2023-05-29
matscan is a Minecraft bot that joins potentially vulnerable Minecraft servers and sends a message in chat to inform the admins.
It should’ve told you in its long chat message but some servers might cut it off:
• If the server was meant to be private then enable a whitelist.
• If the server is offline-mode then enable online-mode in the server.properties or install a plugin such as AuthMe.
• If the server has an exposed BungeeCord backend, firewall it, install BungeeGuard, or switch to Velocity.
• Enable backups or install a plugin like CoreProtect.
If you’ve done all of the above, then you’re probably fine.
I scan the internet for Minecraft servers, basically sending a packet to every IP address and seeing which ones respond (it’s a little more complex than this).
No. You should still secure your server though since there are several griefing/harassment groups that use their own server scanners.
matscan will try to join with the username Herobrine first, so if the server is offline-mode then it can demonstrate that people can join with any username. It may also use the username of a historical player if the server is offline-mode but has a whitelist.
The bot will exclusively join from the IP address `151.115.73.107`. This page will be updated if it ever changes in the future.
My Matrix is @mat:matdoes.dev (preferred), but you might be able to find me on other social medias.
If you appreciate the security work I do, please consider funding my projects at ko-fi.com/matdoesdev.