Javascript Parser

[DeltaRocked]

Hello,

Greetings for the New year !!!

Well last year I ended up writing a few scripts and I thanks all of you for your valuable inputs / posts.

1: PDF Analyzer - Code not posted - purely string regex related.

2: Phishing Site Analyzer - Connectivity related Code Posted (Analyzer Code not Posted) - Metatag based re-direction.

3: Detection for execute binary/DLL from memory - Code not posted but fairly easy with trapping the memory write/alloc and new process function glaring on the console.

4: Anti-KeyLogger Virtual Keyboard - Code Posted

5: SMTP Audit Tool - Code posted

Now, I have started my new project on Javascript Parser.

The intention is to download web-page and parse JS but ensuring that Javascript doent get executed.

Goals:

1: Obfuscated Javascript Detection

2: DriveBy Downloads

to be used: Spider Monkey APIs.

Has anyone used Spider Monkey API? a nudge in this area will be highly appreciated.

Regards

DeltaRocked.

Edited January 2, 2012 by deltarocked

[DeltaRocked]

Hello ,

I have stumbled across this.

http://ftp.mozilla.org/pub/mozilla.org/firefox/nightly/latest-trunk/jsshell-win32.zip

Writeup:

https://developer.mozilla.org/En/SpiderMonkey/Introduction_to_the_Javascript_shell

https://developer.mozilla.org/en/Javascript/Shells

I think this is more than enough to get a javascript parser and use Autoit to wrap up.

Enjoy.

Btw am also working on the wrapper, lets see what can be done.

Regards

Deltarocked