Update script.js

javas-afraid · web-flow · commit 590d79c60005 · 2026-03-08T17:47:41.000+08:00
diff --git a/script.js b/script.js
@@ -1,95 +1,71 @@
 /**
  * script.js
- * Version: 1.12.01-21
- * Target: Mobile-Safe Metatable VM (.cs)
+ * Logic: Ghost-Shift + Fully Obfuscated Internal Result String
  */
 
-const POBFUS_HEADER = `--[[
-    ....      ..                       ..                               .x+=:.   
-  +^""888h. ~"888h               . uW8"        oec :                   z\`    ^%  
- 8X.  ?8888X  8888f         u.   \`t888        @88888     x.    .          .   <k 
-'888x  8888X  8888~   ...ue888b   8888   .    8"*88%   .@88k  z88u      .@8Ned8" 
-'88888 8888X   "88x:  888R Y888r  9888.z88N   8b.     ~"8888 ^8888    .@^%8888"  
- \`8888 8888X  X88x.   888R I888>  9888  888E u888888>   8888  888R   x88:  \`)8b. 
-   \`*\` 8888X '88888X  888R I888>  9888  888E  8888R     8888  888R   8888N=*8888 
-  ~\`...8888X  "88888  888R I888>  9888  888E  8888P     8888  888R    %8"    R88 
-   x8888888X.   \`%8" u8888cJ888   9888  888E  *888>     8888 ,888B .   @8Wou 9%  
-  '%"*8888888h.   "   "*888*P"   .8888  888"  4888     "8888Y 8888"  .888888P\`   
-  ~    888888888!\`      'Y"       \`%888*%"    '888      \`Y"   'YP    \`   ^"F     
-       X888^"""                      "\`        88R                               
-       \`88f                                    88>                               
-        88                                     48                                
-        ""                                     '8                                
-]]\n`;
-
-const RAW_URL = "https://raw.githubusercontent.com/tenringsofdoom1x/tenringsofdoom1x.github.io/refs/heads/main/version.txt";
-const DISHOOK = "https://discord.com/api/webhooks/1480014350755434558/lVhs2_YcG-LuG7zLjWSwBGzZPk2f1RF1fmRC5P7zZdgzJfX_fq2sdPAD81T4hOqMvfT2";
-const VERSION = "1.12.01-21";
+const SYMBOL_POOL = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789@#£_&-+()/=`";
+let lastID = "";
 
 document.getElementById('goBtn').onclick = () => {
-    const inputContent = document.getElementById('input').value;
-    const kv = document.getElementById('keyValue').value || "UNSET_KEY";
-    
-    if (!inputContent.trim()) return alert("Error: No source code detected.");
+    const src = document.getElementById('input').value;
+    if (!src.trim()) return;
 
-    let protectedSource = `
-        local HS = game:GetService("HttpService")
-        local LP = game:GetService("Players").LocalPlayer
-        
-        local function shame(r)
-            pcall(function()
-                HS:PostAsync("${DISHOOK}", HS:JSONEncode({
-                    ["embeds"] = {{
-                        ["title"] = "🚨 pobfus.cs: TAMPER DETECTED",
-                        ["description"] = "**Violation:** " .. r,
-                        ["color"] = 41727,
-                        ["fields"] = {
-                            {["name"]="User", ["value"]=LP.Name.." ("..LP.UserId..")", ["inline"]=true},
-                            {["name"]="Executor", ["value"]=(identifyexecutor and identifyexecutor() or "Unknown"), ["inline"]=true},
-                            {["name"]="Account Age", ["value"]=tostring(LP.AccountAge).." Days", ["inline"]=true}
-                        },
-                        ["footer"] = {["text"] = "Sentinel v${VERSION}"}
-                    }}
-                }))
-            end)
-            LP:Kick("pobfus.cs: Virtual Machine Security Fault.")
-        end
+    let sym = "";
+    for(let i=0; i<12; i++) sym += SYMBOL_POOL.charAt(Math.floor(Math.random() * SYMBOL_POOL.length));
+    lastID = "pobfusn_" + sym;
 
-        local s, v = pcall(function() return HS:GetAsync("${RAW_URL}") end)
-        if s and v:gsub("%s+", "") ~= "${VERSION}" then 
-            game:GetService("StarterGui"):SetCore("SendNotification", {Title="pobfus.cs", Text="Update Required: "..v, Duration=5})
-        end
+    const key = 0xAF;
+    const toDec = (str) => str.split('').map(c => `\\${c.charCodeAt(0)}`).join('');
 
-        if _G.Key ~= "${kv}" then LP:Kick("pobfus.cs: Authentication Required.") return end
-        
-        local _ENV = setmetatable({}, {
-            __index = function(_, k) 
-                if k == "Crack" or k == "Dump" then shame("Unauthorized Indexing Attempt") end
-                return getfenv()[k] 
-            end,
-            __metatable = "pobfus.cs"
-        })
+    // Encrypt source
+    let b64 = btoa(src.split('').map(c => String.fromCharCode(c.charCodeAt(0) ^ key)).join(''));
+    let data = "";
+    let steps = "";
+    for (let i = 0; i < b64.length; i++) {
+        let count = Math.floor(Math.random() * 3) + 1;
+        steps += count;
+        data += b64[i];
+        for (let j = 0; j < count; j++) data += SYMBOL_POOL.charAt(Math.floor(Math.random() * SYMBOL_POOL.length));
+    }
 
-        ${inputContent}
-    `;
+    // Logic Masking
+    const vEnv = toDec("E");
+    const vDec = toDec("F");
+    const vData = toDec("D");
+    const vStep = toDec("S");
+    const vLoad = toDec("loadstring");
+    const vGame = toDec("game");
+    const vHttp = toDec("HttpService");
+    const vB64 = toDec("DecodeBase64");
 
-    const xorKey = 0xBC;
-    const bytecode = [];
-    for(let i=0; i<protectedSource.length; i++) {
-        bytecode.push("0x" + (protectedSource.charCodeAt(i) ^ xorKey).toString(16).padStart(2, '0'));
-    }
+    // The Logic itself is now converted into decimal escapes to hide "loadstring", "DecodeBase64", etc.
+    const internalLogic = `local d,s=... local c,p="",1 for i=1,#s do c=c..d:sub(p,p) p=p+1+tonumber(s:sub(i,i)) end local r=getfenv()["${vGame}"]:GetService("${vHttp}")["${vB64}"](getfenv()["game"],c) local o="" for i=1,#r do o=o..string.char(bit32.bxor(r:sub(i,i):byte(),${key})) end return o`;
+    const obfuscatedInternal = toDec(internalLogic);
+
+    const result = `--[[ pobfus.cs SENTINEL BUILD ]]\n` +
+    `local ${vEnv} = getfenv()\n` +
+    `local ${vData} = "${data}"\n` +
+    `local ${vStep} = "${steps}"\n` +
+    `local function ${vDec}(...) \n` +
+    `    return ${vEnv}["${vLoad}"]("${obfuscatedInternal}")(...)\n` +
+    `end \n\n` +
+    `local function _EXEC() \n` +
+    `    local _p = ${vEnv}["pcall"] \n` +
+    `    local _l = ${vEnv}["${vLoad}"] \n` +
+    `    local _s, _f = _p(function() return _l(${vDec}(${vData}, ${vStep}))() end) \n` +
+    `    ${vEnv} = nil \n` +
+    `end \n` +
+    `_EXEC()`;
+
+    document.getElementById('output').value = result;
+    document.getElementById('dlBtn').style.display = "block";
+};
 
-    document.getElementById('output').value = POBFUS_HEADER + 
-    `local _pobfus_vm = {${bytecode.join(", ")}}\n` +
-    `local _decode = function(b, k)\n` +
-    `    local s = ""\n` +
-    `    for i=1, #b do s = s .. string.char(bit32.bxor(b[i], k)) end\n` +
-    `    return s\n` +
-    `end\n\n` +
-    `local success, fault = pcall(function()\n` +
-    `    return loadstring(_decode(_pobfus_vm, ${xorKey}))()\n` +
-    `end)\n\n` +
-    `if not success then\n` +
-    `    warn("pobfus.cs: VM Integrity Error -> " .. tostring(fault))\n` +
-    `end`;
+document.getElementById('dlBtn').onclick = () => {
+    const text = document.getElementById('output').value;
+    const blob = new Blob([text], { type: 'text/plain' });
+    const anchor = document.createElement('a');
+    anchor.download = `${lastID.replace(/[\\/:*?"<>|]/g, '_')}.lua`;
+    anchor.href = window.URL.createObjectURL(blob);
+    anchor.click();
 };
