Documentation

Guides for protecting production JavaScript

Reference guides for release workflows, command-line usage, cross-file protections, and the desktop app.

Build And Release Workflows Download Desktop

Inside The Docs

Practical guides, not placeholder pages.

How-to guides Start with release sequencing and command-line usage, then move into feature-specific references.

Advanced protection Browse cross-file controls like Replace Globals and Protect Members when a build spans multiple scripts.

Encrypt Strings

API ParamEncryptStrings
RequiresEnterprise

Encrypt Strings hides string literals behind generated runtime logic, making them much less obvious than simple escaped sequences.

What changes

Instead of leaving a readable literal in the file, JavaScript Obfuscator stores the value in an encoded form and rebuilds it when the script runs. This is typically stronger than plain string encoding when you want to hide meaningful messages, keys, or labels.

Conceptual example

A readable string such as:

"license-expired"

may become a generated representation similar to:

"nsf%y%tlcrludli%eBeolvrrs%..."

Tip: this option is most useful when the string content itself matters. Because values are reconstructed at runtime, test performance-sensitive code if you enable it heavily.