(2009) - Tool to deobfuscate Java codes

Question

Is there a tool to deobfuscate java obfuscated codes?

The codes is extracted from a compiled class but they are obfuscated and non-readable.

Not a duplicate, unless you can find one that talks about *deobfuscation* (not obfuscation) — Robert Harvey, Nov 02 '09 at 18:11

score 14 · Answer 1 · answered Nov 02 '09 at 18:10

14

First step would be to learn with which tool it was obfuscated. Maybe there's already a "deobfuscator" around for the particular obfuscator.

On the other hand, you can also just run an IDE and use its refactoring powers. Rename the class, method and variable names to something sensitive. Use your human logical thinking powers to figure what the code actually represents and name them sensitively. And the picture would slowly but surely grow.

Good luck.

answered Nov 02 '09 at 18:10

BalusC

1,082,665
372
3,610
3,555

I don't know what obfuscator is used. And on the decompiling process some methods and variables appears as "???" and they are coming from nowhere! I'm using JD-GUI http://java.decompiler.free.fr/ – Salar Nov 02 '09 at 18:33
1

JDO can help doing that. See http://stackoverflow.com/questions/1662766/tool-to-deobfuscate-java-codes/1662928#1662928 – Pascal Thivent Nov 02 '09 at 18:45
1

Ah, that way. Well, then the decompiler didn't support the original compiler version, e.g. decompiling against Java 1.5 while the code was compiled with 1.6. This ain't going to work. Read the decompiler's documentation and/or try different ones. – BalusC Nov 02 '09 at 18:47

score 9 · Accepted Answer · edited Jun 12 '12 at 08:41

9

Did you try to make the code less obscure with Java Deobfuscator (aka JDO), a kind of smart decompiler?

Currently JDO does the following:

renames obfuscated methods, variables, constants and class names to be unique and more indicative of their type

propogates changes throughout the entire source tree (beta)

has an easy to use GUI

allow you to specify the name for a field, method and class (new feature!)

Currently JDO does not do the following (but it might one day)

modify method bytecode in any way

edited Jun 12 '12 at 08:41

Karussell

17,085
16
97
197

answered Nov 02 '09 at 18:44

Pascal Thivent

562,542
136
1,062
1,124

2

This application is case insensitive for file names and that causes many problems. – Salar Nov 03 '09 at 11:37

score 6 · Answer 3 · answered Jan 28 '11 at 19:04

6

Not to gravedig but I wrote a tool that works on most commercial obfuscators

https://github.com/Contra/JMD

answered Jan 28 '11 at 19:04

Contra

1,691
15
14

Not really lol. I just added a production build so if you go to Downloads you can download it with the GUI – Contra Feb 11 '11 at 22:03
"JMD has been discontinued due to lack of time and was last updated November 24, 2010. " ... Two months before your post. – Thorbjørn Ravn Andersen Aug 09 '14 at 12:58

score 5 · Answer 4 · answered Nov 03 '09 at 17:07

5

I used Java Deobfuscator (aka JDO) but it has a few bugs. It can't work with case sensitive file names. So I've changed the source and uploaded a patch for that in sourceforge. The patch, Download

answered Nov 03 '09 at 17:07

Salar

495
3
6
14

score 1 · Answer 5 · answered Jun 24 '12 at 08:08

1

Maybe it will work on Unix/Linux/MacOS?

If so, you could move one step of your process to a VM, in where you unpack the code, before you rename the too long names. How long is the file name limit on Windows?

answered Jun 24 '12 at 08:08

user unknown

35,537
11
75
121

score 1 · Answer 6 · answered Nov 02 '09 at 19:09

1

Most likely only human mindpower to make sense of it. Get the best decompiler available and ponder on its output.

answered Nov 02 '09 at 19:09

Thorbjørn Ravn Andersen

73,784
33
194
347

(2009) - Tool to deobfuscate Java codes

6 Answers6

Linked