JScript.Encode

JScript.Encode is a method created by Microsoft used to obfuscate both server and Client-side JavaScript or VB Script source code in order to protect the source code from copying.[1] JavaScript code is used for creating dynamic web content on many websites, with the source code easily viewable, so this was meant to protect the code.

The encoding is a simple polyalphabetic substitution using three alphabets.[2]

How to use

A command line script encoder can be used to encode scripts.[1][3] To encode a HTML web-page file called default.htm, use the following command: 

screnc.exe default.htm defaultenc.htm

It would output to a file called defaultenc.htm.

Weaknesses

It has been reverse engineered[2] and many websites provide an on-the-fly decoder.[4]

References

  1. ^ a b Clinick, Andrew (Aug 1999). "Script Encoding with the Microsoft Script Engine Version 5.0". Script Engine. Microsoft. Archived from the original on 2002-12-14.
  2. ^ a b "Breaking the Windows Script Decoder". Virtual Conspiracy. Archived from the original on 2013-12-08. Security by obscurity is a bad, bad idea. Instead of encouraging that approach, Microsoft should educate programmers to find other ways to store their passwords and sensitive data, and tell them that an algorithm or any other piece of code that needs to be 'hidden', is just bad design
  3. ^ Clinick, Andrew (Aug 1999). "Clinick0899.exe". Microsoft. Archived from the original (program) on 2002-12-14. The command-line script encoder (screnc.exe) provides a simple mechanism for encoding HTML, ASP, SCT, VBScript, and JScript files. The Microsoft Script group developed it as an easy-to-use command-line tool that can be easily built into your existing deployment batch files
  4. ^ Lee, Grey (Feb 15, 2012). "Windows Script Decoder". GitHub. Decoding JScript.Encoded
Stub icon

This Microsoft Windows article is a stub. You can help Wikipedia by adding missing information.

Content Disclaimer

Informasi ini disarikan dari Wikipedia dan disajikan kembali untuk tujuan edukasi. Konten tersedia di bawah lisensi CC BY-SA 3.0. Kami tidak bertanggung jawab atas ketidakakuratan data yang bersumber dari kontribusi publik tersebut.

  1. The information displayed on this website is sourced in part or in whole from Wikipedia and has been adapted for the purpose of restating it. We strive to provide accurate and relevant information, however:
  2. There is no guarantee of absolute accuracy. Wikipedia is an open, collaborative project that can be edited by anyone, so information is subject to change.
  3. It is not intended to constitute professional advice. The content displayed is for informational and educational purposes only. For important decisions (e.g., medical, legal, or financial), please consult a professional.
  4. Content copyright. Wikipedia is licensed under the Creative Commons Attribution-ShareAlike License (CC BY-SA). This means that content may be reused with appropriate attribution and shared under a similar license.
  5. Responsible use. Any risk arising from the use of information from this website is entirely the responsibility of the user.