HostOnNet.com » decode gzinflate http://blog.hostonnet.com Windows, Linux, Ubuntu, Web Hosting Mon, 07 Jun 2010 08:14:59 +0000 en hourly 1 http://wordpress.org/?v=3.0.1 Decrypt eval gzinflate base64_decode encryped php script http://blog.hostonnet.com/decrypt-eval-gzinflate-base64_decode-encryped-php-script http://blog.hostonnet.com/decrypt-eval-gzinflate-base64_decode-encryped-php-script#comments Sun, 31 May 2009 02:34:26 +0000 admin http://blog.hostonnet.com/?p=49 Today i see a php script, that is encrypted with

eval(gzinflate(base64_decode('JUNK_CODE_HERE')));

I tried to decrypt the script, but it have many levels of recurring gzinflate, base64_decode encryption. If some one runs a script encrypted like this, it take more server resource to do all decryption, must consider ioncube, phpshield or zend encoder for encoding php scripts.

I have written a php script that will decrypt scripts encoded with eval, gzinflate, base64_decode. The script can be modified to decrypt other combination of encryption like str_rot13

http://blog.hostonnet.com/files_hon/decode.phps

]]> http://blog.hostonnet.com/decrypt-eval-gzinflate-base64_decode-encryped-php-script/feed 0