|
Reversing/decompiling React or other JS apps
So I know without jsx files and still having map files, there is an npm package
Quote:
Are there any good tools for a generic Javascript reversing workflow. I use the term decompile loosely here but with typescript and so many powerful and ubiquitous frameworks, this is starting to get interesting. Of course there are tools to unminify and reformat Javascript and the browser dev tools are helpful but it seems we haven't seen anything with a more automated and better level of sophistication. Which is really useful when looking for security vulnerabilities which are likely common place in modern web apps. |
Quote:
JavaScript Reverse Engineering Toolkit (JSRETK) https://github.com/SeanPesce/JSRETK Web Application Reverse Engineering Practical Example https://medium.com/@nenadborovanin/web-application-reverse-engineering-practical-example-e31836aab472 7 Tips for reverse engineering minified TypeScript/JavaScript https://dev.to/jurooravec/7-tips-for-reverse-engineering-minified-typescript-javascript-4p64 |
There is a Javascript VMP too:
Quote:
I'm guessing ECMAScript standard might directly start addressing this at some point possibly even by adding an opcode variant of the language. This will regardless likely become a large reverse engineering area soon as HTML5 has become feature rich, countless advanced frameworks like HTMX and React, Flutter, others have come about. Cloud databases like firebase or mongoDB are everywhere, etc. Meanwhile traditional desktop apps are on the decline and many are moving to the web. All office productivity software is on the web now pretty much. There is much reason to start thinking about this topic. This area has changed so much and do rapidly in the past 10 years, it's near impossible to keep up with it in detail. |
| All times are GMT +8. The time now is 17:32. |
Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2026, vBulletin Solutions, Inc.
Always Your Best Friend: Aaron, JMI, ahmadmansoor, ZeNiX