Tool

Obfuscator

Encode and obfuscate payloads for defense evasion. URL encoding, HTML entities, Base64, PowerShell -EncodedCommand, shell tricks, SQL bypasses, and more — with restricted character filtering.

BETA: Encodings provided are AI-generated and are not yet checked for validity. Use with caution and verify outputs before running them.

Payload / command

Restricted characters(chars that must not appear in output)

Shell / Unix5 techniques

Empty String Insertion ('')

Inserts '' between alternating characters. Bash/sh evaluates to the original; defeats grep-based WAFs.

Enter a payload above to see the encoded output…

${IFS} Space Replacement

Replaces spaces with ${IFS}. Bypasses filters that block literal spaces in shell commands.

Enter a payload above to see the encoded output…

printf \x (Full Command)

Wraps the whole input as $(printf '\xHH…'). Evaluates the hex-encoded string as a shell command.

Enter a payload above to see the encoded output…

$(printf) Per Character

Expands each character individually via $(printf). Maximum evasion; verbose output.

Enter a payload above to see the encoded output…

ANSI-C Quoting ($'\x…')

Uses bash ANSI-C quoting $'\xHH…' to represent the string as hex escapes without a subshell.

Enter a payload above to see the encoded output…