while true do end can be hijacked. It’s just easier to kill the script.
Security through obscurity never works.
These are all terrible ideas.
- Script obfuscation makes it annoying to debug in general, but if your obfuscation is just renaming variables it doesn’t make it any harder at all for an exploiter.
- “Network keys” are useless. Hackers can read remote traffic and it’s trivial to decrypt. Even worse, most implementations harm bandwidth for real users.
- If you’re talking about context level elevation, exploits haven’t changed the global script environment since 2014/2015.
- Hackers can still just detour the methods you use in the end. You’re just making execution slow for the actual good guys.
Don’t do security through obscurity. It doesn’t matter at all if people can read your client scripts if you secure the server.