Josh’s Random Non-sense!

Breathing

Posted on Thursday, April 24th, 2008

Song of the day is “Work” by Jars of Clay (surprise surprise!)

yes, i realize he resembles Snape in this video, it is a bit odd
I have no fear of drowning
It’s the breathing that’s taking all this work.
Sometimes life really does feel that way (for me at least). There have been times when it […]

continue reading

It’s Uncanny…

Posted on Wednesday, April 9th, 2008

I figure I’d provide a little laugh for the rest of the world
(thanks for pointing this out Elaine … i think )
This is a pic of me about a year ago after a friend attacked my hair with a straightener … my hair didn’t recover lol

and here’s my little prime-ape look alike […]

continue reading

Decrypt nested eval gzinflate str_rot13 base64_decode

Posted on Saturday, March 22nd, 2008

So I went ahead and wrote a script to undo massively nested eval(gzinflate(str_rot13(base64_decode(‘STRING’)))); and eval(gzinflate(base64_decode(‘STRING’))); “encryptions” with a multitude of both of them inside it. The string from the original footer here had to go through 67 different iterations before it got to the real source code (talk about overkill).
If you have strings that aren’t […]

continue reading

Decrypt nested eval gzinflate str_rot13 base64_decode

Posted by josh on Saturday, March 22nd, 2008

So I went ahead and wrote a script to undo massively nested eval(gzinflate(str_rot13(base64_decode(‘STRING’)))); and eval(gzinflate(base64_decode(‘STRING’))); “encryptions” with a multitude of both of them inside it. The string from the original footer here had to go through 67 different iterations before it got to the real source code (talk about overkill).
If you have strings that aren’t nested, you can probably just do this:

$string = gzinflate(str_rot13(base64_decode('YOUR STRING')));
$string = htmlentities($string,ENT_NOQUOTES);
echo
$string;

If you have a string from that fits that description you can decrypt it here

Or if you just want to test it here’s the original string from the footer of this theme:

Posted in: Coding, featured.

9 Responses to “Decrypt nested eval gzinflate str_rot13 base64_decode”

  1. Ji Says:

    Did the job, thank you!

  2. wildwolf Says:

    Is it normal to take a ~20,000 byte string (in a file) down to source code of only ~640 bytes?

    Also, should I be able to drop the “source” in place of the “encrypted” file and all work as normal (as I can’t…)?

    Very good work, btw. I just am trying to learn and have those and possibly a few more questions.

  3. josh Says:

    it really just depends on how they did it and how many times. the one that was in this footer was originally 11,139 bytes and the actual source was only 6,842 bytes. although that’s not quite as drastic of a difference as 20kb — > .6kb it is possible.

    and yes, you should be able to just replace the eval(‘blah blah blah’); with the actual source code.
    if it’s not working feel free to send me what you’re trying to decode and i can try and help out.

    josh (at) thespiffylife (dot) com

  4. josh Says:

    By the way, I just fixed the decrypting page to allow for either eval(gzinflate(str_rot13(base64_decode('STRING')))); or eval(gzinflate(base64_decode('STRING'))); (and others nested up inside them). So that should help most everyone.

  5. khepri Says:

    thanks, your scripts helpfull me

  6. Mario Says:

    thanks for sharing…without a doubt easiest and most efficient solution I found on the web…

  7. DarkLord Says:

    It’s awsome man!
    Realy thanks… that did my job.

  8. eworld Says:

    this is so great! thanks a lot for saving my time to search on the decoding. fantastic!!!!

  9. christy Says:

    thanks so much, i have been dying to unencrypt one part of a template that i found but had some junk links plugged into it. i had found others that promised and others that had some ethical problems with unencrypting code.

Leave a Reply