[electric]

I *love* ioncube, and we use it to encode all our important scripts.

However.. there is the odd occasion when we need to give a script to the public, but it can't be encoded. (Like a test script to see if ioncube-encoded scripts can run.)

Does anyone know of a decent "obfuscation" program that works with php files? Basically just something simple like removing all comments and spaces and maybe doing base64 encoding, etc..? Nothing fancy is needed.. just enough to keep "most" people from looking.

Thanks!

[liaison]

I think that there was something called POBS and there may be others.
_________________
Community Admin

[abss]

You can try http://www.obfusc.com, it includes a full php parser.
Doesn't require anthing on server,just changes names,remove whtespaces,obscure strings.

[jhufgty]

There's quite a good one at www.dynsur.com/fopo (Free Online PHP Obfuscator).

[Cousnouf]

Yes just go there:


[url]http://www.volatileproject.org/tools.do?obfuscator[/url]

[kblessing]

Not a freebie, but before I started using ioncube's online encoder, and then later getting the stand alone encoder, I used Zorex PHP CryptZ ( http://www.zorex.info )

Basically it's 12$ for a 5 seat license, its a php script that you gota install to a webserver, so it behaves somewhat like ioncube's online encoder but with the ability to restrict to domain/IP included.

Requires that you upload the files via binary encoding, and also requires that a crypz.php (can be renamed at time of 'encoding') is in the directory of every 'encoded' file.

Doesn't support licensing or anything like that, and its probably easier to crack than ioncube encrypted files, though I've yet to see anyone make a mainstream decoder for it.

However its going to have similar kinds of requirement as an ioncube encoded script. But you won't have to worry bout installing loaders and such , just so as long as they upload the files correctly.

example of a zorex obfusicated script (smarty's class file): http://www.kblinker.com/dist/smarty_cryptz.zip

It's a dirt cheap option, but I still find ioncube to be far better for true encoding instead of 6 layers of base64 encoding.
_________________
http://ionvz.com

[nancy19]

I think that HTML is impossible to obfuscate really - the only thing you can do is remove line breaks and spaces, and they are trivial to reinstate. Also, trying to hide a secret URL in HTML is pointless - a tool like Firebug's "Net" tab will show all requests made from a certain page in a neat list. This probably needs a different approach

[Elliott12]

cant get
_________________
the cheesy animation