📄
REMnux Documentation
  • REMnux: A Linux Toolkit for Malware Analysis
  • Install the Distro
    • Get the Virtual Appliance
    • Install from Scratch
    • Add to an Existing System
    • Run REMnux as a Container
    • Keep the Distro Up to Date
  • Discover the Tools
    • Examine Static Properties
      • General
      • PE Files
      • ELF Files
      • .NET
      • Deobfuscation
    • Statically Analyze Code
      • General
      • Unpacking
      • PE Files
      • Python
      • Scripts
      • Java
      • .NET
      • Flash
      • Android
    • Dynamically Reverse-Engineer Code
      • General
      • Shellcode
      • Scripts
      • ELF Files
    • Perform Memory Forensics
    • Explore Network Interactions
      • Monitoring
      • Connecting
      • Services
    • Investigate System Interactions
    • Analyze Documents
      • General
      • PDF
      • Microsoft Office
      • Email Messages
    • Gather and Analyze Data
    • View or Edit Files
    • General Utilities
  • Run Tools in Containers
    • Docker Images of Malware Analysis Tools
  • Behind the Scenes
    • People
    • Technologies
      • SaltStack Management
      • REMnux Installer
      • State Files Without the REMnux Installer
      • Debian Packages
      • Website and Docs
    • License
  • Tips and More
    • REMnux Configuration Tips
    • REMnux Tool Tips
    • Malware Analysis Training
    • REMnux Website
  • Get Involved
    • Ask and Answer Questions
    • Write About the Tools
    • Add or Update Tools
      • Contribute a Salt State File
      • Contribute a Debian Package
      • Contribute a Dockerfile
    • Implement Enhancements
Powered by GitBook
On this page
  • SpiderMonkey (Patched)
  • objects.js
  • STPyV8
  • JStillery
  • box-js
  • SpiderMonkey
  • Rhino Debugger
  • PowerShell Core
  1. Discover the Tools
  2. Dynamically Reverse-Engineer Code

Scripts

Dynamically Reverse-Engineer Code

PreviousShellcodeNextELF Files

Last updated 3 years ago

SpiderMonkey (Patched)

Execute and deobfuscate JavaScript using a patched version of Mozilla's standalone JavaScript engine.

Website: Author: SpiderMonkey by Mozilla Foundation, patched by Didier Stevens: License: Mozilla Public License 2.0: Notes: js-ascii, js-file State File:

objects.js

Emulate common browser and PDF viewer objects, methods, and properties when deobfuscating JavaScript.

Website: Author: Lenny Zeltser License: Public Domain Notes: The file is in /usr/local/share/remnux State File:

STPyV8

Python3 and JavaScript interop engine, fork of the original PyV8 project

Website: Author: Area1 Security License: Apache License 2.0: State File:

JStillery

Deobfuscate JavaScript scripts using AST and Partial Evaluation techniques.

Website: Author: Stefano Di Paola, Minded Security: License: GNU General Public License (GPL) v3: Notes: jstillery State File:

box-js

Analyze suspicious JavaScript scripts.

SpiderMonkey

Execute and deobfuscate JavaScript using Mozilla's standalone JavaScript engine.

Rhino Debugger

GUI JavaScript debugger

PowerShell Core

Run PowerShell scripts and commands.

Website: Author: CapacitorSet License: MIT License: Notes: box-js, box-export State File:

Website: Author: Mozilla Foundation License: Mozilla Public License 2.0: Notes: js State File:

Website: Author: Mozilla Project License: Mozilla Public License v2.0: Notes: rhino-debugger State File:

Website: Author: Microsoft Corporation License: MIT License: Notes: pwsh State File:

https://blog.didierstevens.com/2018/04/19/update-patched-spidermonkey/
https://twitter.com/DidierStevens
https://github.com/mozilla/treeherder/blob/master/LICENSE.txt
remnux.tools.js-patched
https://github.com/REMnux/salt-states/blob/master/remnux/config/objects/objects.js
remnux.config.objects.init
https://github.com/area1/stpyv8
https://github.com/area1/stpyv8/blob/master/LICENSE.txt
remnux.python3-packages.stpyv8
https://github.com/mindedsecurity/jstillery
http://www.mindedsecurity.com
https://github.com/mindedsecurity/JStillery/blob/master/LICENSE
remnux.node-packages.jstillery
https://github.com/CapacitorSet/box-js
https://github.com/CapacitorSet/box-js/blob/master/LICENSE
remnux.node-packages.box-js
https://developer.mozilla.org/en-US/docs/Mozilla/Projects/SpiderMonkey
https://github.com/mozilla/treeherder/blob/master/LICENSE.txt
remnux.packages.spidermonkey
https://developer.mozilla.org/en-US/docs/Mozilla/Projects/Rhino/Debugger
https://developer.mozilla.org/en-US/docs/Mozilla/Projects/Rhino/License
remnux.packages.rhino
https://github.com/powershell/powershell
https://github.com/PowerShell/PowerShell/blob/master/LICENSE.txt
remnux.packages.powershell