Context Navigation

← Previous Changeset
Next Changeset →

Changeset 1392070

Timestamp:

04/11/2016 01:48:24 PM (10 years ago)

Author:

seraum

Message:

New ofuscation lib added

Location:

wp-obfuscator/trunk

Files:

: 3 edited

README.txt (modified) (2 diffs)
files/class/seraum_obf.php (modified) (1 diff)
wpobfuscator.php (modified) (1 diff)

Legend:

: Unmodified
: Added
: Removed

wp-obfuscator/trunk/README.txt

-                      r1032543
+                      r1392070
 Tags: Security, obfuscation, wp-config.php
 Requires at least: 3.5
 Tested up to: 4.0.1
 Stable tag: 0.5
+Tested up to: 4.4.2
+Stable tag: 0.6
 License: GPLv2 or later
 License URI: http://www.gnu.org/licenses/gpl-2.0.html
 …
 Be sure to make a copy of your wp-config.php file if it\'s not like the default wp-config-sample.php file.
+Launch the obfuscation process when your site is ready or for testing purpose. Some plugins need to read wp-config.php file in plain text when you install them.
 == Changelog ==
+version 0.6 :
+I have created a better obfuscation lib
 version 0.5 :
 Add internationalization (fr_FR and en_EN languages)

wp-obfuscator/trunk/files/class/seraum_obf.php

-                      r1032393
+                      r1392070
 <?php
 /*
 Author: Adrien Thierry
 Licence: GPLv2 or later
 http://seraum.com
 http://asylum.seraum.com
 http://hackmyfortress.com
+More info ? Need a better php obfuscator ? Contact us : http://seraum.com
 */
+class Free_Obfusc
+{
+    var $dic = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789_/ ,.:!'=+;";
+    function doIt($c, $it){for($i = 0; $i < $it; $i++){ $c = $this->h($c);}return $c;}
     function h($c)
+class Free_Obfusc{
+    function doIt($code)
+    {
+        $c = "?>" . $c;
+        $this -> dic = str_shuffle($this -> dic);$mr = rand(1, strlen($this->dic));$ms = $this->di($mr);$c0 = unpack("H*", base64_encode(gzdeflate($this->r(base64_encode($c), $mr, $this -> dic))));
+        $crf = $this->sr(rand(4, 10));$eval = $this->sr(rand(4, 10));$b64 = $this->sr(rand(4, 10));$unr = $this->sr(rand(4, 10));
+        $gzinflate = $this->sr(rand(4, 10));$pack = $this->sr(rand(4, 10));$master = $this->sr(rand(4, 10));$ur = $this -> ur($unr);
+        $rnd = $this->sr(rand(4, 10));$rnd2 = $this->sr(rand(4, 10));$fcrf = $this->cf($crf, '\$' . $rnd . ',\$' . $rnd2, 'return create_function(\$' . $rnd . ',\$' . $rnd2 . ');', $unr, "create_function");
+        $rnd = $this->sr(rand(4, 10));$feval = $this->cf($eval, '\$' . $rnd, 'return eval(\$' . $rnd . ');', $unr, '$' . $crf);
+        $rnd = $this->sr(rand(4, 10));$fb64 = $this->cf($b64, '\$' . $rnd, 'return base64_decode(\$' . $rnd . ');', $unr, '$' . $crf);
+        $rnd = $this->sr(rand(4, 10));$fgz = $this->cf($gzinflate, '\$' . $rnd, 'return gzinflate(\$' . $rnd . ');', $unr, '$' . $crf);
+        $rnd = $this->sr(rand(4, 10));$fpack = $this->cf($pack, '\$' . $rnd, 'return pack(\"H*\", \$' . $rnd . ');', $unr, '$' . $crf);
+        $ret = "<?php ";$ret .= $this->cj();$ret .= $this->cj();$ret .= $this->cj();
+        $ret .= "\$$master=$ms;";$ret .= $fcrf;$c1 = array();
+        $c1[] = $ur; $c1[] = $this->cj();$c1[] = $fgz;
+        $c1[] = $this->cj();$c1[] = $fb64;$c1[] = $this->cj();
+        $c1[] = $feval;$c1[] = $this->cj();$c1[] = $fpack;shuffle($c1);
+        $iA = count($c1);for($i = 0; $i < $iA; $i++){$ret .= $c1[$i];}$ret .= "\$$eval(\$$b64(" . $unr . "(\$$gzinflate(\$$b64(\$$pack(\"" . $c0[1] . "\"))), \$" . $master . ", \"" . $this -> dic . "\")));";
+        $ret .= $this->cj();$ret .= $this->cj();$ret .= " ?>";
+        return $ret;
+        $round = 2;
+        for($i = 0; $i < $round; $i++)
+        {
+            $code = $this->hideCode($code);
+        }
+        return $code;
+    }
+    function ur($na = "r"){$function = 'function ' . $na . '($s, $n, $nb){$nb = $nb . $nb;$n = (int)$n % (strlen($nb) / 2);for ($i = 0, $l = strlen($s); $i < $l; $i++) {if(strpos($nb, $s[$i]) !== false){$s[$i] = $nb[(strpos($nb, $s[$i]) + (strlen($nb) / 2)) - $n];}}return $s;}';return $function;}
+    function r($s, $n, $nb){$nb = $nb . $nb;$n = (int)$n % (strlen($nb) / 2);for ($i = 0, $l = strlen($s); $i < $l; $i++){if(strpos($nb, $s[$i]) !== false){$s[$i] = $nb[strpos($nb, $s[$i]) + $n];}}return $s;}
+    function cf($na, $arg, $c0, $ur, $cname){$dic = str_shuffle($this->dic);$i1 = rand(1, strlen($dic));$i2 = rand(1, strlen($dic));$arg = $this->r($arg, $i1, $dic);$c0 = $this->r($c0, $i2, $dic);$c0 = '$' . $na . ' = ' . $cname . '(' . $ur . '("' . $arg . '", ' . $i1 . ', "' . $dic . '"), ' . $ur . '("' . $c0 . '", ' . $i2 . ', "' . $dic . '"));';return $c0;}
+    function cj(){$res = "";$a = rand(1, 2);if($a == 1){$var = "";$value = "";$n = rand(1, 10);for($i = 0; $i < $n; $i++){$var = $this->sr(rand(2, 10));$value = $this->sr(rand(1, 100));$tmp = '$' . $var . '="' . $value . '";';$res .= $tmp;}}else if($a == 2){$value = "";$n = rand(1, 4);for($i = 0; $i < $n; $i++){$value = "//" . $this->sr(rand(1, 1000)) . "\r\n";$res .= $value;}}return $res;}
+    function sr($car){$string = "";$chaine = "abcdefghijklmnpqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ";srand((double)microtime()*1000000);for($i=0; $i<$car; $i++){$string .= $chaine[rand()%strlen($chaine)];}return $string;}
+    function di($int){$res = "";$tmpi = 0;while($int > 0){$tmpi = rand(0, $int);$int = $int - $tmpi;$res .= "$tmpi+";}$res = substr($res, 0, -1);return $res;}
+    function hideCode($code)
+    {
+    $code = "?>" . $code;
+    $obf = unpack("H*", bin2hex(gzdeflate($code)))[1];
+    $create = base64_encode("create_function");
+    $pac = base64_encode("pack");
+    $preg = base64_encode("preg_replace_callback");
+    $h = base64_encode("H*");
+    $hex = base64_encode("hex2bin");
+    $gzi = base64_encode("gzinflate");
+    $s = base64_encode("|.|");
+    $point = base64_encode(".");
+    $base64d = base64_encode("base64_decode");
+    $evald = base64_encode("eval");
+    $base64dname = $this->ivrandom(rand(4, 10));
+    $base64dname2 = $this->ivrandom(rand(4, 10));
+    $base64dname3 = $this->ivrandom(rand(4, 10));
+    $base64dname4 = $this->ivrandom(rand(4, 10));
+    $base64dname5 = $this->ivrandom(rand(4, 10));
+    $base64dname6 = $this->ivrandom(rand(4, 10));
+    $base64dname7 = $this->ivrandom(rand(4, 10));
+    $base64dname8 = $this->ivrandom(rand(4, 10));
+    $createname = $this->ivrandom(rand(4, 10));
+    $pacname = $this->ivrandom(rand(4, 10));
+    $pregname = $this->ivrandom(rand(4, 10));
+    $hname = $this->ivrandom(rand(4, 10));
+    $hexname = $this->ivrandom(rand(4, 10));
+    $sname = $this->ivrandom(rand(4, 10));
+    $gziname = $this->ivrandom(rand(4, 10));
+    $pointname = $this->ivrandom(rand(4, 10));
+    $evalname = $this->ivrandom(rand(4, 10));
+    $randname = $this->ivrandom(rand(4, 10));
+    $rot = $this->ivrandom(rand(4, 10));
+    $arg1 = $this->ivrandom(rand(4, 10));
+    $strot = '$' . $this->ivrandom(rand(4, 10));
+    $n = '$' . $this->ivrandom(rand(4, 10));
+    $nbrot = '$' . $this->ivrandom(rand(4, 10));
+    $strrot = str_shuffle('abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789_/ ,.:!');
+    $randrot = rand(1, 100);
+    $randclear = $randrot;
+    $randrot = $this->decompose_int($randrot);
+    $frot = ' function ' .$rot . '(' . $strot . ', ' . $n . ', ' . $nbrot . ') {' . $nbrot . ' = ' . $nbrot . ' . ' . $nbrot . ';' . $this->create_aleat() . $n . ' = (int)' . $n . ' % (strlen(' . $nbrot . ') / 2);' . $this->create_aleat() . 'for ($i = 0, $l = strlen(' . $strot . '); $i < $l; $i++) {if(strpos(' . $nbrot . ', ' . $strot . '[$i]) !== false){' . $this->create_aleat() . $strot . '[$i] = ' . $nbrot . '[(strpos(' . $nbrot . ', ' . $strot . '[$i]) + (strlen(' . $nbrot . ') / 2)) - ' . $n . '];}}return ' . $strot . ';}';
+    $b64 = "base64_decode";
+    $evalf = ' eval($' . $arg1 . ');';
+    $evalo = unpack("H*", bin2hex($evalf));
+    $evalb64 = $this->rot($b64, $randclear, $strrot);
+    $result = '<?php ' . $this->create_aleat()  . '$' . $randname . ' = ' . $randrot . ';'  . $this->create_aleat()  . '$' . $base64dname . ' = ' . $rot . "('" . $evalb64 . '\', $' . $randname . ', \'' . $strrot . '\');' . $this->create_aleat() . '$' . $createname . ' = $' . $base64dname . '("' . $create . '");' . $this->create_aleat()  . '$' . $base64dname2 . ' = $' . $base64dname . ';' . $this->create_aleat()  . '$' . $pacname . ' = $' . $base64dname2 . '("' . $pac . '");' . $this->create_aleat()  . '$' . $base64dname3 . ' = $' . $base64dname2 . ';' . $this->create_aleat()  . '$' . $pregname . ' = $' . $base64dname . '("' . $preg . '");' . $this->create_aleat()  . '$' . $base64dname4 . ' = $' . $base64dname3 . ';' . $this->create_aleat()  . '$' . $hname . ' = $' . $base64dname . '("' . $h . '");' . $this->create_aleat()  . '$' . $base64dname5 . ' = $' . $base64dname4 . ';' . $this->create_aleat()  . '$' . $hexname . ' = $' . $base64dname . '("' . $hex . '");' . $this->create_aleat()  . '$' . $base64dname6 . ' = $' . $base64dname5 . ';' . $this->create_aleat()  . '$' . $sname . ' = $' . $base64dname . '("' . $s . '");' . $this->create_aleat()  . '$' . $base64dname7 . ' = $' . $base64dname6 . ';' . $this->create_aleat()  . '$' . $pointname . ' = $' . $base64dname7 . '("' . $point . '");' . '$' . $base64dname8 . ' = $' . $base64dname7 . ';' . $this->create_aleat()  . '$' . $gziname . ' = $' . $base64dname8 . '("' . $gzi . '");' . '$' . $evalname . ' = $' . $createname . '(\'$' . $arg1 . '\', $' . $hexname . '($' . $pacname . '($' . $hname . ', "' . $evalo[1] . '")));' . $this->create_aleat()  . '$' . $pregname . '($' . $sname . ',$' . $createname . '("", $' . $evalname . '($' . $gziname . '($' . $hexname . '($' . $pacname . '($' . $hname . ', "' . $obf . '"))))),$' . $pointname . ');' . $this->create_aleat()  . '' . $frot . '' . $this->create_aleat()  . '?>';
+    return $result;
+    }
+    function decompose_int($int)
+    {
+        $res = "";
+        $tmpi = 0;
+        while($int > 0)
+        {
+            $tmpi = rand(0, $int);
+            $int = $int - $tmpi;
+            $res .= "$tmpi+";
+        }
+        $res = substr($res, 0, -1);
+        return $res;
+    }
+    function ivrandom($car)
+    {
+        $string = "";
+        $chaine = "abcdefghijklmnpqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ";
+        srand((double)microtime()*1000000);
+        for($i=0; $i<$car; $i++)
+        {
+            $string .= $chaine[rand()%strlen($chaine)];
+        }
+        return $string;
+    }
+    function rot($s, $n, $nbrot)
+    {
+        $nbrot = $nbrot . $nbrot;
+        $n = (int)$n % (strlen($nbrot) / 2);
+        for ($i = 0, $l = strlen($s); $i < $l; $i++)
+        {
+            if(strpos($nbrot, $s[$i]) !== false)
+            {
+                $s[$i] = $nbrot[strpos($nbrot, $s[$i]) + $n];
+            }
+        }
+        return $s;
+    }
+    function unrot($s, $n = 13, $nbrot = 'abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789_/ ,.:!')
+    {
+        $nbrot = $nbrot . $nbrot;
+        $n = (int)$n % (strlen($nbrot) / 2);
+        for ($i = 0, $l = strlen($s); $i < $l; $i++)
+        {
+            if(strpos($nbrot, $s[$i]) !== false)
+            {
+                $s[$i] = $nbrot[(strpos($nbrot, $s[$i]) + (strlen($nbrot) / 2)) - $n];
+            }
+        }
+        return $s;
+    }
+    function create_aleat()
+    {
+            $res = "";
+            $a = rand(1, 2);
+            if($a == 1)
+            {
+                $var = "";
+                $value = "";
+                $n = rand(1, 10);
+                for($i = 0; $i < $n; $i++)
+                {
+                    $var = $this->ivrandom(rand(2, 10));
+                    $value = $this->ivrandom(rand(1, 100));
+                    $tmp = '$' . $var . '="' . $value . '";';
+                    $res .= $tmp;
+                }
+            }
+            else if($a == 2)
+            {
+                $value = "";
+                $n = rand(1, 4);
+                for($i = 0; $i < $n; $i++)
+                {
+                    $value = "//" . $this->ivrandom(rand(1, 1000)) . "\r\n";
+                    $res .= $value;
+                }
+            }
+            return $res;
+    }
+}
 ?>

wp-obfuscator/trunk/wpobfuscator.php

-                      r1032543
+                      r1392070
 Plugin Title: WP-Obfuscator
 Plugin URI: http://seraum.com
 Description: This extension obfuscate your wp-config.php file to make it unreadable by a hacker. Please, save your wp-config.php file before to obfuscate it.
+Description: This extension obfuscate your wp-config.php file to make it unreadable by a hacker. Please, save your wp-config.php file before to obfuscate it. Launch obfuscation when your site is ready to production.
 Author: Adrien Thierry
 Version: 0.5
+Version: 0.6
 Author URI: http://seraum.com/
 Text Domain: wpobfuscator

Note: See TracChangeset for help on using the changeset viewer.

Trac UI Preferences

Plugin Directory

Context Navigation

Changeset 1392070

Legend:

wp-obfuscator/trunk/README.txt

wp-obfuscator/trunk/files/class/seraum_obf.php

wp-obfuscator/trunk/wpobfuscator.php

Download in other formats: