[ushakov]

that’s just the client though

it only makes request to https://api.xploit.my.id/v1/crimeflare.php and logs the output

[zinekeller]

Nope, that's literally it: https://web.archive.org/web/20210426093141/https://github.co...

[crtasm]

It appears zidansec runs xploit.my.id. The api subdomain is not currently responding.

https://www.xploit.my.id/2021/07/crimeflare-bypass-tools-clo...