U Can't Debug This: Detecting JavaScript
Anti-Debugging Techniques in the Wild

Marius Musch and Martin Johns
TU Braunschweig

General

These are exemplary implementations for the 9 anti-debugging techniques presented at USENIX Security'21. These techniques try to prevent, or at least slow down, any attempts at manually inspecting and debugging the JavaScript code of a website.

Try it for yourself and click on any of the links below, then (try to) open the DevTools and see what happens!

Basic techniques

ShortCut

TrigBreak (Alternative)

ConClear

ModBuilt (Alternative)

WidthDiff

LogGet (Alternative 1) (Alternative 2)

Sophisticated techniques

MonBreak

NewBreak

ConSpam

Publication

Read more details in our paper (coming soon) or watch our presentation (coming soon)

If you are using these for follow-up work, please cite our paper

@INPROCEEDINGS{musch2021antidebugging,
  author = {Marius Musch and Martin Johns},
  title = {U Can't Debug This: Detecting JavaScript Anti-Debugging Techniques in the Wild},
  booktitle = {Proc. of {USENIX} Security Symposium},
  year = {2021}
}

Imprint and data protection declaration here