Tag Archives: revelo

New Javascript Deobfuscator Tool

This particular spam page redirect was brought to my attention by a colleague because it was getting past the web filters using Javascript obfuscation. In one version, the landing page uses a meta refresh tag. I guess it was getting … Continue reading

Posted in Malscript, Tools | Tagged , | Comments Off on New Javascript Deobfuscator Tool

Revelo Updated

A colleague of mine received the following email in their Gmail in-box and wondered how it got past their filters and what it does. What almost tricked him was the fact that it called out his name. Only after looking … Continue reading

Posted in Malicious Email, Malscript, Tools | Tagged , , | Comments Off on Revelo Updated

Javascript Deobfuscation Tools Redux

Back in 2011, I took a look at several tools used to deobfuscate Javascript. This time around I will use several popular automated and semi-automated/manual tools to see how they would fare against today’s obfuscated scripts with the least amount … Continue reading

Posted in Malscript, Tools | Tagged , , , , , , | Comments Off on Javascript Deobfuscation Tools Redux

Scout — New Tool Released

Here’s another tool that you might find useful when analyzing potentially infected websites. Scout is Pinpoint on steroids. Scout uses the Pinpoint engine and includes a feature from Revelo that makes this more functional and…risky. Let me explain. Pinpoint downloads … Continue reading

Posted in Tools | Tagged , , , , , | Comments Off on Scout — New Tool Released

Revelo Updated

I’ve been noticing obfuscated Javascript using a function that returns the deobfuscated result more and more lately so I added a new method to catch this. Here’s an obfuscated script. It’s not that difficult but it does look intimidating! First … Continue reading

Posted in Malscript, Tools | Tagged , | Comments Off on Revelo Updated