(04-30-2014 08:25 PM)scorcher Wrote: [ -> ]@PizzaTuna Here you goThis decoding is a mess. Not even obfuscated name of the functions not remains in place. Is totally useless.
http://www76.zippyshare.com/v/42679469/file.html
You have to check for syntax errors yourself.
(04-30-2014 09:02 PM)alisi Wrote: [ -> ]it will not be easy to deobfuscate Variable names.it is very easy to solve
can you upload the script. I will check it. and replay if it is possible to deobfuscate Variables.?
function splitdeptid( $_obfuscate_DSQJPTAeCigOCDs5EhcmBD8qOzkYKzI� )
{
$_obfuscate_DRARLj0JERQSPCEoCx4TMDEqCDAaEgE� = split( ",", $_obfuscate_DSQJPTAeCigOCDs5EhcmBD8qOzkYKzI� );
$_obfuscate_DTcMKQ8RNwgHCDkCNSoMEy4vGjkbFyI� = "";
foreach ( $_obfuscate_DRARLj0JERQSPCEoCx4TMDEqCDAaEgE� as $_obfuscate_DTgRJzYXLjAwIhMWDz0YLzMJKyQFMCI� )
{
$_obfuscate_DVwdGhYbMytbMQguKBsQBz8uLgwMXCI� = "select * from department where dept_id='".$_obfuscate_DTgRJzYXLjAwIhMWDz0YLzMJKyQFMCI�."'";
$_obfuscate_DS4dChkTEAgYIhIkOSE5NzQYKS0FNhE� = mysql_query( $_obfuscate_DVwdGhYbMytbMQguKBsQBz8uLgwMXCI� );
$_obfuscate_DQ87Nz0YJxkCPQMxHSMXERoyLAcsHQE� = mysql_fetch_object( $_obfuscate_DS4dChkTEAgYIhIkOSE5NzQYKS0FNhE� );
$_obfuscate_DTcMKQ8RNwgHCDkCNSoMEy4vGjkbFyI� .= $_obfuscate_DQ87Nz0YJxkCPQMxHSMXERoyLAcsHQE�->dept_short_name.", ";
}
$_obfuscate_DTcMKQ8RNwgHCDkCNSoMEy4vGjkbFyI� = substr( $_obfuscate_DTcMKQ8RNwgHCDkCNSoMEy4vGjkbFyI�, 0, strlen( $_obfuscate_DTcMKQ8RNwgHCDkCNSoMEy4vGjkbFyI� ) - 2 );
return $_obfuscate_DTcMKQ8RNwgHCDkCNSoMEy4vGjkbFyI�;
}
function splitdeptid($id){
$id_list = split( ",", $id);
$return = "";
foreach($id_list as $id_out )
{
$query_dep_id = "select * from department where dept_id='".$id_out."'";
$dep_id = mysql_query($query_dep_id);
$obj_dep_id = mysql_fetch_object($dep_id);
$return .= $obj_dep_id->dept_short_name.", ";
}
$return = substr( $return, 0, strlen($return) - 2 );
return $return;
}
(04-30-2014 09:28 PM)hgwells Wrote: [ -> ](04-30-2014 09:02 PM)alisi Wrote: [ -> ]it will not be easy to deobfuscate Variable names.it is very easy to solve
can you upload the script. I will check it. and replay if it is possible to deobfuscate Variables.?
it is understood that: a function like this and myFunction ($ myvar)
will use the variable $ myvar
and the return must be generated in:
Here is an example
PHP Code:
function splitdeptid( $_obfuscate_DSQJPTAeCigOCDs5EhcmBD8qOzkYKzI� )
{
$_obfuscate_DRARLj0JERQSPCEoCx4TMDEqCDAaEgE� = split( ",", $_obfuscate_DSQJPTAeCigOCDs5EhcmBD8qOzkYKzI� );
$_obfuscate_DTcMKQ8RNwgHCDkCNSoMEy4vGjkbFyI� = "";
foreach ( $_obfuscate_DRARLj0JERQSPCEoCx4TMDEqCDAaEgE� as $_obfuscate_DTgRJzYXLjAwIhMWDz0YLzMJKyQFMCI� )
{
$_obfuscate_DVwdGhYbMytbMQguKBsQBz8uLgwMXCI� = "select * from department where dept_id='".$_obfuscate_DTgRJzYXLjAwIhMWDz0YLzMJKyQFMCI�."'";
$_obfuscate_DS4dChkTEAgYIhIkOSE5NzQYKS0FNhE� = mysql_query( $_obfuscate_DVwdGhYbMytbMQguKBsQBz8uLgwMXCI� );
$_obfuscate_DQ87Nz0YJxkCPQMxHSMXERoyLAcsHQE� = mysql_fetch_object( $_obfuscate_DS4dChkTEAgYIhIkOSE5NzQYKS0FNhE� );
$_obfuscate_DTcMKQ8RNwgHCDkCNSoMEy4vGjkbFyI� .= $_obfuscate_DQ87Nz0YJxkCPQMxHSMXERoyLAcsHQE�->dept_short_name.", ";
}
$_obfuscate_DTcMKQ8RNwgHCDkCNSoMEy4vGjkbFyI� = substr( $_obfuscate_DTcMKQ8RNwgHCDkCNSoMEy4vGjkbFyI�, 0, strlen( $_obfuscate_DTcMKQ8RNwgHCDkCNSoMEy4vGjkbFyI� ) - 2 );
return $_obfuscate_DTcMKQ8RNwgHCDkCNSoMEy4vGjkbFyI�;
}
possible rewriting to
PHP Code:
function splitdeptid($id){
$id_list = split( ",", $id);
$return = "";
foreach($id_list as $id_out )
{
$query_dep_id = "select * from department where dept_id='".$id_out."'";
$dep_id = mysql_query($query_dep_id);
$obj_dep_id = mysql_fetch_object($dep_id);
$return .= $obj_dep_id->dept_short_name.", ";
}
$return = substr( $return, 0, strlen($return) - 2 );
return $return;
}
it's very easy :)
(04-30-2014 09:47 PM)hgwells Wrote: [ -> ]with good tool you désofusque enough afficelementif that is so easy, why do not you do?
such as when a variable has a name he had offended in all files with the same name
blow $ _AEZRbqdfjrgàéFA serat in all file the same variable
you have some software that allows you to change the character string in all files of a folder example
suddenly you pass as a parameter $ _AEZRbqdfjrgàéFA replace $ my_param_name
etc.
(04-30-2014 09:53 PM)alisi Wrote: [ -> ]yes.ok ;)
I use the same method and some tools to do this kind of jobs :)
<?php
class listgateway {
public function setsql($sql){
$this->sqlList = $sql;
}
public function totalrecord(){
return mysql_num_rows( mysql_query( $this->sqlList ) );
}
public function listview(){
$sql = $this->sqlList." limit ".$this->start.",".$this->limit;
$res = mysql_query( $sql );
return $res;
}
public function numpage($rowPage){
return floor( totalrecord( ) / $rowPage );
}
public function deleterecord($adid){
mysql_query( "update payment_gateway set pg_status=0 where id='".$adid."'" );
}
public function activerecord($adid){
mysql_query( "update payment_gateway set pg_status=1 where id='".$adid."'" );
}
public function deletelink($id){
return ($_SERVER['QUERY_STRING'] == "") ? "?action=del&aid=".$id : "gateway-view.php?".$_SERVER['QUERY_STRING']."&action=del&aid=".$id;
}
public function activelink($id){
return ($_SERVER['QUERY_STRING'] == "") ? "?action=act&aid=".$id : "gateway-view.php?".$_SERVER['QUERY_STRING']."&action=act&aid=".$id;
}
}
function splitdeptid($id){
$id_list = split( ",", $id);
$return = "";
foreach($id_list as $id_out ){
$query_dep_id = "select * from department where dept_id='".$id_out."'";
$dep_id = mysql_query($query_dep_id);
$obj_dep_id = mysql_fetch_object($dep_id);
$return .= $obj_dep_id->dept_short_name.", ";
}
$return = substr( $return, 0, strlen($return) - 2 );
return $return;
}
function designame($id){
$query_id_desig = "select * from designation where desig_id='".$id."'";
$desig_id = mysql_query($query_id_desig);
$obj_desig_id = mysql_fetch_object($desig_id);
$return = $obj_desig_id->desig_name;
return $return;
}
(04-30-2014 10:08 PM)hgwells Wrote: [ -> ]WOOOOOOOOW THANK YOU BROOOOOOO , I LOVE YOUUUUU(04-30-2014 09:53 PM)alisi Wrote: [ -> ]yes.ok ;)
I use the same method and some tools to do this kind of jobs :)
-----------------------
first part gateway-view.php (full class and function decoded/desofuscate and little rewrited lol)
PHP Code:
<?php
class listgateway {
public function setsql($sql){
$this->sqlList = $sql;
}
public function totalrecord(){
return mysql_num_rows( mysql_query( $this->sqlList ) );
}
public function listview(){
$sql = $this->sqlList." limit ".$this->start.",".$this->limit;
$res = mysql_query( $sql );
return $res;
}
public function numpage($rowPage){
return floor( totalrecord( ) / $rowPage );
}
public function deleterecord($adid){
mysql_query( "update payment_gateway set pg_status=0 where id='".$adid."'" );
}
public function activerecord($adid){
mysql_query( "update payment_gateway set pg_status=1 where id='".$adid."'" );
}
public function deletelink($id){
return ($_SERVER['QUERY_STRING'] == "") ? "?action=del&aid=".$id : "gateway-view.php?".$_SERVER['QUERY_STRING']."&action=del&aid=".$id;
}
public function activelink($id){
return ($_SERVER['QUERY_STRING'] == "") ? "?action=act&aid=".$id : "gateway-view.php?".$_SERVER['QUERY_STRING']."&action=act&aid=".$id;
}
}
function splitdeptid($id){
$id_list = split( ",", $id);
$return = "";
foreach($id_list as $id_out ){
$query_dep_id = "select * from department where dept_id='".$id_out."'";
$dep_id = mysql_query($query_dep_id);
$obj_dep_id = mysql_fetch_object($dep_id);
$return .= $obj_dep_id->dept_short_name.", ";
}
$return = substr( $return, 0, strlen($return) - 2 );
return $return;
}
function designame($id){
$query_id_desig = "select * from designation where desig_id='".$id."'";
$desig_id = mysql_query($query_id_desig);
$obj_desig_id = mysql_fetch_object($desig_id);
$return = $obj_desig_id->desig_name;
return $return;
}
(04-30-2014 10:22 PM)PizzaTuna Wrote: [ -> ]désolé mais se sera en français(04-30-2014 10:08 PM)hgwells Wrote: [ -> ]WOOOOOOOOW THANK YOU BROOOOOOO , I LOVE YOUUUUU(04-30-2014 09:53 PM)alisi Wrote: [ -> ]yes.ok ;)
I use the same method and some tools to do this kind of jobs :)
-----------------------
first part gateway-view.php (full class and function decoded/desofuscate and little rewrited lol)
PHP Code:
<?php
class listgateway {
public function setsql($sql){
$this->sqlList = $sql;
}
public function totalrecord(){
return mysql_num_rows( mysql_query( $this->sqlList ) );
}
public function listview(){
$sql = $this->sqlList." limit ".$this->start.",".$this->limit;
$res = mysql_query( $sql );
return $res;
}
public function numpage($rowPage){
return floor( totalrecord( ) / $rowPage );
}
public function deleterecord($adid){
mysql_query( "update payment_gateway set pg_status=0 where id='".$adid."'" );
}
public function activerecord($adid){
mysql_query( "update payment_gateway set pg_status=1 where id='".$adid."'" );
}
public function deletelink($id){
return ($_SERVER['QUERY_STRING'] == "") ? "?action=del&aid=".$id : "gateway-view.php?".$_SERVER['QUERY_STRING']."&action=del&aid=".$id;
}
public function activelink($id){
return ($_SERVER['QUERY_STRING'] == "") ? "?action=act&aid=".$id : "gateway-view.php?".$_SERVER['QUERY_STRING']."&action=act&aid=".$id;
}
}
function splitdeptid($id){
$id_list = split( ",", $id);
$return = "";
foreach($id_list as $id_out ){
$query_dep_id = "select * from department where dept_id='".$id_out."'";
$dep_id = mysql_query($query_dep_id);
$obj_dep_id = mysql_fetch_object($dep_id);
$return .= $obj_dep_id->dept_short_name.", ";
}
$return = substr( $return, 0, strlen($return) - 2 );
return $return;
}
function designame($id){
$query_id_desig = "select * from designation where desig_id='".$id."'";
$desig_id = mysql_query($query_id_desig);
$obj_desig_id = mysql_fetch_object($desig_id);
$return = $obj_desig_id->desig_name;
return $return;
}
REP +5
_obfuscate_DSQJPTAeCigOCDs5EhcmBD8qOzkYKzIÿ:id
_obfuscate_DRARLj0JERQSPCEoCx4TMDEqCDAaEgEÿ:id_list
_obfuscate_DTcMKQ8RNwgHCDkCNSoMEy4vGjkbFyIÿ:return
_obfuscate_DVwdGhYbMytbMQguKBsQBz8uLgwMXCIÿ:query_dep_id
_obfuscate_DTgRJzYXLjAwIhMWDz0YLzMJKyQFMCIÿ:id_out
_obfuscate_DS4dChkTEAgYIhIkOSE5NzQYKS0FNhEÿ:dep_id
_obfuscate_DQ87Nz0YJxkCPQMxHSMXERoyLAcsHQEÿ:obj_dep_id