https://github.com/spyboy-productions/obfuxtreme

ObfuXtreme is an advanced Python obfuscation tool designed to bypass antivirus detection and remain undetectable on VirusTotal.
https://github.com/spyboy-productions/obfuxtreme

aes-encryption anti-debugging anti-reversing bypass-antivirus bypass-av obfuscate obfuscate-scripts obfuscation obfuscator polymorphic-code python-encryption python-obfuscate python-obfuscator undetectable-obfuscation virustotal-bypass

Last synced: about 1 month ago
JSON representation

ObfuXtreme is an advanced Python obfuscation tool designed to bypass antivirus detection and remain undetectable on VirusTotal.

• Host: GitHub
• URL: https://github.com/spyboy-productions/obfuxtreme
• Owner: spyboy-productions
• License: agpl-3.0
• Created: 2025-02-21T19:40:20.000Z (8 months ago)
• Default Branch: main
• Last Pushed: 2025-08-08T21:02:37.000Z (2 months ago)
• Last Synced: 2025-08-08T23:23:02.448Z (2 months ago)
• Topics: aes-encryption, anti-debugging, anti-reversing, bypass-antivirus, bypass-av, obfuscate, obfuscate-scripts, obfuscation, obfuscator, polymorphic-code, python-encryption, python-obfuscate, python-obfuscator, undetectable-obfuscation, virustotal-bypass
• Language: Python
• Homepage:
• Size: 396 KB
• Stars: 156
• Watchers: 4
• Forks: 11
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

          
 If you find this GitHub repo useful, please consider giving it a star! ⭐️ 
 



    

      

    

     

    

      

    

     

    

      

    

     

    

      

    

  





  



ObfuXtreme is an advanced Python obfuscation tool designed to bypass antivirus detection and remain undetectable on VirusTotal.

- **AES-256 Encryption** with CBC mode

- **Abstract Syntax Tree (AST)** manipulation

- **Polymorphic Code Generation**

- **Zlib Compression** + **Marshal Serialization**

---

> [!CAUTION] 

> **Please use this responsibly and ethically.**

> 
 DISCLAIMER 
 

> ObfuXtreme is a Proof of Concept (PoC) Tool created strictly for educational and research purposes. It is designed to demonstrate advanced Python obfuscation techniques.  

While this tool showcases its effectiveness by being undetectable on VirusTotal, it is NOT intended for malicious use. Using ObfuXtreme to obfuscate malware, bypass security measures, or engage in any unethical activities is strictly prohibited.  


#### **Responsibility & Ethics**  

- Cybersecurity professionals and developers can use this tool to **understand, analyze, and defend against** similar obfuscation techniques used by attackers.  

- The **developer does not condone** nor take responsibility for any misuse of this tool. Users are solely accountable for how they apply it.  

- **Always comply with local laws and ethical guidelines** when using this tool.  

By using ObfuXtreme, `you acknowledge that you understand these terms and accept full responsibility for your actions`.  

### ✨ Feature 

| Feature | Found? | Notes |

|---------|--------|-------|

| **Military-Grade Encryption** | ✅ | Uses **AES-256-CBC** for encryption. |

| **AES-256-CBC with per-build random keys** | ✅ | Generates a new **32-byte key** (`self.aes_key = os.urandom(32)`) and **16-byte IV** (`self.iv = os.urandom(16)`) per build. |

| **AST-Level Transformations** | ✅ | Implements **Variable Renaming, Control Flow Flattening, and String Encryption** using `ast.NodeTransformer`. |

| **Variable Renaming** | ✅ | Uses a hashing method (`shake_128`) to obfuscate variable names. |

| **Control Flow Flattening** | ✅ | Implements state-based execution in `ControlFlowFlattener`. |

| **String Encryption** | ✅ | Encrypts string literals with AES before execution. |

| **Anti-Analysis Protections** | ✅ | Includes **Debugger Detection, Memory Bombardment, and Environment Checks**. |

| **Debugger Detection** | ✅ | `_anti_debug()` exits if a debugger is detected (`sys.gettrace()` or `IsDebuggerPresent`). |

| **Memory Bombardment** | ❌ | No evidence of excessive memory usage or process exhaustion techniques. |

| **Environment Checks** | ✅ | Uses OS-based debugger detection. |

| **Self-Destruct Mechanism** | ✅ | Implements **Tamper detection with SHA-3 integrity checks** (used in `_decrypt_str` with exception handling). |

| **Stealth Operation** | ✅ | Uses **silent failure modes** (returns empty string if decryption fails) and **exception handling**. |

| **Cross-Platform** | ✅ | Designed for **Windows, Linux, and macOS** using standard Python and PyCryptodome. |

---

## VirusTotal Scans

 Without ObfuXtreme
  
 

 With ObfuXtreme
  


## 📖 Installation

```bash

git clone https://github.com/spyboy-productions/ObfuXtreme.git

```

```

cd ObfuXtreme

```

```

pip install -r requirements.txt

```

```

python ObfuXtreme.py 

```

`To Run Light version With No External requirements:`

```

python light_ObfuXtreme.py 

```

## 🔥 Usage

To obfuscate a Python script, run:

Example:

`python ObfuXtreme.py test.py`

This will generate an obfuscated file named obfuscated.py that contains the encrypted and protected version of your script.

🛠️ Running the Obfuscated Script

Simply run:

`python obfuscated.py`

### To do:

1. add new module that Works only on the original machine.

2. add new module that ask for password.

3. add option to convert to .exe file after obfuscation.

 If you find this GitHub repo useful, please consider giving it a star! ⭐️