• JavaScript Hookers!

    by  • December 13, 2011 • Uncategorized

    This is by no means a new technique, but I haven’t found a definitve resource that maintains JavaScript hooks for reversing JavaScript. Below is a quick snippet I put together to help me out on a recent obfuscation I saw in the wild and it saved me a lot of time. Using document.write is not the best practice as it is a form of eval, but if you are looking at malware you should already be in a sandbox.

    I haven’t added in support for browsers or some of the other JS calls, but the useful ones are defined along with a couple popular Adobe calls. Feel free to fork or submit updates and I will keep it going. If you want an idea of how this is helpful, check out this link (it is browser safe). The hooks are defined before the obfuscated code.