{"id":17383759,"url":"https://github.com/cvar1984/yapo","last_synced_at":"2025-06-16T11:08:05.222Z","repository":{"id":44602727,"uuid":"276157170","full_name":"Cvar1984/yapo","owner":"Cvar1984","description":"Yet another PHP Obfuscator","archived":false,"fork":false,"pushed_at":"2024-12-04T12:42:52.000Z","size":7118,"stargazers_count":35,"open_issues_count":0,"forks_count":8,"subscribers_count":4,"default_branch":"master","last_synced_at":"2025-05-27T12:57:35.047Z","etag":null,"topics":["backdoors","compiler","encoder","hacking","hacktoberfest","obfuscate","obfuscation","php","shellcode","webshell"],"latest_commit_sha":null,"homepage":"","language":"PHP","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/Cvar1984.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":".github/FUNDING.yml","license":"LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":"SECURITY.md","support":null,"governance":null,"roadmap":null,"authors":null},"funding":{"github":"Cvar1984","patreon":null,"open_collective":null,"ko_fi":null,"tidelift":null,"community_bridge":null,"liberapay":null,"issuehunt":null,"otechie":null,"custom":null}},"created_at":"2020-06-30T16:46:40.000Z","updated_at":"2025-05-13T17:16:51.000Z","dependencies_parsed_at":"2023-12-29T08:26:27.412Z","dependency_job_id":"fe737060-8845-42c1-8602-ffb2bb64554e","html_url":"https://github.com/Cvar1984/yapo","commit_stats":{"total_commits":45,"total_committers":3,"mean_commits":15.0,"dds":0.4222222222222223,"last_synced_commit":"80db38165882f48b26a6aa0e0516895dc6d8ec9f"},"previous_names":[],"tags_count":6,"template":false,"template_full_name":null,"purl":"pkg:github/Cvar1984/yapo","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Cvar1984%2Fyapo","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Cvar1984%2Fyapo/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Cvar1984%2Fyapo/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Cvar1984%2Fyapo/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/Cvar1984","download_url":"https://codeload.github.com/Cvar1984/yapo/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Cvar1984%2Fyapo/sbom","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":260148389,"owners_count":22965912,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["backdoors","compiler","encoder","hacking","hacktoberfest","obfuscate","obfuscation","php","shellcode","webshell"],"created_at":"2024-10-16T07:43:41.860Z","updated_at":"2025-06-16T11:08:05.201Z","avatar_url":"https://github.com/Cvar1984.png","language":"PHP","funding_links":["https://github.com/sponsors/Cvar1984"],"categories":[],"sub_categories":[],"readme":"# Yet another PHP Obfuscator\n[![CodeFactor](https://www.codefactor.io/repository/github/cvar1984/yapo/badge)](https://www.codefactor.io/repository/github/cvar1984/yapo)\n\nthis tools able to (de)compress your php shellcode string and inject\ncommon file signature like jpeg to fuck webserver uploader or malware string scanner like what i made before.\nno need to install whole shit, just download the single phar executable file and fuck them all.\nyou can download it from [Here](bin/yapo) or [here](https://github.com/Cvar1984/yapo/releases/).\n\nand also your shellcode won't works if the server disable fopen, fseek, fwrite, fclose, and include.\n\u003e DISCLAIMER use eval to obfuscate is gay\n\n### command\n```sh\nyapo make \u003csignature\u003e \u003cfile\u003e...\n```\n### single compress\n```sh\nyapo make jpeg shell.php\n```\n### multiple file compress without signature injection\n```sh\nyapo make whatever shell1.php shell2.php\n```\n### multiple file compress using find\n```sh\nfind ./myproject -type f -name \\*.php -exec yapo make jpeg {} +\\;\n```\n## Demo\n[![asciicast](https://asciinema.org/a/545185.svg)](https://asciinema.org/a/545185)\n\n## signature\n- jpeg: FFD8FFE2\n- jpg: FFD8FFE2\n- mp4: 1A45DFA3\n- mpeg: 1A45DFA3\n- luac: 1B4C7561\n- lua: 1B4C7561\n- zip: 504B0304\n- pdf: %PDF-0-1\n- mp3: 494433\n- nes: 4E45531A\n- linux: #!/usr/bin/env php\n- shebang: #!/usr/bin/env php\n- random string: none\n\n[Full definition](src/Yapo/Yapo.php)\n\n[Compression method](http://www.faqs.org/rfcs/rfc1951.html)\n\n[Contributing](CONTRIBUTING.md)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcvar1984%2Fyapo","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fcvar1984%2Fyapo","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcvar1984%2Fyapo/lists"}