Skip to main content
KittyScan LogoKittyScan

For Minecraft server providers

Harden Your Minecraft Infrastructure

KittyScan's honeypot network has recorded millions of automated connection attempts against Minecraft servers. We turn that threat intelligence into free, production-ready tools you can deploy today.

The Threat Landscape

Every Minecraft server on the public internet faces the same systematic threats. Our honeypots see them every day.

Automated Scanners
Botnets continuously sweep the entire IPv4 range looking for exposed Minecraft servers to grief, exploit, or farm for player data.
Offline-Mode Exploits
Servers without online-mode enabled allow anyone to impersonate any username, bypassing Mojang authentication entirely.
Unwhitelisted Access
Over half of all public Minecraft servers run without a whitelist, letting any anonymous user including bots connect freely.
Player Privacy Leaks
Default server configurations broadcast the player list to unauthenticated pings, exposing your players' usernames to anyone who asks.

Real Numbers From Our Honeypots

50%+

of public servers have no whitelist open to any connection

1.8M+

automated connection attempts recorded by our honeypot network

24h

blocklist refresh cycle new scanner IPs blocked within a day of detection

Live figures available on the KittyScan homepage and honeypot stats page.

Free Security Tools

Everything below is open-source and free to use for any provider or server operator.

KittyPaper Beta

A privacy-focused, scanner-resistant fork of Paper with hardened default settings. Recommended for any provider running Paper-compatible servers.
Built-in KittyScan IP blocklist updated automatically
Player sample hidden by default
Drop-in replacement for Paper zero plugin migration
Open-source and community auditable

KittyScan IP Blocklist

A continuously refreshed, open-source list of IP addresses actively scanning for Minecraft servers sourced from our live honeypot network.
Updated every 24 hours from live honeypot data
Available as plain IPs, /16 subnets, or /24 subnets
Stale IPs auto-removed after 30 days of inactivity
Works at firewall level integrates with iptables, pfSense, and more

How to Secure a Server in Four Steps

These four changes cover the most common attack surfaces on a public Minecraft server and can be applied in under ten minutes.

  1. 01

    Drop in KittyPaper
    Replace your Paper JAR with KittyPaper. No plugin or world migration needed it is a full drop-in replacement with hardened defaults pre-applied.

  2. 02

    Enable the IP Blocklist
    KittyPaper ships with the KittyScan IP Blocklist built in. Known scanner IPs are blocked at the connection level before they consume any server resources.

  3. 03

    Activate the Whitelist
    Turn on Minecraft's built-in whitelist so only approved players can connect. This single change eliminates the vast majority of uninvited access.

  4. 04

    Remove the Player Sample
    Configure your server to hide the player list from status pings. This stops automated scrapers from harvesting your players' usernames at scale.

Why Trust KittyScan?

Our tools are backed by first-hand data, not estimates.

Live Threat Intelligence
Every IP in the blocklist was caught red-handed contacting one of our honeypots. No guesswork, no third-party feeds only real scanner IPs we observed ourselves.
Fully Open-Source
Both KittyPaper and the IP blocklist are open-source and publicly auditable. You can inspect exactly what you are deploying on your infrastructure.
Community-Backed Research
KittyScan research on Minecraft security has been cited across the community. We publish findings on the blog so the entire ecosystem benefits.

Need a Custom Solution or Security Audit?

The free tools cover the most common attack surfaces out of the box. If your infrastructure needs tailored hardening, a dedicated security review, or custom integrations, reach out directly for a non-binding consultation.

Security Audits
A hands-on review of your server or hosting platform's security posture covering network exposure, authentication configuration, plugin attack surface, and data-privacy risks. You receive a prioritised findings report with actionable remediation steps.
Custom Integrations
Need the blocklist fed directly into your control panel, firewall orchestration layer, or game-server management software? Custom tooling and API integrations built to fit your existing stack no workarounds required.
Technical Consulting
8+ years of full-stack and infrastructure experience, applied directly to your use case. Whether you are designing a new hosting product or hardening an existing fleet, get expert guidance with a single point of contact and transparent pricing.

Ready to Lock Down Your Servers?

Start with KittyPaper for the fastest path to a hardened server, integrate the raw blocklist directly into your firewall, or get in touch for a custom solution. The tools are free; consulting is available for providers who need more.