Reverse engineering the string mask / obfuscate function

based on what you mentioned, it looks like encryption uses a block cipher: One nive property about block ciphers is that the encryption of the block is independent of the previous one, this is not always true (and a very bad practice = very good for you, an attacker ), one of the cipher blocks that is: ECB: https://en.wikipedia.org/wiki/Block_cipher_mode_of_operation#Cipher_Block_Chaining_.28CBC.29 , as you can see that the same key is used for each encryption, and block cipher can be equivalent to XOR, allowing decryopt to guess anything. To verify that try f (00000000000000), where the length is greater than one block and see if the pattern is repeated. If this is not the case, you can use something like CTR:https://en.wikipedia.org/wiki/Block_cipher_mode_of_operation#Counter_.28CTR.29 " (i)" = - (, nonce (i)) XOR, f (000000000000) (1), (2)... , . , , , .