04-30-2014, 09:02 PM
04-30-2014, 09:24 PM
(04-30-2014 08:25 PM)scorcher Wrote: [ -> ]@PizzaTuna Here you goThis decoding is a mess. Not even obfuscated name of the functions not remains in place. Is totally useless.
Magic Button :Code:
http://www76.zippyshare.com/v/42679469/file.html
You have to check for syntax errors yourself.
04-30-2014, 09:28 PM
(04-30-2014 09:02 PM)alisi Wrote: [ -> ]it will not be easy to deobfuscate Variable names.it is very easy to solve
can you upload the script. I will check it. and replay if it is possible to deobfuscate Variables.?
it is understood that: a function like this and myFunction ($ myvar)
will use the variable $ myvar
and the return must be generated in:
Here is an example
PHP Code:
function splitdeptid( $_obfuscate_DSQJPTAeCigOCDs5EhcmBD8qOzkYKzI� )
{
$_obfuscate_DRARLj0JERQSPCEoCx4TMDEqCDAaEgE� = split( ",", $_obfuscate_DSQJPTAeCigOCDs5EhcmBD8qOzkYKzI� );
$_obfuscate_DTcMKQ8RNwgHCDkCNSoMEy4vGjkbFyI� = "";
foreach ( $_obfuscate_DRARLj0JERQSPCEoCx4TMDEqCDAaEgE� as $_obfuscate_DTgRJzYXLjAwIhMWDz0YLzMJKyQFMCI� )
{
$_obfuscate_DVwdGhYbMytbMQguKBsQBz8uLgwMXCI� = "select * from department where dept_id='".$_obfuscate_DTgRJzYXLjAwIhMWDz0YLzMJKyQFMCI�."'";
$_obfuscate_DS4dChkTEAgYIhIkOSE5NzQYKS0FNhE� = mysql_query( $_obfuscate_DVwdGhYbMytbMQguKBsQBz8uLgwMXCI� );
$_obfuscate_DQ87Nz0YJxkCPQMxHSMXERoyLAcsHQE� = mysql_fetch_object( $_obfuscate_DS4dChkTEAgYIhIkOSE5NzQYKS0FNhE� );
$_obfuscate_DTcMKQ8RNwgHCDkCNSoMEy4vGjkbFyI� .= $_obfuscate_DQ87Nz0YJxkCPQMxHSMXERoyLAcsHQE�->dept_short_name.", ";
}
$_obfuscate_DTcMKQ8RNwgHCDkCNSoMEy4vGjkbFyI� = substr( $_obfuscate_DTcMKQ8RNwgHCDkCNSoMEy4vGjkbFyI�, 0, strlen( $_obfuscate_DTcMKQ8RNwgHCDkCNSoMEy4vGjkbFyI� ) - 2 );
return $_obfuscate_DTcMKQ8RNwgHCDkCNSoMEy4vGjkbFyI�;
}
possible rewriting to
PHP Code:
function splitdeptid($id){
$id_list = split( ",", $id);
$return = "";
foreach($id_list as $id_out )
{
$query_dep_id = "select * from department where dept_id='".$id_out."'";
$dep_id = mysql_query($query_dep_id);
$obj_dep_id = mysql_fetch_object($dep_id);
$return .= $obj_dep_id->dept_short_name.", ";
}
$return = substr( $return, 0, strlen($return) - 2 );
return $return;
}
it's very easy :)
04-30-2014, 09:38 PM
Thank you for you comment.
I mean that he should make names for all obfuscated Variables. if the script contain 200+ or 500+ files it will be hard work to do that without verry good PHP knowledges.
I mean that he should make names for all obfuscated Variables. if the script contain 200+ or 500+ files it will be hard work to do that without verry good PHP knowledges.
(04-30-2014 09:28 PM)hgwells Wrote: [ -> ](04-30-2014 09:02 PM)alisi Wrote: [ -> ]it will not be easy to deobfuscate Variable names.it is very easy to solve
can you upload the script. I will check it. and replay if it is possible to deobfuscate Variables.?
it is understood that: a function like this and myFunction ($ myvar)
will use the variable $ myvar
and the return must be generated in:
Here is an example
PHP Code:
function splitdeptid( $_obfuscate_DSQJPTAeCigOCDs5EhcmBD8qOzkYKzI� )
{
$_obfuscate_DRARLj0JERQSPCEoCx4TMDEqCDAaEgE� = split( ",", $_obfuscate_DSQJPTAeCigOCDs5EhcmBD8qOzkYKzI� );
$_obfuscate_DTcMKQ8RNwgHCDkCNSoMEy4vGjkbFyI� = "";
foreach ( $_obfuscate_DRARLj0JERQSPCEoCx4TMDEqCDAaEgE� as $_obfuscate_DTgRJzYXLjAwIhMWDz0YLzMJKyQFMCI� )
{
$_obfuscate_DVwdGhYbMytbMQguKBsQBz8uLgwMXCI� = "select * from department where dept_id='".$_obfuscate_DTgRJzYXLjAwIhMWDz0YLzMJKyQFMCI�."'";
$_obfuscate_DS4dChkTEAgYIhIkOSE5NzQYKS0FNhE� = mysql_query( $_obfuscate_DVwdGhYbMytbMQguKBsQBz8uLgwMXCI� );
$_obfuscate_DQ87Nz0YJxkCPQMxHSMXERoyLAcsHQE� = mysql_fetch_object( $_obfuscate_DS4dChkTEAgYIhIkOSE5NzQYKS0FNhE� );
$_obfuscate_DTcMKQ8RNwgHCDkCNSoMEy4vGjkbFyI� .= $_obfuscate_DQ87Nz0YJxkCPQMxHSMXERoyLAcsHQE�->dept_short_name.", ";
}
$_obfuscate_DTcMKQ8RNwgHCDkCNSoMEy4vGjkbFyI� = substr( $_obfuscate_DTcMKQ8RNwgHCDkCNSoMEy4vGjkbFyI�, 0, strlen( $_obfuscate_DTcMKQ8RNwgHCDkCNSoMEy4vGjkbFyI� ) - 2 );
return $_obfuscate_DTcMKQ8RNwgHCDkCNSoMEy4vGjkbFyI�;
}
possible rewriting to
PHP Code:
function splitdeptid($id){
$id_list = split( ",", $id);
$return = "";
foreach($id_list as $id_out )
{
$query_dep_id = "select * from department where dept_id='".$id_out."'";
$dep_id = mysql_query($query_dep_id);
$obj_dep_id = mysql_fetch_object($dep_id);
$return .= $obj_dep_id->dept_short_name.", ";
}
$return = substr( $return, 0, strlen($return) - 2 );
return $return;
}
it's very easy :)
04-30-2014, 09:47 PM
with good tool you désofusque enough afficelement
such as when a variable has a name he had offended in all files with the same name
blow $ _AEZRbqdfjrgàéFA serat in all file the same variable
you have some software that allows you to change the character string in all files of a folder example
suddenly you pass as a parameter $ _AEZRbqdfjrgàéFA replace $ my_param_name
etc.
such as when a variable has a name he had offended in all files with the same name
blow $ _AEZRbqdfjrgàéFA serat in all file the same variable
you have some software that allows you to change the character string in all files of a folder example
suddenly you pass as a parameter $ _AEZRbqdfjrgàéFA replace $ my_param_name
etc.
04-30-2014, 09:53 PM
yes.
I use the same method and some tools to do this kind of jobs :)
I use the same method and some tools to do this kind of jobs :)
04-30-2014, 10:00 PM
(04-30-2014 09:47 PM)hgwells Wrote: [ -> ]with good tool you désofusque enough afficelementif that is so easy, why do not you do?
such as when a variable has a name he had offended in all files with the same name
blow $ _AEZRbqdfjrgàéFA serat in all file the same variable
you have some software that allows you to change the character string in all files of a folder example
suddenly you pass as a parameter $ _AEZRbqdfjrgàéFA replace $ my_param_name
etc.
04-30-2014, 10:08 PM
(04-30-2014 09:53 PM)alisi Wrote: [ -> ]yes.ok ;)
I use the same method and some tools to do this kind of jobs :)
-----------------------
first part gateway-view.php (full class and function decoded/desofuscate and little rewrited lol)
PHP Code:
<?php
class listgateway {
public function setsql($sql){
$this->sqlList = $sql;
}
public function totalrecord(){
return mysql_num_rows( mysql_query( $this->sqlList ) );
}
public function listview(){
$sql = $this->sqlList." limit ".$this->start.",".$this->limit;
$res = mysql_query( $sql );
return $res;
}
public function numpage($rowPage){
return floor( totalrecord( ) / $rowPage );
}
public function deleterecord($adid){
mysql_query( "update payment_gateway set pg_status=0 where id='".$adid."'" );
}
public function activerecord($adid){
mysql_query( "update payment_gateway set pg_status=1 where id='".$adid."'" );
}
public function deletelink($id){
return ($_SERVER['QUERY_STRING'] == "") ? "?action=del&aid=".$id : "gateway-view.php?".$_SERVER['QUERY_STRING']."&action=del&aid=".$id;
}
public function activelink($id){
return ($_SERVER['QUERY_STRING'] == "") ? "?action=act&aid=".$id : "gateway-view.php?".$_SERVER['QUERY_STRING']."&action=act&aid=".$id;
}
}
function splitdeptid($id){
$id_list = split( ",", $id);
$return = "";
foreach($id_list as $id_out ){
$query_dep_id = "select * from department where dept_id='".$id_out."'";
$dep_id = mysql_query($query_dep_id);
$obj_dep_id = mysql_fetch_object($dep_id);
$return .= $obj_dep_id->dept_short_name.", ";
}
$return = substr( $return, 0, strlen($return) - 2 );
return $return;
}
function designame($id){
$query_id_desig = "select * from designation where desig_id='".$id."'";
$desig_id = mysql_query($query_id_desig);
$obj_desig_id = mysql_fetch_object($desig_id);
$return = $obj_desig_id->desig_name;
return $return;
}
04-30-2014, 10:22 PM
(04-30-2014 10:08 PM)hgwells Wrote: [ -> ]WOOOOOOOOW THANK YOU BROOOOOOO , I LOVE YOUUUUU(04-30-2014 09:53 PM)alisi Wrote: [ -> ]yes.ok ;)
I use the same method and some tools to do this kind of jobs :)
-----------------------
first part gateway-view.php (full class and function decoded/desofuscate and little rewrited lol)
PHP Code:
<?php
class listgateway {
public function setsql($sql){
$this->sqlList = $sql;
}
public function totalrecord(){
return mysql_num_rows( mysql_query( $this->sqlList ) );
}
public function listview(){
$sql = $this->sqlList." limit ".$this->start.",".$this->limit;
$res = mysql_query( $sql );
return $res;
}
public function numpage($rowPage){
return floor( totalrecord( ) / $rowPage );
}
public function deleterecord($adid){
mysql_query( "update payment_gateway set pg_status=0 where id='".$adid."'" );
}
public function activerecord($adid){
mysql_query( "update payment_gateway set pg_status=1 where id='".$adid."'" );
}
public function deletelink($id){
return ($_SERVER['QUERY_STRING'] == "") ? "?action=del&aid=".$id : "gateway-view.php?".$_SERVER['QUERY_STRING']."&action=del&aid=".$id;
}
public function activelink($id){
return ($_SERVER['QUERY_STRING'] == "") ? "?action=act&aid=".$id : "gateway-view.php?".$_SERVER['QUERY_STRING']."&action=act&aid=".$id;
}
}
function splitdeptid($id){
$id_list = split( ",", $id);
$return = "";
foreach($id_list as $id_out ){
$query_dep_id = "select * from department where dept_id='".$id_out."'";
$dep_id = mysql_query($query_dep_id);
$obj_dep_id = mysql_fetch_object($dep_id);
$return .= $obj_dep_id->dept_short_name.", ";
}
$return = substr( $return, 0, strlen($return) - 2 );
return $return;
}
function designame($id){
$query_id_desig = "select * from designation where desig_id='".$id."'";
$desig_id = mysql_query($query_id_desig);
$obj_desig_id = mysql_fetch_object($desig_id);
$return = $obj_desig_id->desig_name;
return $return;
}
REP +5
_obfuscate_DSQJPTAeCigOCDs5EhcmBD8qOzkYKzIÿ:id
_obfuscate_DRARLj0JERQSPCEoCx4TMDEqCDAaEgEÿ:id_list
_obfuscate_DTcMKQ8RNwgHCDkCNSoMEy4vGjkbFyIÿ:return
_obfuscate_DVwdGhYbMytbMQguKBsQBz8uLgwMXCIÿ:query_dep_id
_obfuscate_DTgRJzYXLjAwIhMWDz0YLzMJKyQFMCIÿ:id_out
_obfuscate_DS4dChkTEAgYIhIkOSE5NzQYKS0FNhEÿ:dep_id
_obfuscate_DQ87Nz0YJxkCPQMxHSMXERoyLAcsHQEÿ:obj_dep_id
04-30-2014, 10:32 PM
(04-30-2014 10:22 PM)PizzaTuna Wrote: [ -> ]désolé mais se sera en français(04-30-2014 10:08 PM)hgwells Wrote: [ -> ]WOOOOOOOOW THANK YOU BROOOOOOO , I LOVE YOUUUUU(04-30-2014 09:53 PM)alisi Wrote: [ -> ]yes.ok ;)
I use the same method and some tools to do this kind of jobs :)
-----------------------
first part gateway-view.php (full class and function decoded/desofuscate and little rewrited lol)
PHP Code:
<?php
class listgateway {
public function setsql($sql){
$this->sqlList = $sql;
}
public function totalrecord(){
return mysql_num_rows( mysql_query( $this->sqlList ) );
}
public function listview(){
$sql = $this->sqlList." limit ".$this->start.",".$this->limit;
$res = mysql_query( $sql );
return $res;
}
public function numpage($rowPage){
return floor( totalrecord( ) / $rowPage );
}
public function deleterecord($adid){
mysql_query( "update payment_gateway set pg_status=0 where id='".$adid."'" );
}
public function activerecord($adid){
mysql_query( "update payment_gateway set pg_status=1 where id='".$adid."'" );
}
public function deletelink($id){
return ($_SERVER['QUERY_STRING'] == "") ? "?action=del&aid=".$id : "gateway-view.php?".$_SERVER['QUERY_STRING']."&action=del&aid=".$id;
}
public function activelink($id){
return ($_SERVER['QUERY_STRING'] == "") ? "?action=act&aid=".$id : "gateway-view.php?".$_SERVER['QUERY_STRING']."&action=act&aid=".$id;
}
}
function splitdeptid($id){
$id_list = split( ",", $id);
$return = "";
foreach($id_list as $id_out ){
$query_dep_id = "select * from department where dept_id='".$id_out."'";
$dep_id = mysql_query($query_dep_id);
$obj_dep_id = mysql_fetch_object($dep_id);
$return .= $obj_dep_id->dept_short_name.", ";
}
$return = substr( $return, 0, strlen($return) - 2 );
return $return;
}
function designame($id){
$query_id_desig = "select * from designation where desig_id='".$id."'";
$desig_id = mysql_query($query_id_desig);
$obj_desig_id = mysql_fetch_object($desig_id);
$return = $obj_desig_id->desig_name;
return $return;
}
REP +5
_obfuscate_DSQJPTAeCigOCDs5EhcmBD8qOzkYKzIÿ:id
_obfuscate_DRARLj0JERQSPCEoCx4TMDEqCDAaEgEÿ:id_list
_obfuscate_DTcMKQ8RNwgHCDkCNSoMEy4vGjkbFyIÿ:return
_obfuscate_DVwdGhYbMytbMQguKBsQBz8uLgwMXCIÿ:query_dep_id
_obfuscate_DTgRJzYXLjAwIhMWDz0YLzMJKyQFMCIÿ:id_out
_obfuscate_DS4dChkTEAgYIhIkOSE5NzQYKS0FNhEÿ:dep_id
_obfuscate_DQ87Nz0YJxkCPQMxHSMXERoyLAcsHQEÿ:obj_dep_id
ici les nom n'ont aucune importance car elle fonctionne en interne se sont des exemple de nom tu peut mettre n'importe quoi ca marchera quand même
search on other script not ofuscated this function Pagination(); and sends me what replaces $ Var_120
$Var_120->Pagination( );