Warning
This is highly detected by Roblox. Use this repository to understand what's happening and how it works.
An executor made for the web version of Roblox.
It uses the common method of writing unsigned bytecode into a Roblox core module script to manage execution, also more stable and flexible than most executors that has used this exact method.
If you're going to use my source and "skid" off of it atleast use the license and give credits. Don't be like the others who used my entire source code and claimed it as their own without mentioning anything about Xeno nor the publisher + distributing & selling to others.
- Fast execution
- Multi-instance compatibility
- Supports executing most scripts including Lua Armor scripts
- Uses extremely fast virtual filesystem that syncs to the external
- No in-game performance change & no high CPU usage
- Custom functions like HttpSpy, getting the real address of a Instance, setting & getting globals across all clients, and spoofing instance
I have only used this project to learn C++ and a bit of C#.
Do not expect the best code and memory management. You will see really bad code and design on the XenoUI C# WPF project since it was only made as a prototype.
This executor has many vulnerabilities because only I have used Xeno and did not make a public release.
Custom functions examples:
-- get real address
local address = Xeno.get_real_address(game:GetService("ScriptContext"))
print("Script context address:", string.format("0x%x", address))
-- spoof instance
Xeno.spoof_instance(game:GetService("CoreGui"), 0) -- set the address of coregui to 0
Xeno.spoof_instance(game.Players.LocalPlayer, Instance.new("Part")) -- set the localplayers address to a part
-- http spy
Xeno.HttpSpy() -- set http spy to true
Xeno.HttpSpy(false) -- set httpspy to false
-- globals (shared across all clients, saved inside the executor)
-- similar to Instance:GetAttribute() but supports tables
-- global name, value
Xeno.SetGlobal("__test", { -- can only set table, number, and string as a global
["test_text"] = "hello, world!"
})
local t = Xeno.GetGlobal("__test") -- the table we just set
print(t.test_text) -- hello, world!
-- other
print(Xeno.PID) -- current roblox process id
print(Xeno.GUID) -- the guid it is using to communicate with the externalThe current method of adding HttpGet to "game" interferes with some scripts like dex. To execute dex run this script:
getgenv().game = workspace.ParentThis will remove HttpGet from game!
This is the UI of the version 1.0.1:
The Current UNC is 73%
This project uses the following libraries:
Dependencies are managed with vcpkg. Install them with this command:
vcpkg install xxhash zstd opensslThe proper version of httplib is already included inside this project
Thank you Incognito for the method.
Thanks to others that has helped me with decompressing, and compressing the bytecode.
Thanks to the Init script of TaaprWareV2 by plusgiant5
Thanks to nhisoka for helping me out at the start of this project