See beyond the veil: Automating malicious javascript deobfuscation presented at CircleCityCon 2017

by Chad Robertson,

Summary : Exploit kits use javascript to direct victim browsers to hosted exploits. These javascript are highly obfuscated to mask their intent and make analysis more difficult. Deobfuscating it manually is time consuming and does not scale. This talk with discuss techniques to automate javascript analysis.