How I hade code repos where it's impossible to reproduce a build.

#deadcode

You can fool disassemblers like #GHIDRA to reveal useless #DeadCode in its decompilation section by just returning the variables.

For example. We can test for six or so conditions to detect a sandbox for #sandboxevasion. Including but not limited to, vCPU threads, physical memory, uptime, whether or not it’s domain joined, unique files created on disk, etc. Since we can check for a sandbox after X amount of seconds plus random jitter, we can create a asynchronous #junkcode #deadcode process controlled by a #mutex #thread #fiber or #semaphore, that periodically returns control flow to the dispatcher. Then returns to main()