# Role Protection

Prevent mass role manipulation, dangerous permission grants, and role hierarchy abuse.

## What Gets Monitored

- **Role Creation:** Monitors and prevents an excessive amount of new roles being created rapidly.

- **Role Updates:** Flags dangerous permission changes (e.g. giving Administrator) or unauthorized renaming.

- **Role Delete:** Detects and reverses rapid deletion of multiple roles, typically a sign of a nuke attack.

## Settings & Punishments

On the dashboard, you can configure the required thresholds and choose between three automated punishment actions when this protection triggers:

1

1. **Log Only**: Records the violation in your audit logs without taking action against the user.

2

2. **Quarantine / Timeout**: Temporarily isolates the offending user, stripping their permissions until staff review the incident.

3

3. **Ban / Kick**: Automatically removes the malicious user from your server immediately.

> Exorion can only protect against role manipulation if its own role is positioned above the attacker's highest role in the hierarchy.