Your Code. Protected.

10 Layer Lua Obfuscation Built for FiveM
Negligible Performance Impact • Full Framework Compatibility

Get a Free DemoSee the Proof
Works withQBCoreESXox_libStandaloneVRP200+ Natives Preserved

Disclaimer: Kryphos is a private obfuscation service. We fully respect CFX rules for their official marketplace listings (those must use CFX Asset Escrow). You can still obfuscate that same script. Just don't upload the obfuscated version to the CFX marketplace. All private sales, direct Tebex stores, Discord, GitHub, and self hosted resources are fully supported.

Two Different Problems. Two Different Solutions.

Understanding the difference between distribution control and code protection

CFX Escrow

readable

Controls who can download your script from the CFX forum. It's a distribution lock for forum releases, great for controlling access on the official CFX marketplace. But once someone has the file through any other channel, the source code is readable.

Kryphos

_0x3f9a

Makes the code itself extremely difficult to read and reverse engineer, no matter how someone got the file. All of your source code and every variable, string, and logic path is heavily scrambled. Dump it, leak it, access it any way they still can't see anything useful to steal or exploit.

Distribution Lock+Code Protection

Escrow protects your CFX releases. Kryphos protects everything else. Private scripts, Tebex sales, server side resources, and your whole source code.

Note: Kryphos protected scripts can be sold on any platform. Tebex, GitHub, Discord, your own store, and more. The only exception is CFX's official forum marketplace, which requires their own Asset Escrow system for listed releases.

Disclaimer: Kryphos is a private obfuscation service. We fully respect CFX rules for their official marketplace listings (those must use CFX Asset Escrow). You can still obfuscate that same script. Just don't upload the obfuscated version to the CFX marketplace. All private sales, direct Tebex stores, Discord, GitHub, and self hosted resources are fully supported.

One Dump Can Cost You Everything

Without Kryphos

1
Modder connects to server
2
Resources dumped in seconds
3
Clean, readable code exposed
4
Events, triggers, money logic = all visible

With Kryphos

1
Modder connects to server
2
Resources dumped in seconds
3
Code scrambled into unreadable garbage
4
Nothing readable. Nothing exploitable.
Modders dump resources daily
Staff/FTP leaks are common
Leaked scripts lose all future sales
Unprotected code can be resold, modified, or exploited

10 Compounding Layers of Protection

Each layer makes all previous layers exponentially harder to reverse

01

String Encryption + Runtime Decryptor

All strings XOR-encrypted with per-string keys. Only decrypted at runtime — static analysis sees nothing.

02

Identifier Renaming (_0xHEX)

Every variable, function, and parameter is renamed to unreadable hex identifiers.

03

Constant Obfuscation

Numeric and boolean constants are replaced with complex computed expressions.

04

Dead Code Injection

Fake functions, decoy variables, and junk logic paths injected throughout to waste reverse engineers' time.

05

Control Flow Flattening

Program logic is restructured into a state machine, destroying readable flow.

06

Opaque Predicates

Always-true/false conditions that appear complex, blocking decompilation.

07

Comment & Whitespace Stripping

All comments, formatting, and whitespace are removed completely.

08

Anti-Debug Hooks

Runtime timing checks and environment validation. Detects debugging tools and silently corrupts output.

09

Anti-Decompiler Traps

Specially crafted constructs that crash or confuse common Lua decompilers.

10

String Splitting

Strings are split into fragments and reassembled at runtime across multiple functions.

200+ FiveM natives & framework globals 100% preserved • ASCII-safe • Zero runtime errors

The Proof

Same functionality. Completely unreadable. Runs identically on any FiveM server.

UNPROTECTEDWhat a modder sees after dumping your files
Config.Locations = {
    {
        coords = vector4(-1172.8505, -1569.1763,📍 Exact dealer GPS coords exposed
            4.3917, 300.2798),
        blip = {
            sprite = 524, color = 1,
            scale = 0.7, label = "Black Market"
        }
    },
    {
        coords = vector4(1240.1276, -3168.0750,📍 Second location leaked
            7.1049, 274.8748),
        blip = {
            sprite = 524, color = 1,
            scale = 0.7, label = "Black Market"
        }
    },
    {
        coords = vector4(726.5413, 4169.9854,📍 Third location leaked
            40.7092, 354.4087),
    }
}
Config.Items = {
    {
        label = "Pistol",
        item = "WEAPON_PISTOL",🔫 Weapon hash + price visible
        price = 500,
    },
    {
        label = "Knife",
        item = "WEAPON_KNIFE",
        price = 2000,
    },
}
-- Server callback any modder can trigger directly:
ESX.TriggerServerCallback(
    resourceName..':buyItem',⚠️ Server callback exposed — trigger remotely for free weapons
    function(success, reason)
        HandlePurchaseResult(success, reason, item)
    end, item.item, item.price, item.metadata or {})
KRYPHOS PROTECTED \u2014 LEVEL 2What a modder sees after Kryphos
local _0x10b7 = 0
local _0xc684 = GetCurrentResourceName()
local _0xd8e8 = true
RegisterNetEvent(_0xc684..__d({203,178,254,
251,100,187,167,200,211,4,241,192,136,
252,41},2))
local _0x5de4=2772
if (math.floor(4120)==4120) then
AddEventHandler(_0xc684..__d({203,178,254,
251,100,187,167,200,211,4,241,192,136,
252,41},2), function()
else
local _0xdb905=5;for _0xi=1,5 do _0xdb905=
_0xdb905+_0xi end
end
    if Bridge.Framework == __d({149,131,
239},3) then
if ((2242+0)==2242) then
        ESX = exports[__d({146,132,207,253,
121,162,130,210,208,10,246},4)]
:getSharedObject()
else
local _0xdb59d=6;for _0xi=1,6 do _0xdb59d=
_0xdb59d+_0xi end
end
if ((4451+0)==4451) then
        Bridge.FrameworkObject = ESX
else
local _0xdba22=8;for _0xi=1,8 do _0xdba22=
_0xdba22+_0xi end
end

Every coordinate obfuscated • Every weapon hash hidden • Every callback name scrambled

Protection Level: Level 2 (9 Layers)

Real scripts. Real protection. Every coordinate, event name, weapon hash, and money function. Completely hidden.

Protect Your Scripts

How It Works

From upload to protected in under two hours

01

Open a Ticket

Join my Discord and open a ticket. Upload your Lua scripts as a ZIP file.

02

Choose Your Level

Select Level 1, 2, or 3 based on how much protection you need.

03

I Process It

My engine detects frameworks, natives, and globals automatically. Then all protection layers are applied.

04

Get Your Protected Files

Receive your obfuscated scripts within 30-120 minutes, tested and ready to drop in.

05

Drop Into Your Server

Replace your original files. Works perfectly with zero configuration changes.

Simple, Transparent Pricing

Choose the protection level that matches your security needs

Level 1
STARTER
$20per script
4 Layers (L1-L4)
  • String Encryption + Runtime Decryptor
  • Identifier Renaming (_0xHEX)
  • Constant Obfuscation
  • Dead Code Injection
  • Full framework compatibility
  • ~30 minute turnaround
5+ scripts: $15/each
Open Ticket in Discord
RECOMMENDED
Level 2
RECOMMENDED
$30per script
9 Layers
  • Everything in Level 1
  • Control Flow Flattening
  • Opaque Predicates
  • Comment & Whitespace Stripping
  • String Splitting
  • Anti-Debug Hooks
  • ~60 minute turnaround
5+ scripts: $22/each
Open Ticket in Discord
Level 3
MAXIMUM
$45per script
All 10 Layers
  • Everything in Level 2
  • Anti-Decompiler Traps
  • Maximum entropy output
  • Hardest possible reversal difficulty
  • Priority processing
  • ~90 minute turnaround
5+ scripts: $35/each
Open Ticket in Discord

Monthly Retainer

$129/month

Up to 20 scripts per month at Level 2. Priority processing. Perfect for active developers and server owners with ongoing protection needs.

Disclaimer: Kryphos is a private obfuscation service. We fully respect CFX rules for their official marketplace listings (those must use CFX Asset Escrow). You can still obfuscate that same script. Just don't upload the obfuscated version to the CFX marketplace. All private sales, direct Tebex stores, Discord, GitHub, and self hosted resources are fully supported.

Your Code, Your Property

Strict Confidentiality

All submitted code is handled under strict confidentiality. I never share, store, or reuse any client’s code.

Source Files Deleted

I delete all of your original source files after protecting and delivering them. Nothing lingers on my systems.

You Own Everything

You retain 100% ownership of your original code and the obfuscated output. I claim no rights to your work.

Fast Turnaround

Most scripts processed within 30-60 minutes. Monthly retainer clients get priority sub-30-minute processing.

Earn While You Share

Know someone who needs their scripts protected? Get rewarded for every client you send my way.

01

Share Your Link

Get your unique referral link from your Discord ticket. Share it with other developers.

02

They Get Protected

When someone opens a ticket and mentions your name or uses your link, the referral is tracked.

03

You Get Paid

Earn 15% commission on their first paid order from your referral. Paid out after the order is delivered.

No cap on earnings. No expiration. The more developers you refer, the more you earn. Open a ticket to get your referral link.

Get My Referral Link

Frequently Asked Questions

Ready to protect what you built?

Your code is your investment. Stop giving it away for free.

Get a Free Demo