matscan is a Minecraft bot that joins potentially vulnerable Minecraft servers and sends a message in chat to inform the admins.

one of the messages that may be shown when matscan joins a server

How should I secure my server?

If the server was meant to be private, then enable a whitelist.
If the server is offline-mode, then enable online-mode in the server.properties or install a plugin such as AuthMe.
If the server has an exposed BungeeCord backend, then firewall it, install BungeeGuard, or switch to Velocity.
Enable backups or install a plugin like CoreProtect.

If you’ve done all of the above, then you’re probably fine.

How did you find my server?

I scan the internet for Minecraft servers, basically sending a packet to every IP address and seeing which ones respond (it’s a little more complex than this).

Is your data public?

No. You should still secure your server though since there are several griefing/harassment groups that use their own server scanners.

Why did Herobrine try to join right before matscan?

matscan will try to join with the username Herobrine first, so if the server is offline-mode then it can demonstrate that people can join with any username. It may also use the username of a historical player if the server is offline-mode but has a whitelist.

What IP does matscan join from?

The bot will exclusively join from the IP address 151.115.73.107. This page will be updated if it ever changes in the future.

How can I contact you?

You can email me at mat@matdoes.dev (public key).

How can I help?

If you appreciate the security work I do, please consider funding my projects at ko-fi.com/matdoesdev.