Look at Microsoft Script Encoder. It allows you to encrypt vbs or jsp script inside an ASP page. If a hacker gets to your folder and looks at your asp pages, we will see garbage inside script tag. We use it and it does not affect performance. I don't know if there is a third party that decrypt's it but it is a another level of security.