Dark Reading

JavaScript Obfuscation Moves to Phishing Emails

JavaScript, the ubiquitous scripting language used across Web applications worldwide, is becoming a key ingredient in phishing campaigns looking to plant malicious code on victims' computers, new ...
Bleeping Computer

Phishing attack hides JavaScript using invisible Unicode trick

A new JavaScript obfuscation method utilizing invisible Unicode characters to represent binary values is being actively abused in phishing attacks targeting affiliates of an American political action ...
GitHub

wuyubuGitHub/js-de-obfuscator

在 tmp/input.js 存放需要反混淆的代码, 执行 pnpm run tmp 将会输出 tmp/output.js 反混淆后的代码. 在 example ...
IEEE

Statically Detecting JavaScript Obfuscation and Minification Techniques in the Wild

Abstract: JavaScript is both a popular client-side programming language and an attack vector. While malware developers transform their JavaScript code to hide its malicious intent and impede detection ...