Logo
CapPreventer
PluginLicenseRef-Polyform-Shield

CapPreventer

Anti-exploit client mods Preventer. Make your server secure now!

89
Downloads
1
Followers
1 weeks ago
Updated
📦
17
Versions
magicmanagementutilitypaper
Download Latestv1.10.2-1.21.8View on Modrinth

📖About CapPreventer

🪶 CapPreventer is the only updated AAE (anti-anti-exploit) free plugin on the market.

CapPreventer tries to block popular anti-exploit mods, so your server can see players' mods without any spoofers.

CapPreventer strives to be the top AntiSpoof Pro alternative. If you want to help me achieve that goal, you may report any cool findings for the plugin's development in my Discord DMs.

🏳‍🌈 Happy Pride Month!

🔍 Made for

Mod(ule) Operation Versions
Server Spoof (optional impl.: Meteor Client, Opsec) detects / breaks¹ all
Opsec breaks <v1.1.5 (alone), new unpatched (requires any other mod; defaulted as Sodium)
¹ Whether it breaks or detects is dependent on the module configuration. In OpSec <=v1.1.6, it always breaks.

📮 Outdated handling²

  • Opsec v1.1.5                                                             🔴 outdated [breaks]
  • ExploitPreventer v1.0.5 x Server Translation API 🔴 outdated [breaks]
  • ExploitPatcher                                                       ⚫ taken down [breaks]
² These operations only work on outdated versions of the given mods.

🔑 Configuration

config.yml 
# All flow operations:
# [ kick, ban, banip, commands ]

#==== Punishment Messages ====#
# |  Command  |    Format   |
# |-----------|-------------|
# | `kick`    | MiniMessage |
# | `ban`     | Legacy      |
# | `banip`   | Legacy      |
#=============================#

#===== Command Placeholders =====#
# |   Name   |    Description   |
# |----------|------------------|
# | %player% | The player name. |
#================================#

# The 'px-integration' setting enables ProtocolExtension integration if it is present.
# If ProtocolExtension isn't present, that setting is ignored.

book-verification:
  enabled: true
  commands:
    - opsec  # [Patched]
    - www

px-integration: true

max-register-limit:
  enabled: true
  amount: 60

# 'brand-spoof-detection' is a detection for Meteor's 'Server Spoof' > 'minecraft:brand' spoofing,
# 'brand-spoof-kicker' will cause an internal client error for undetected brand spoofers.

brand-spoof-detection: true
brand-spoof-kicker: true

# 'channel-spammer':
# - will spam the chat of players with channel loggers,
# - may also accidentally kick some players with mods that check all CustomPayloads,
# - may also accidentally spam game logs of some players
#   (that use custom clients or these same types of mods).

channel-spammer:
  enabled: false
  interval: 10

# [Patched]
# 'ep-stapi-kicker' causes an internal client error if the player has both ExploitPreventer and a mod using
#                                                                          Server Translations API installed.

ep-stapi-kicker:
  enabled: true
  translations:
    - container.lolmcv.spruce_chest
    - abc
    - key.jump
    - menu.quit
  keybinds:
    - key.jump

# 'opsec-alert-spammer' spams the player's chat if he has Opsec installed with alerts on (which is the default).
#                       Keep in mind though, this occupies the actionbar (therefore making it unusable)!
opsec-alert-spammer:
  enabled: false
  interval: 4
  chunk: 2

# 'known-packs-require' requires the client to not omit the SelectKnownPacksC2SPacket and the 'minecraft:core' pack
#                       inside it.
#
# 'known-packs-analyze' analyzes if the client actually uses the version specified by SelectKnownPacksC2SPacket.

known-packs-require: true
known-packs-analyze: false
known-packs-analyze-amount: 20

# [ Requires Internet ]
# 'custom-lang-verification' can detect mods that don't check text from server resource packs.
#                            It's disabled by default because it doesn't seem to detect any popular mods.
custom-lang-verification: false

# 'chat-message-verification' requests the player to repeat a code in the chat,
#                             which doesn't display if the provided translations matches.
chat-message-verification:
  enabled: true
  translation:
    enabled: false
    value: xyz
  alert-spam:
    enabled: true
    translation: sodium.options.buttons.apply

verification-messages:
  begin: |-
    &6This server requires additional verification.
    &6Please wait a few seconds.

  complete: |-
    &8Verification complete.

invalid-flow:
  kick:
    active: true
    message: |-
      <red>Kicked for exceeding packet rate limit.

incorrect-code:
  kick:
    active: true
    message: |-
      <red>Failed verification

detected:
  ban:
    active: true
    message: |-
      ExploitPreventer usage

  commands:
    active: false
    enum:
      - /helpop %player% was banned for hiding mods.

hit-register-limit:
  kick:
    active: true
    message: |-
      <red>You have too many mods.
      <red>Please consult a server administrator to increase this limit or remove some of the mods you don't need.

intentionally-faulting:
  banip:
    active: true
    message: |-
      Causing server issues

📦 Requirements

  • Java >=21
  • PaperMC >=1.21.11
  • PacketEvents

🪧 Newest Protection

To have your server use the newest CapPreventer protection methods, remember to keep it updated.

I am trying my best to always find new exploits when old ones get patched.