#ExploitPreventer

ExploitPreventer is a mod that fixes known or at the moment for most people unknown exploits.

Here is a blog post about a fingerprinting exploit and you can do local requests in the internal lan from the player but you can only get a hash back but it is still bad: https://alaggydev.github.io/posts/cytooxien/

This mod also fixes the sign translation key issue that a server can't get the resolved translation key anymore.

We are a Minecraft Research Group and try to make Minecraft better and fix exploits that are actively used. If we find more stuff we will patch it in this mod.

The link to the Mod is in the blog post at the bottom. I can't send more links because the message will be then deleted.

This looks very great. There are so many fishy things with Minecraft and it's great for that

Thank you 🙂 Messages like this keeps the whole research group i'm leading motivated.

We just try our best to give a great experience with Minecraft even with such stuff that is not patched.

This is such a huge thing you and your group found out, amazing work!

People always gloss over things like this as they aren't very entertaining, but many people should know how important it is, and making a mod for something simple like this is great. It's similar to the no telemetry mod which people find boring, but are very appreciative to have, so it will take time!

Yeah thank you.

If you're interested in an update: I'm at the moment working on a way to automatically get the Mods that are communicating with the server and then allow these translation keys to be send because otherwise it would be detectable. I'm doing some weird java magic with getStacktrace from the current Thread to get the correct mod.

It works for now but the update is not public yet. I optimize some stuff and tested it with Simple Voicechat. It is a bit pain to code because for example from the KeybindingHelper from fabric you can't get the mod that is registering the stuff. So I have to use the getStacktrace stuff there too. I only use it once because on the c2s packet registering I found a better way to detect. I also allow all mods that depend on that mod. I only have to add that also the optional dependencies are added to the list and then I have to see how I continue.