// Step 1: Extract variable names ($var) inside code (excluding those inside strings and comments already stripped partially) // We'll do a simple regex that finds $[a-zA-Z_\x7f-\xff][a-zA-Z0-9_\x7f-\xff]* but avoid special cases like ${} // We'll apply variable renaming only for user variables. if (optVarRename.checked) const varRegex = /\$([a-zA-Z_\x7f-\xff][a-zA-Z0-9_\x7f-\xff]*)\b/g; let match; // collect all variables const candidates = new Set(); while ((match = varRegex.exec(obfuscated)) !== null) let varName = match[1]; // skip superglobals and common reserved? keep _GET, _POST, etc but user can rename them optionally risky? we skip $this and $GLOBALS if (['this', 'GLOBALS', '_SERVER', '_GET', '_POST', '_REQUEST', '_SESSION', '_COOKIE', '_FILES', '_ENV'].includes(varName)) continue; if (varName.startsWith('_')) continue; // keep some internal? candidates.add(varName); // assign random names for (let v of candidates) if (!varMap.has(v)) varMap.set(v, randName('_v')); // replace variables in code (with word boundaries) for (let [orig, rand] of varMap.entries()) const regex = new RegExp(`\\$$orig\\b`, 'g'); obfuscated = obfuscated.replace(regex, `$$rand`);
.panel flex: 1; min-width: 280px; background: #0f172ad9; border-radius: 1.5rem; padding: 1.25rem; backdrop-filter: blur(4px); border: 1px solid #1e293b; transition: all 0.2s; php obfuscator online
// Clear all clearBtn.addEventListener('click', () => inputTextarea.value = ''; outputTextarea.value = ''; errorDiv.style.display = 'none'; updateStats(inputTextarea, inputStatsSpan); updateStats(outputTextarea, outputStatsSpan); ); // Step 1: Extract variable names ($var) inside
inputTextarea.addEventListener('input', () => updateStats(inputTextarea, inputStatsSpan)); outputTextarea.addEventListener('input', () => updateStats(outputTextarea, outputStatsSpan)); // not editable but keep we skip $this and $GLOBALS if (['this', 'GLOBALS',