Avoid anti debugging trap (#69)

* Prevent resolving a function's toString as it might be an anti-debugging mechanism which will spring if the code is beautified * Improve comparison between eval results * 1.6.5
PerimeterX · Jan 29, 2023 · 521907f · 521907f
1 parent 09ebbb0
commit 521907f
Show file tree

Hide file tree

Showing 4 changed files with 8 additions and 4 deletions.
diff --git a/package-lock.json b/package-lock.json
diff --git a/package.json b/package.json
@@ -1,6 +1,6 @@
 {
   "name": "restringer",
-  "version": "1.6.4",
+  "version": "1.6.5",
   "description": "Deobfuscate Javascript with emphasis on reconstructing strings",
   "main": "index.js",
   "bin": {

diff --git a/src/modules/unsafe/evalInVm.js b/src/modules/unsafe/evalInVm.js
@@ -66,7 +66,7 @@ function evalInVm(stringToEval) {
 				else {
 					// To exclude results based on randomness or timing, eval again and compare results
 					const res2 = (new VM(vmOptions)).run(stringToEval);
-					assert.deepEqual(res, res2);
+					assert.deepEqual(res.toString(), res2.toString());
 					cache[cacheName] = createNewNode(res);
 				}
 			}

diff --git a/src/modules/unsafe/resolveLocalCalls.js b/src/modules/unsafe/resolveLocalCalls.js
@@ -67,6 +67,10 @@ function resolveLocalCalls(arb, candidateFilter = () => true) {
 		const src = context ? `${context}\n${nodeSrc}` : nodeSrc;
 		const newNode = evalInVm(src);
 		if (newNode !== badValue && newNode.type !== 'FunctionDeclaration' && newNode.name !== 'undefined') {
+			// Prevent resolving a function's toString as it might be an anti-debugging mechanism
+			// which will spring if the code is beautified
+			if (c.callee.type === 'MemberExpression' && (c.callee.property?.name || c.callee.property?.value) === 'toString' &&
+				(new RegExp('^function ')).test(newNode?.value)) continue;
 			arb.markNode(c, newNode);
 			modifiedRanges.push(c.range);
 		}