Commands

Last modified: 26 April 2026

Commands

Command	Purpose
`/eps status`	Check whether ExploitSniffer is loaded, licensed, and running on this server.
`/eps profile`	Show the current protection profile.
`/eps profile observe`	Record incidents without punitive enforcement during rollout or review.
`/eps profile balanced`	Use the normal production profile for live networks.
`/eps profile strict`	Use a temporary higher-response profile during confirmed active abuse.
`/eps observe status`	Show checks or families currently forced into observe-only.
`/eps observe on <check\|family\|all>`	Keep one target observing while the rest of the profile still enforces.
`/eps observe off <check\|family\|all>`	Remove one observe-only override.
`/eps observe clear`	Remove all observe-only overrides.
`/eps alerts status`	Check whether staff alerts are enabled and where they are delivered.
`/eps reports recent`	List recent incidents so staff can triage current activity.
`/eps reports review <id>`	Open one incident summary for review or private support reporting.
`/eps reports <player>`	Review recent incidents tied to one player.
`/eps capture start <player>`	Start a private evidence session for one player when support or staff review needs it.
`/eps capture list`	Show active private evidence sessions.
`/eps capture flush <id>`	Finalize a private evidence session for review.
`/eps companion status`	Show whether optional backend companion reporting is connected.
`/eps reload`	Reload config and messages after a safe config edit.

Observe Overrides

Observe overrides are for narrow compatibility review. Use tab completion after /eps observe on to choose a supported target; do not guess internal names or publish private detector details.

Matching reports stay visible, evidence is still recorded, and punitive action is skipped for that target only. Clear the override after the integration is verified or fixed.

Permissions

exploitsniffer.admin gives full command access.
exploitsniffer.alerts gives alert-only staff visibility.