Skip to content

The 30 Discord security checks Black Cat runs

Black Cat SSPM evaluates 30 security policies against your Discord configuration on every scan, classifies each finding by risk, and provides remediation steps. Below is the full list, grouped by category.

access control

highMFA Not Required for Admins

Enable 2FA requirement for moderator actions in Server Settings

mediumLow Verification Level

Raise the server verification level to Medium or higher in Safety Setup

mediumMember Verification Gate Disabled

Enable Membership Screening to require new members to accept server rules

highRole Has Administrator Permission

Remove the Administrator permission from roles that do not require full server control

highRole Has Dangerous Permissions

Remove dangerous permissions from the role and grant only what is necessary

criticalEveryone Role Has Dangerous Permissions

Remove all dangerous permissions from the @everyone role immediately

mediumExcessive Admin Roles

Reduce the number of roles with Administrator permission to the minimum necessary

lowRole Can Mention Everyone

Disable the Mention Everyone permission for roles that do not need it

mediumPermanent Invite

Delete permanent invites and replace them with time-limited invites

mediumUnlimited Use Invite

Set a maximum use count on all server invites to control membership growth

highChannel Everyone Overwrite

Remove elevated permission overwrites for @everyone on the flagged channel

mediumOverly Permissive Channel

Restrict channel access so only appropriate roles can read and send messages

highExcessive Admins

Reduce the number of members with admin-level roles to the minimum required

highAdmin Role High Member Count

Reduce the number of members assigned to admin roles to the minimum necessary

highBot-Managed Role With Admin

Remove Administrator permission from bot-managed roles and configure specific permissions instead

configuration

mediumAutoMod Rule Disabled

Re-enable disabled AutoMod rules or delete them if no longer needed

mediumAutoMod Excessive Exemptions

Reduce the number of exempt roles and channels on AutoMod rules to maintain effectiveness

lowChannel Excessive Permission Overwrites

Simplify channel permissions by reducing the number of role and member overwrites

data protection

mediumContent Filter Not Full

Set the explicit content filter to scan messages from all members

mediumGuild Publicly Discoverable

Disable Server Discovery to prevent the server from being publicly listed

lowWidget Enabled

Disable the server widget to prevent public exposure of member count and invite link

highNo AutoMod Rules

Enable AutoMod rules to protect the server against spam, harmful content, and mention abuse

mediumNo Keyword Filtering

Enable AutoMod keyword filtering to block messages containing harmful or prohibited words

mediumNo Spam Protection

Enable AutoMod spam protection to automatically detect and block spam messages

lowNo Mention Spam Protection

Enable AutoMod mention spam protection to prevent mass-mention abuse

infoNSFW Channel

Review NSFW channel designations and ensure age-restricted channels are intentional

third party risk

mediumExcessive Integrations

Review and remove unused integrations to reduce third-party risk

infoWebhook Inventory

Review each webhook to confirm it is still needed and properly governed

mediumOrphaned Webhook

Delete webhooks whose creator has left the server or that have no known owner

highBot With Admin

Remove Administrator permission from bot roles and grant only the permissions each bot requires

See these checks run on your stack

Start a free 14-day trial — no credit card required.

Start Free Trial