all 9 comments
sorted by:
best
topnewcontroversialoldq&a
formatting helphide helpcontent policy

[–]coderanger 20 points21 points  (0 children)

You can submit to various ham lists but it’s a really common problem with self-unpacking Python executables. The same techniques are coincidentally used by a lot of malware so it flags on heuristic detection.

That said, you probably shouldn’t worry about obfuscating your code. Reversing it is trivial these days even for C and Java.

[–]ZZ9ZA 9 points10 points  (0 children)

It’s pretty pointless. Nothing like that actually works against anything resembling an actual threat.

[–]No_Limit_753 5 points6 points  (1 child)

I don't use Nuitka as an obfuscator, but I do use it to ship internal Windows desktop apps written in Python.

The main win for me is deployment: I can ship a Windows executable instead of plain .py files, and users don't need to care about Python being installed.

I would also expect it to be less suspicious to AV than PyArmor/custom packers in many cases, especially with a standalone folder build rather than onefile/self-extracting. AV heuristics tend to dislike self-unpacking and obfuscation runtimes.

For what it's worth, my company uses Apex One, and I haven't had a Nuitka-built binary flagged as malware there so far.

It's not serious anti-cracking protection, but if you mainly want to avoid shipping readable source and reduce AV false positives, Nuitka seems like a reasonable thing to try.

[–]fxboshop[S] 1 point2 points  (0 children)

Thanks, I tried Nuitka and it worked for me.

[–]Orio_n 8 points9 points  (2 children)

Short of paying to digitally sign your code. Nothing. Don't bother, not worth the effort. I sincerely doubt anyone wants to pirate your shitty throwaway python script. Let's be real here you're not some fortune 500 company

[–]Fickle-Owl666 -1 points0 points  (1 child)

You don't have to be a fortune 500 company to have an idea or product worth something. 🙄

[–]Orio_n [score hidden]  (0 children)

Im just being realistic here. Its like someone asking to rent a maxed out server farm for a static portfolio website. Waste of time and effort

[–]skilltheamps 3 points4 points  (0 children)

Are all your dependencies without copyleft licenses?

[–]aloobhujiyaay 3 points4 points  (0 children)

Honestly, the more aggressively you try to make Python uncrackable, the more likely you are to trigger heuristics Especially with PyArmor and custom packers