xAPI is a fast, flexible and powerful pentesting and debugging tool written in pure luau. It can detour, decompile and clone functions, hook metamethods and features over 100 globals that emulate the functionality of most, if not all, executors.
Installation
To install xAPI, you will need to download the latest model from the GitHub repository and insert it into game.ServerStorage.
You can then use the following script to load xAPI:
Pretty sure this is against Roblox ToS. Its pretty much the same thing as a Ultimate Trolling GUI. If you put it inside the game, your game will get deleted.
Is it really? There’s no real exploiting nor anything that ruins other players’ experience. I mean you could do it, but that’ll be like saying Roblox Studio is against the TOS because you can make TOS breaking content in it.
Unfortunately yes. Even if its not real exploiting you can still insert innapropiate things with it. Its the same case as Ultimate Trolling GUI. With that, you can also insert innapropiate things. I’ve seen countless Script Executor games get deleted in an almost instant.
The reason why its probably against the ToS is because it allows you to insert things without it being really in the game. Making the game basically not liable. The ToS prevents that and will get the game/creator banned.
With xAPI there’s only one function which could insert innapropiate things: a modified version of require. That’s it. There’s no loadstring, Http requests or GetObjects.
Its no different then using HD admin :insert command… All It can do is require other things which have been uploaded to roblox and already passed moderation.
Anyway, the creator of the asset is not responsible for how people use it.
Yes. But HD admin is for admins only. You can’t decline that it can be used by multiple people (which are also not ADMIN) and insert malicious things. You also can’t decline that multiple Executor games have been banned in the past and still are.
HD Admin can be used by anybody??? It’s a free model, not limited to roblox admins. There are hundreds of free admin games which haven’t been banned. You can not insert malicious things via the require command or insert service, etc as they are only able to insert things which have already been uploaded to roblox and gone through moderation,
Script executers which make use of load string have been banned, that is because players can run their own code which has not been moderated by roblox in a live environment that roblox can not moderate.
Also, you dont need to read the source code, its not that hard to search for instances of load string and find that there are none.
Lastly, it really doesn’t matter. If roblox has a problem with this asset, they have the right to moderate it, you dont.