Update README.md

author: pandaninjas <101084582+pandaninjas@users.noreply.github.com> 2022-12-25 04:15:07 +0000
committer: GitHub <noreply@github.com> 2022-12-25 04:15:07 +0000
commit: 3fb80c8181d8f4ed4f798a9c451050c0fbb0929c (patch)
tree: c589cc8a29ab4cdc628d4ade7d56e5c75d35dd73
parent: 53533f823e5e0437f65934cfb31263b3697f7446 (diff)
download: NoSession-3fb80c8181d8f4ed4f798a9c451050c0fbb0929c.tar.gz
NoSession-3fb80c8181d8f4ed4f798a9c451050c0fbb0929c.tar.bz2
NoSession-3fb80c8181d8f4ed4f798a9c451050c0fbb0929c.zip
1 files changed, 16 insertions, 0 deletions
diff --git a/README.md b/README.md
index e69de29..c2c3a57 100644
--- a/README.md
+++ b/README.md
@@ -0,0 +1,16 @@
+# NoSession
+NoSession is a mod that protects your session ID. 
+## Does this make me perfectly safe?
+This mod doesn't make you 100% safe, but it makes it much harder to steal your session token. If you want to stay perfectly safe, look at the
+[staying safe section](#staying-safe)
+
+## Staying Safe
+In order to work around an unpatchable security vulnerability, rename the NoSession jar to !.jar so it can load its protection before any other mods.
+This only protects you from other mods. There are fake verification sites that can steal your session ID through that method. Don't login with Microsoft 
+OAuth to anything except maybe your Minecraft launcher.
+
+## Bug bounty
+See [SECURITY.MD](security.md)
+
+## Features
+- Does not break existing token login methods
author	pandaninjas <101084582+pandaninjas@users.noreply.github.com>	2022-12-25 04:15:07 +0000
committer	GitHub <noreply@github.com>	2022-12-25 04:15:07 +0000
commit	3fb80c8181d8f4ed4f798a9c451050c0fbb0929c (patch)
tree	c589cc8a29ab4cdc628d4ade7d56e5c75d35dd73
parent	53533f823e5e0437f65934cfb31263b3697f7446 (diff)
download	NoSession-3fb80c8181d8f4ed4f798a9c451050c0fbb0929c.tar.gz NoSession-3fb80c8181d8f4ed4f798a9c451050c0fbb0929c.tar.bz2 NoSession-3fb80c8181d8f4ed4f798a9c451050c0fbb0929c.zip