The php Function Base64_Decode
php is one of the web base scripting languages and it has many functions to handle its back end code. Among all php functions the function base64_decode is one of the finest methods to decrypt the datas in the application.
The php function base64_decode() is an inbuilt function which is used to decode the data that is encoded using MIME base64. The function accepts a single parameter called $data which is the encoded string. It also has an optional parameter named $strict which if set to true then the function will return false if the input contains characters from outside the base64 alphabet. Invalid characters are silently discarded. The function returns the decoded data on success or FALSE on failure, and the returned data may be binary.
This is very similar to the function rotencode() which takes specific letters from the original string and unscrambles them. Both rotencode and base64_decode can be found in many malware exploits to inject malicious code into a website or encrypt and hide a hacker's payload. It is therefore important to understand how these functions work so that you can avoid them in your code. The main issue is that these functions convert arrays directly into a string without prior serialization, which can result in obfuscated datas that are difficult to read. The problem is also that these obfuscated strings can be POSTed to your server and executed by hackers. This is a common practice in the form of the eval base64 decode hack.