Advancing JavaScript Security with AI: A Milestone from the PERUN Project
RevelSI joined the PERUN project back in October 2025. We are now beginning to see the results of this collaboration, with the consortium publishing a study titled “Deobfuscation of JavaScript Code and Identification of Security Weaknesses Through Large Language Models.” The research addresses a growing challenge in modern security: the ability to understand and analyze obfuscated code at scale.
JavaScript remains a core component of modern web applications, but it is also frequently used to conceal malicious behavior. Through obfuscation, attackers can disguise logic and delay detection, making analysis significantly more complex. For security teams, this often translates into slower investigations and limited visibility into what code is actually doing, particularly in dynamic and script-heavy environments.
The study explores how large language models can be applied to reverse obfuscation and support the identification of vulnerabilities. Unlike traditional approaches that rely primarily on predefined rules, LLMs introduce contextual understanding into the analysis process. This enables more efficient interpretation of complex code and supports a clearer assessment of potential risks. In practical terms, it helps reduce the gap between identifying suspicious behavior and understanding its impact.
As applications continue to evolve in complexity, security capabilities must evolve accordingly. The ability to interpret code - especially when intentionally obfuscated - is becoming increasingly important. This research reflects a broader shift toward more context-aware security approaches and highlights the role AI can play in supporting analysts and improving outcomes.
Read the full study
What is PERUN?
PERUN is an EU-funded cybersecurity initiative bringing together 17 organizations across Europe. It aims to deliver a European cybersecurity response to the rapidly evolving landscape of next-generation cyber threats. With a focus on AI-driven and stealth malware, PERUN seeks to enhance Europe’s cyber resilience and safeguard critical digital infrastructure across sectors.