+    // Optimization: Only add needed transformers. If a probability always return false, no need in running that extra code.
     test(true, _preparation.default);
     test(true, _renameLabels.default);
     test(options.objectExtraction, _objectExtraction.default);
@@ -134,28 +96,25 @@ class Obfuscator extends _events.EventEmitter {
     if (options.lock && Object.keys(options.lock).filter(x => x == "domainLock" ? options.lock.domainLock && options.lock.domainLock.length : options.lock[x]).length) {
       test(true, _lock.default);
-    } // Make array
+    }
-    this.array = Object.values(this.transforms); // Sort transformations based on their priority
+    // Make array
+    this.array = Object.values(this.transforms);
+    // Sort transformations based on their priority
     this.array.sort((a, b) => a.priority - b.priority);
   }
   push(transform) {
     if (transform.className) {
       (0, _assert.ok)(!this.transforms[transform.className], "Already have " + transform.className);
     }
     this.transforms[transform.className] = transform;
   }
   resetState() {
     this.varCount = 0;
     this.generated = new Set();
     this.state = "transform";
   }
   async apply(tree) {
     let debugMode = arguments.length > 1 && arguments[1] !== undefined ? arguments[1] : false;
     (0, _assert.ok)(tree.type == "Program", "The root node must be type 'Program'");
@@ -163,22 +122,19 @@ class Obfuscator extends _events.EventEmitter {
     (0, _assert.ok)(Array.isArray(this.array));
     this.resetState();
     var completed = 0;
     for (var transform of this.array) {
       await transform.apply(tree);
       completed++;
       if (debugMode) {
         this.emit("debug", transform.className, tree, completed);
       }
     }
     if (this.options.verbose) {
       console.log("-> Check for Eval Callbacks");
     }
+    this.state = "eval";
-    this.state = "eval"; // Find eval callbacks
+    // Find eval callbacks
     (0, _traverse.default)(tree, (o, p) => {
       if (o.$eval) {
         return () => {
@@ -186,12 +142,9 @@ class Obfuscator extends _events.EventEmitter {
         };
       }
     });
     if (this.options.verbose) {
       console.log("<- Done");
     }
   }
 }
 exports.default = Obfuscator;