Dark Reading

JavaScript Obfuscation Moves to Phishing Emails

JavaScript, the ubiquitous scripting language used across Web applications worldwide, is becoming a key ingredient in phishing campaigns looking to plant malicious code on victims' computers, new ...
IEEE

The power of obfuscation techniques in malicious JavaScript code: A measurement study

Abstract: JavaScript based attacks have been reported as the top Internet security threats in recent years. Since most of the Internet users rely on anti-virus software to protect themselves from ...
Security Boulevard

Blov HTML Crypter: Phishing Evasion Through Encryption and Obfuscation

Cybercriminals are sharpening their phishing tactics with tools like Blov HTML Crypter — a utility that modifies HTML files to evade detection by security scanners. By employing techniques such as ...
Bleeping Computer

About 26% of all malicious JavaScript threats are obfuscated

A research that analyzed over 10,000 samples of diverse malicious software written in JavaScript concluded that roughly 26% of it is obfuscated to evade detection and analysis. Obfuscation is when ...
GitHub

Simple_JavaScript_malware_code_obfuscation_examples.md

__WARNING! Files ```do_not_run.js``` and ```do_not_run_deobfuscated.js``` contains Windows-targeted malware written in JavaScript and prepared to run with Windows Script Host (WSH) engine and can ...
GitHub

A "simple" JavaScript obfuscation tool that transforms critical code into a self-mutating (pseudo), polymorphic virtual machine.

This software is provided for educational and research purposes only. It is a proof-of-concept demonstrating advanced code obfuscation techniques. While it aims to make reverse-engineering more ...
Threat Post

Hackers Pinch Obfuscation Technique From DEFCON Presentation

UPDATE: Feds aren’t the only ones who are paying attention to the demonstrations at security conferences like Black Hat and DEFCON – the folks who actually don the black hats are, also. UPDATE: Feds ...