Loading...
ตัวแปลงรหัสข้อมูลเข้ารหัสลับ
เข้ารหัสและทำให้เพย์โหลดสับสนด้วยหลายเลเยอร์ รวมถึง AES-GCM, Base64, XOR, ROT13 และ polymorphic engine สร้างผลลัพธ์ที่ถูกทำให้สับสนซึ่งเหมาะสำหรับการทดสอบความปลอดภัยและการปฏิบัติการของทีมสีแดง
เพย์โหลดดิบ
ภาษา:
0 ตัวอักษร
การตั้งค่าการเข้ารหัส
ความแข็งแกร่งของคีย์:
Strong
เชนการเข้ารหัส
เลือกการดำเนินการที่จะใช้ตามลำดับ:
อินพุตสำหรับการถอดรหัส
การตั้งค่า Polymorphic Engine
แทรกการดำเนินการที่ไม่มีความหมายเพื่อทำให้การวิเคราะห์สับสน
แทนที่ชื่อตัวแปรด้วยตัวระบุแบบสุ่ม
แยกสตริงออกเป็นส่วนๆ ที่เชื่อมต่อกัน
เพิ่มโค้ดที่ไม่เคยถูกประมวลผล
ผลลัพธ์
Success
รูปแบบผลลัพธ์:
0 ไบต์
เวลาที่ใช้ประมวลผล: {time}ms
ตัวอย่างเชน
ไม่ได้เลือกการดำเนินการ
ระดับความปลอดภัยโดยประมาณ:
Low
การดำเนินการด่วน
วิธีใช้เครื่องมือนี้
คำแนะนำทีละขั้นตอนง่ายๆ สำหรับผู้เริ่มต้น ไม่จำเป็นต้องมีความรู้ทางเทคนิค!
การเข้ารหัส / การทำให้สับสน (การล็อกข้อความของคุณ)
นำข้อความธรรมดามาแปลงเป็นรหัสที่อ่านไม่ออก ซึ่งมีเพียงผู้ที่มีคีย์ที่ถูกต้องเท่านั้นที่จะอ่านกลับได้
1
ป้อนข้อความของคุณ
Go to the Encode/Obfuscate tab and type (or paste) your message, script, or any text into the Raw Payload box. Choose the language type from the dropdown if it helps you stay organized.
2
เลือกการทำงานของคุณ
Click on encoding buttons like Base64, Hex, or AES-GCM to build an operation chain. Each one you add makes the output harder to read. Layer multiple operations for stronger protection. You'll see them appear as a chain in the right panel.
3
ตั้งค่าคีย์ (หากใช้ AES)
If you added AES-GCM encryption, make sure to type a strong key (at least 8 characters) in the Encryption Key field. Remember this key — you'll need it to decrypt later!
4
ประมวลผลข้อความของคุณ
Click the big Process Chain button. Your text will go through each operation in order, and the final encoded result will appear in the Output box on the right.
5
คัดลอกผลลัพธ์
Click the copy icon next to the Output box. You can now share the encoded text safely. The person receiving it will need to know which operations you used and the key (if AES was applied).
การถอดรหัส / การปลดล็อกข้อความ
นำข้อความที่ถูกเข้ารหัสมาแปลงกลับเป็นรูปแบบที่อ่านได้
1
สลับไปที่แท็บถอดรหัส
Click the Decrypt/Decode tab at the top of the page.
2
วางข้อความที่เข้ารหัส
Paste the encoded/encrypted text into the input box. This can be a standalone Base64 string, a hex string, or even a PowerShell command that contains an embedded Base64 payload (like $c="BASE64"). The tool will automatically detect and extract the Base64 portion.
3
ป้อนคีย์ (ถ้าจำเป็น)
If the text was encrypted with AES, type the same key that was used during encryption into the Decryption Key field. For Base64 or Hex, you can leave this blank.
4
คลิก Decrypt & Decode
Press the Decrypt & Decode button. The original readable text will appear in the Output box.
การดำเนินการและเคล็ดลับด่วน
Use Base64 or Hex for a fast, simple encoding — no key needed.
Use AES-GCM when you need strong, password-protected encryption.
Layer Base64 + XOR + AES for maximum security.
Check the Security Level meter in the right panel — it turns from yellow (Low) to green (High) as you add more layers.
The Polymorphic Engine tab scrambles code structure to make it harder for automated tools to detect patterns.
The AI Obfuscation Lab can automatically suggest and apply advanced obfuscation techniques.
Terminology Reference Book
Every technical word explained in plain English. Use this as your dictionary while exploring the tool.
A
- AES-GCM
- Stands for Advanced Encryption Standard — Galois/Counter Mode. It is a military-grade encryption method that scrambles your data using a secret key (password). Only someone with the exact same key can unscramble it. Think of it like a super-strong safe: you lock your message inside with a key, and only someone holding a copy of that key can open it. "GCM" is the specific mode that also checks if the data was tampered with.
- Anti-Debug
- A set of tricks that make it harder for someone to use debugging tools (programs that let you step through code line-by-line) to analyze what your code does. It's like putting a "Do Not Open" seal on a box — if someone tries to open it with the wrong tool, the code can detect this and refuse to run or behave differently.
B
- Base64
- A way to convert any type of data (text, images, code) into a string of safe, printable characters: letters (A-Z, a-z), numbers (0-9), plus signs (+), and slashes (/). It's called "Base64" because it uses 64 different characters. Think of it like writing a secret note using a 64-letter alphabet instead of the normal 26. Very common on the internet — email attachments, images in web pages, and many hacking tools use Base64 to package data. No key needed to encode or decode it.
C
- Chain / Encoding Chain
- A sequence of operations that are applied one after another, like links in a chain. For example: first Base64, then XOR, then AES. Each operation's output becomes the next operation's input. Think of it like a factory assembly line — raw material goes in one end, gets processed at each station, and a finished product comes out the other end. The Chain Preview panel (on the right side) shows you the visual order of your chain, and the Security Level meter estimates how strong your chain is.
- Control Flow Flattening
- An advanced obfuscation technique that restructures code so the logical flow becomes a flat, confusing maze. Instead of clear "if-else" branches or loops, everything is turned into one giant switch statement that jumps around unpredictably. Imagine taking a well-organized recipe and rewriting it so all the steps are numbered randomly and you need a separate index to know which step comes next. Makes automated analysis tools struggle.
D
- Dead Code
- Code that is added to a program but never actually runs. It sits there looking real, but the program's logic always skips over it. It's like putting fake pages in a book — anyone flipping through will see more content, but the extra pages don't change the story. Dead code confuses anyone trying to understand what the program really does by adding noise and distraction.
- Decode / Decoding
- The reverse of encoding. It converts encoded data back to its original form. For example, taking a Base64 string and converting it back to regular text. Decoding does not require a key (unlike decryption). It's like translating a message written in a different alphabet back to English — as long as you know the alphabet used, you can do it.
- Decrypt / Decryption
- The reverse of encryption. It converts scrambled (encrypted) data back to its original form using a secret key. Without the correct key, decryption is virtually impossible. Think of it like opening a safe: you need the right combination/key to get the contents out.
E
- Encode / Encoding
- The process of converting data from one format to another using a specific scheme or algorithm. Encoding is not meant to be secret — anyone who knows the scheme can decode it. Think of it like writing something in Morse code: the message is transformed, but no password is needed to read it back. Common encodings include Base64, Hex, and URL encoding.
Encoding vs Encryption: Encoding transforms format (no key needed); Encryption scrambles for secrecy (key required). - Encryption / Encrypt
- The process of scrambling data to keep it secret, using a mathematical algorithm and a key (password). Encrypted data looks like random garbage and can only be read by someone with the correct key. Think of it like putting your message in a lockbox — without the key, nobody can open it. Encryption is much stronger than encoding.
Encryption vs Encoding: Encryption requires a key and provides secrecy; Encoding just changes format and provides no real security by itself. - Encryption Key
- A secret string of characters (like a password) used to encrypt and decrypt data. The same key must be used for both locking (encrypting) and unlocking (decrypting). A strong key should be long (at least 16 characters), random, and kept secret. Think of it as the physical key to your front door: lose it and you can't get in; share it and others can enter.
H
- Hex / Hexadecimal
- A way to represent data using 16 symbols: numbers 0-9 plus letters A-F (where A=10, B=11, up to F=15). It's called "base-16" because each digit can represent 16 different values. Hex is often used to show raw binary data in a readable form. For example, the letter "A" becomes "41" in hex. Think of it like counting with 16 fingers instead of 10. No key needed to encode or decode hex.
I
- Initialization Vector (IV)
- A random starting value used alongside the encryption key to add extra randomness to the encryption process. Even if you encrypt the same message twice with the same key, a different IV makes the output completely different each time. Think of it like shuffling a deck of cards before dealing — the deck (key) is the same, but the shuffle (IV) changes the order. IVs don't need to be secret but should be unique for each encryption. In this tool, you can provide your own IV or let the tool generate a random one.
J
- Junk Code
- Meaningless code that is added to a program to confuse anyone reading it. Unlike dead code, junk code does run — it just does useless things like adding numbers and then throwing away the result, creating variables that are never used, or calling functions that do nothing. It's like padding your essay with random sentences to make it harder for someone to find the real argument. Junk code increases the size and complexity of the code without changing the actual behavior.
O
- Obfuscate / Obfuscation
- The art of making code or data hard to understand while keeping its function exactly the same. Obfuscation is like taking a clear, well-organized recipe and rewriting it in messy handwriting with confusing abbreviations, out-of-order steps, and extra irrelevant instructions — the cake still bakes the same, but good luck figuring out the recipe! Obfuscation can include encoding, encryption, junk code, variable renaming, and many other techniques.
- Operation / Operations
- A single transformation step applied to your data. Each button in the Encoding Chain section represents one operation: Base64, Hex, XOR, ROT13, AES-GCM, or Reverse. You can combine operations to build a multi-layered defense. Think of each operation as a single ingredient — mix them together to create a complex recipe.
P
- Packing
- A technique that compresses or wraps executable code into a smaller, self-extracting package. When the packed code runs, it first unpacks itself in memory, then executes the original code. Think of it like vacuum-sealing clothes for travel — they take up less space and look different, but when you open the seal, everything expands back to normal. Packing is commonly used to reduce file size and hide the actual code from static analysis tools.
- Payload
- The actual data, script, or code that you want to protect, transform, or deliver. In this tool, the "Raw Payload" is whatever you type or paste into the input box — it could be a shell command, a PowerShell script, a Python program, or just a plain message. Think of it as the "cargo" that you're putting through the obfuscation pipeline.
- Polymorphic / Polymorphic Engine
- "Polymorphic" means "many forms" (from Greek: poly = many, morph = shape). A polymorphic engine is a tool that automatically changes how code looks without changing what it does. Every time you run it, you get a different-looking output, even though the function is identical. Think of it like a chameleon that changes colors — it's still the same animal, but it looks different each time. This technique is used to evade antivirus and detection tools that look for known patterns (signatures). The engine can rename variables, add junk code, alter strings, and more.
- Process Chain
- The action of running all selected operations in order on your payload. When you click the big Process Chain button, your text flows through each operation one at a time, and the final result appears in the Output box. Think of it as pressing "Start" on an assembly line.
R
- Reverse
- A simple operation that flips your text backwards. For example, "hello" becomes "olleh". It's one of the simplest forms of obfuscation — easy to apply and easy to reverse (just reverse it again!). Think of it like writing a note that can only be read in a mirror.
- ROT13
- Stands for "Rotate by 13 places". It's a simple letter substitution cipher where each letter is replaced by the letter 13 positions ahead in the alphabet. A becomes N, B becomes O, and so on. Applying ROT13 twice returns the original text (since 13 + 13 = 26 = full alphabet). It's like a secret decoder ring from a cereal box — fun and easy, but not strong security. ROT13 only affects letters A-Z; numbers and symbols stay unchanged. No key needed.
S
- Sandbox Evasion
- A technique that helps code detect whether it's running in a sandbox (an isolated, monitored environment used by security researchers to safely analyze suspicious code). If the code detects it's in a sandbox, it can choose to do nothing or behave innocently, hiding its true purpose. Think of it like a spy who acts like a normal tourist when they know they're being watched, and only does their real work when the coast is clear.
- Security Level
- An estimate of how well-protected your obfuscated output is. Displayed as a colored badge in the right panel. The level increases as you add more layers to your encoding chain. Low (yellow) = one simple encoding; Medium (orange) = a few layers; High (green) = multiple strong layers including encryption. Think of it as a protection rating — like the safety rating on a car.
- String Alteration / String Encryption
- Techniques that hide readable text (strings) within code. String alteration breaks strings into small pieces and concatenates them at runtime — for example, turning
"password"into"pass" + "word". String encryption encrypts the strings and only decrypts them when needed. Both make it harder to find sensitive text (like URLs, passwords, or commands) by simply reading the code.
V
- Variable Renaming
- Replacing meaningful variable names (like
userPasswordortargetFile) with random, meaningless names (likea1b2c3orx9z). The code still works the same, but it becomes much harder for a human to understand what each variable does. Think of it like replacing all the labeled drawers in a filing cabinet with random numbers — you can still find things by number, but nobody else knows which drawer holds what.
X
- XOR (Exclusive OR)
- A fundamental computer operation performed at the bit level (ones and zeros). XOR compares two bits: if they are the same, the result is 0; if they are different, the result is 1. When used for encryption, each character of your text is XORed with a character from a key, producing scrambled output. XOR has a magical property: applying the same XOR key twice returns the original data. Think of it like a light switch with two controls — flip either one, and the light changes state. Requires a key (which can be any text). Often combined with other operations for stronger security.
Obfuscation Settings
1
AI Obfuscation Assistant
Hello! Paste your payload on the Encode tab, or ask me directly to generate and obfuscate code. I can apply advanced techniques and simulate AV evasion.
Estimated Detection Score
Live Preview
Original Code
Obfuscated Variant
Message