API
Client integration
JSON endpoints for Roblox loaders and Minecraft clients. Use redeem once, then validate on each launch.
POST /api/v1/redeem
Binds a license key to an HWID the first time a user launches your client or script.
POST https://nullcrypt.xyz/api/v1/redeem
Content-Type: application/json
{
"key": "NC-A1B2-C3D4-E5F6",
"hwid": "machine-or-executor-fingerprint",
"platform": "minecraft"
}POST /api/v1/validate
Checks that the key is active, not expired/revoked, and matches the bound HWID.
POST https://nullcrypt.xyz/api/v1/validate
Content-Type: application/json
{
"key": "NC-A1B2-C3D4-E5F6",
"hwid": "machine-or-executor-fingerprint",
"platform": "roblox",
"product": "oblivion",
"version": "2.1.0"
}Responses
// success
{ "success": true, "data": { "valid": true, "product": "oblivion", ... } }
// failure
{ "success": false, "error": { "code": "HWID_MISMATCH", "message": "..." } }Admin key generation
Authenticated admin session or x-api-key header matching API_MASTER_KEY.
POST /api/admin/keys
{ "productId": "...", "count": 10, "expiresInDays": 0 }Example clients
See examples/roblox-loader.lua and examples/minecraft-client.java in the repo.